libimageworsener

CVEs (11)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2017-8326	Entropymine Imageworsener	Hig	0.57	8.8	0.01	Apr 29, 2017	libimageworsener.a in ImageWorsener before 1.3.1 has "left shift cannot be represented in type int" undefined behavior issues, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image,…
CVE-2017-8325	Entropymine Imageworsener	Hig	0.57	8.8	0.01	Apr 29, 2017	The iw_process_cols_to_intermediate function in imagew-main.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted image.
CVE-2017-9206	Entropymine Imageworsener	Med	0.42	6.5	0.00	May 23, 2017	The iw_get_ui16le function in imagew-util.c:405:23 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted image, related to imagew-jpeg.c.
CVE-2017-9205	Entropymine Imageworsener	Med	0.42	6.5	0.00	May 23, 2017	The iw_get_ui16be function in imagew-util.c:422:24 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (invalid read and SEGV) via a crafted image, related to imagew-jpeg.c.
CVE-2017-9201	Entropymine Imageworsener	Med	0.42	6.5	0.00	May 23, 2017	imagew-cmd.c:850:46 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted image, related to imagew-api.c.
CVE-2017-8327	Entropymine Imageworsener	Med	0.42	6.5	0.00	Apr 29, 2017	The bmpr_read_uncompressed function in imagew-bmp.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (memory consumption) via a crafted image.
CVE-2017-7962	Entropymine Imageworsener	Med	0.36	5.5	0.01	Apr 19, 2017	The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
CVE-2017-7939	Entropymine Imageworsener	Med	0.36	5.5	0.00	Apr 18, 2017	The read_next_pam_token function in imagew-pnm.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted file.
CVE-2017-7624	Entropymine Imageworsener	Med	0.36	5.5	0.00	Apr 10, 2017	The iw_read_bmp_file function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file.
CVE-2017-7623	Entropymine Imageworsener	Med	0.36	5.5	0.00	Apr 10, 2017	The iwmiffr_convert_row32 function in imagew-miff.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.
CVE-2017-7452	Entropymine Imageworsener	Med	0.36	5.5	0.00	Apr 6, 2017	The iwbmp_read_info_header function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.

CVE-2017-8326HigApr 29, 2017
Entropymine
Imageworsener
risk 0.57cvss 8.8epss 0.01
libimageworsener.a in ImageWorsener before 1.3.1 has "left shift cannot be represented in type int" undefined behavior issues, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image,…
CVE-2017-8325HigApr 29, 2017
Entropymine
Imageworsener
risk 0.57cvss 8.8epss 0.01
The iw_process_cols_to_intermediate function in imagew-main.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted image.
CVE-2017-9206MedMay 23, 2017
Entropymine
Imageworsener
risk 0.42cvss 6.5epss 0.00
The iw_get_ui16le function in imagew-util.c:405:23 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted image, related to imagew-jpeg.c.
CVE-2017-9205MedMay 23, 2017
Entropymine
Imageworsener
risk 0.42cvss 6.5epss 0.00
The iw_get_ui16be function in imagew-util.c:422:24 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (invalid read and SEGV) via a crafted image, related to imagew-jpeg.c.
CVE-2017-9201MedMay 23, 2017
Entropymine
Imageworsener
risk 0.42cvss 6.5epss 0.00
imagew-cmd.c:850:46 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted image, related to imagew-api.c.
CVE-2017-8327MedApr 29, 2017
Entropymine
Imageworsener
risk 0.42cvss 6.5epss 0.00
The bmpr_read_uncompressed function in imagew-bmp.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (memory consumption) via a crafted image.
CVE-2017-7962MedApr 19, 2017
Entropymine
Imageworsener
risk 0.36cvss 5.5epss 0.01
The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
CVE-2017-7939MedApr 18, 2017
Entropymine
Imageworsener
risk 0.36cvss 5.5epss 0.00
The read_next_pam_token function in imagew-pnm.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted file.
CVE-2017-7624MedApr 10, 2017
Entropymine
Imageworsener
risk 0.36cvss 5.5epss 0.00
The iw_read_bmp_file function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file.
CVE-2017-7623MedApr 10, 2017
Entropymine
Imageworsener
risk 0.36cvss 5.5epss 0.00
The iwmiffr_convert_row32 function in imagew-miff.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.
CVE-2017-7452MedApr 6, 2017
Entropymine
Imageworsener
risk 0.36cvss 5.5epss 0.00
The iwbmp_read_info_header function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.