various vulnerabilities and exploits

(subscribe to this query)

Multiple integer overflows in sfnt/ttcmap.c in FreeType prior to 2.5.4 allow remote malicious users to cause a denial of service (out-of-bounds read or memory corruption) or possibly have unspecified other impact via a crafted cmap SFNT table.

Canonical Ubuntu Linux 10.04 Canonical Ubuntu Linux 12.04 Canonical Ubuntu Linux 14.04 Canonical Ubuntu Linux 14.10 Canonical Ubuntu Linux 15.04 Freetype Freetype Redhat Enterprise Linux Desktop 6.0 Redhat Enterprise Linux Desktop 7.0 Redhat Enterprise Linux Hpc Node 6 Redhat Enterprise Linux Hpc Node 7.0 Redhat Enterprise Linux Hpc Node Eus 7.1 Redhat Enterprise Linux Server 6.0

Multiple integer signedness errors in the pcf_get_encodings function in pcf/pcfread.c in FreeType prior to 2.5.4 allow remote malicious users to cause a denial of service (integer overflow, NULL pointer dereference, and application crash) via a crafted PCF file that specifies neg...

Debian Debian Linux 7.0 Opensuse Opensuse 13.1 Opensuse Opensuse 13.2 Fedoraproject Fedora 20 Fedoraproject Fedora 21 Oracle Solaris 10.0 Oracle Solaris 11.2 Redhat Enterprise Linux Desktop 6.0 Redhat Enterprise Linux Desktop 7.0 Redhat Enterprise Linux Hpc Node 6 Redhat Enterprise Linux Hpc Node 7.0 Redhat Enterprise Linux Hpc Node Eus 7.1

Off-by-one error in the pcf_get_properties function in pcf/pcfread.c in FreeType prior to 2.5.4 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted PCF file with a 0xffffffff size value that is improperly incre...

Redhat Enterprise Linux Desktop 6.0 Redhat Enterprise Linux Desktop 7.0 Redhat Enterprise Linux Hpc Node 6 Redhat Enterprise Linux Hpc Node 7.0 Redhat Enterprise Linux Hpc Node Eus 7.1 Redhat Enterprise Linux Server 6.0 Redhat Enterprise Linux Server 7.0 Redhat Enterprise Linux Server Eus 6.6.z Redhat Enterprise Linux Server Eus 7.1 Redhat Enterprise Linux Workstation 6.0 Redhat Enterprise Linux Workstation 7.0 Debian Debian Linux 7.0

The web-based administration capability for various Axis Network Camera products allows remote malicious users to bypass access restrictions and modify configuration via an HTTP request to the admin/admin.shtml containing a leading // (double slash).

Axis 2100 Network Camera Axis 2110 Network Camera Axis 2120 Network Camera Axis 2130 Ptz Network Camera Axis 2400 Video Server Axis 2401 Video Server Axis 2420 Network Camera Axis 2460 Network Dvr Axis 250s Video Server

1 EDB exploit

The tt_face_load_hdmx function in truetype/ttpload.c in FreeType prior to 2.5.4 does not establish a minimum record size, which allows remote malicious users to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted TrueType font.

Opensuse Opensuse 13.1 Opensuse Opensuse 13.2 Redhat Enterprise Linux Desktop 6.0 Redhat Enterprise Linux Desktop 7.0 Redhat Enterprise Linux Hpc Node 6.0 Redhat Enterprise Linux Hpc Node 7.0 Redhat Enterprise Linux Hpc Node Eus 7.1 Redhat Enterprise Linux Server 6.0 Redhat Enterprise Linux Server 7.0 Redhat Enterprise Linux Server Eus 6.6.z Redhat Enterprise Linux Server Eus 7.1 Redhat Enterprise Linux Workstation 6.0

The tt_face_load_kern function in sfnt/ttkern.c in FreeType prior to 2.5.4 enforces an incorrect minimum table length, which allows remote malicious users to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted TrueType font.

Oracle Solaris 10.0 Oracle Solaris 11.2 Canonical Ubuntu Linux 10.04 Canonical Ubuntu Linux 12.04 Canonical Ubuntu Linux 14.04 Canonical Ubuntu Linux 14.10 Canonical Ubuntu Linux 15.04 Fedoraproject Fedora 20 Fedoraproject Fedora 21 Freetype Freetype Debian Debian Linux 7.0 Opensuse Opensuse 13.1

The _bdf_parse_glyphs function in bdf/bdflib.c in FreeType prior to 2.5.4 does not properly handle a missing ENDCHAR record, which allows remote malicious users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a crafted BDF fon...

Opensuse Opensuse 13.1 Opensuse Opensuse 13.2 Canonical Ubuntu Linux 10.04 Canonical Ubuntu Linux 12.04 Canonical Ubuntu Linux 14.04 Canonical Ubuntu Linux 14.10 Canonical Ubuntu Linux 15.04 Debian Debian Linux 7.0 Oracle Solaris 10.0 Oracle Solaris 11.2 Fedoraproject Fedora 20 Fedoraproject Fedora 21

type42/t42parse.c in FreeType prior to 2.5.4 does not consider that scanning can be incomplete without triggering an error, which allows remote malicious users to cause a denial of service (use-after-free) or possibly have unspecified other impact via a crafted Type42 font.

Canonical Ubuntu Linux 10.04 Canonical Ubuntu Linux 12.04 Canonical Ubuntu Linux 14.04 Canonical Ubuntu Linux 14.10 Canonical Ubuntu Linux 15.04 Debian Debian Linux 7.0 Redhat Enterprise Linux Desktop 6.0 Redhat Enterprise Linux Desktop 7.0 Redhat Enterprise Linux Hpc Node 6 Redhat Enterprise Linux Hpc Node 7.0 Redhat Enterprise Linux Hpc Node Eus 7.1 Redhat Enterprise Linux Server 6.0

The tt_cmap4_validate function in sfnt/ttcmap.c in FreeType prior to 2.5.4 validates a certain length field before that field's value is completely calculated, which allows remote malicious users to cause a denial of service (out-of-bounds read) or possibly have unspecified ...

Freetype Freetype Debian Debian Linux 7.0 Opensuse Opensuse 13.1 Opensuse Opensuse 13.2 Fedoraproject Fedora 20 Fedoraproject Fedora 21 Oracle Solaris 10.0 Oracle Solaris 11.2 Canonical Ubuntu Linux 10.04 Canonical Ubuntu Linux 12.04 Canonical Ubuntu Linux 14.04 Canonical Ubuntu Linux 14.10

FreeType prior to 2.5.4 does not check for the end of the data during certain parsing actions, which allows remote malicious users to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted Type42 font, related to type42/t42parse.c a...

Redhat Enterprise Linux Desktop 6.0 Redhat Enterprise Linux Desktop 7.0 Redhat Enterprise Linux Hpc Node 6 Redhat Enterprise Linux Hpc Node 7.0 Redhat Enterprise Linux Hpc Node Eus 7.1 Redhat Enterprise Linux Server 6.0 Redhat Enterprise Linux Server 7.0 Redhat Enterprise Linux Server Eus 6.6.z Redhat Enterprise Linux Server Eus 7.1 Redhat Enterprise Linux Workstation 6.0 Redhat Enterprise Linux Workstation 7.0 Debian Debian Linux 7.0

« PREV 2 3 4 5 6 7 8 9 10 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook