![]() The function DCTStream::getBlock in in Xpdf 4.00 allows remote attackers to cause a denial of service via a crafted pdf file, as demonstrated by pdftoppm. Libraw 20.0 has a null pointer dereference vulnerability in parse_tiff_ifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. A crafted input will lead to a remote denial of service attack. For example, a crash was observed within the library code when attempting to convert invalid SPSS data into CSV format. There is a NULL Pointer Dereference in the function ll_insert of the libpspp library in GNU PSPP before 0.11.0. There is a NULL pointer dereference in the function rec_fex_size in the file rec-fex.c of librec.a.īase/PdfOutputStream.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service via a crafted file. The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert.Īn issue was discovered in GNU Recutils 1.8. For example, the perf_test utility will crash when parsing an invalid PDF file. Poppler 0.54.0, as used in Evince and other products, has a NULL pointer dereference in the JPXStream::readUByte function in. A NULL pointer dereference was found in the function Sass::Functions::selector_append which could be leveraged by an attacker to cause a denial of service or possibly have unspecified other impact. Poppler through version 0.55.0 is vulnerable to an uncontrolled recursion in pdfunite resulting into potential denial-of-service.Īn issue was discovered in LibSass through 3.5.4. ![]() In Poppler 0.59.0, a NULL Pointer Dereference exists in AnnotRichMedia::Content::Content in via a crafted PDF document. Invalid memory read in the PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.6-rc1 allows remote attackers to have denial-of-service impact via a crafted file. Unrarlib.c in unrar-free 0.0.1 might allow remote attackers to cause a denial of service, which could be relevant if unrarlib is used as library code for a long-running application. In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Selector_List::populate_extends in SharedPtr.hpp may cause a Denial of Service via a crafted sass input file. The vulnerability causes a segmentation fault and application crash, which leads to denial of service because adding to windowed output is mishandled in the LONG_START_SEQUENC. The vulnerability causes a segmentation fault and application crash, which leads to denial of service.Īn error within the "leaf_hdr_load_raw" function in LibRaw versions prior to 0.18.8 can be exploited to trigger a NULL pointer dereference.Ī NULL pointer dereference was discovered in ifilter_bank of libfaad/filtbank.c in Freeware Advanced Audio Decoder 2 2.8.8. The GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace function in graphicsstack.h in PoDoFo 0.9.4 allows remote attackers to cause a denial of service via a crafted file.Ī NULL pointer dereference was discovered in ic_predict of libfaad/ic_predict.c in Freeware Advanced Audio Decoder 2 2.8.8. Realloc_symlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service via a crafted iso file. It could allow a remote denial of service attack. ![]() ![]() A NULL pointer dereference was discovered in H5S_hyper_make_spans in H5Shyper.c in the HDF HDF5 1.10.2 library. ![]()
0 Comments
Leave a Reply. |