|
256281
|
7.5 |
HIGH
Network
|
asynchttpclient_project
|
async-http-client
|
Async Http Client (aka async-http-client) before 2.0.35 can be tricked into connecting to a host different from the one extracted by java.net.URI if a '?' character occurs in a fragment identifier. S…
|
CWE-20
Improper Input Validation
|
CVE-2017-14063
|
2024-11-21 12:12 |
2017-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256282
|
9.8 |
CRITICAL
Network
|
gnu
debian
|
libidn2
debian_linux
|
Integer overflow in the decode_digit function in puny_decode.c in Libidn2 before 2.0.4 allows remote attackers to cause a denial of service or possibly have unspecified other impact.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-14062
|
2024-11-21 12:12 |
2017-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256283
|
9.8 |
CRITICAL
Network
|
gnu
|
libidn2
|
Integer overflow in the _isBidi function in bidi.c in Libidn2 before 2.0.4 allows remote attackers to cause a denial of service or possibly have unspecified other impact.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-14061
|
2024-11-21 12:12 |
2017-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256284
|
6.5 |
MEDIUM
Network
|
imagemagick
canonical
|
imagemagick
ubuntu_linux
|
In ImageMagick 7.0.6-10, a NULL Pointer Dereference issue is present in the ReadCUTImage function in coders/cut.c that could allow an attacker to cause a Denial of Service (in the QueueAuthenticPixel…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-14060
|
2024-11-21 12:12 |
2017-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256285
|
6.5 |
MEDIUM
Network
|
ffmpeg
|
ffmpeg
|
In FFmpeg 3.3.3, a DoS in cine_read_header() due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but…
|
CWE-834
Excessive Iteration
|
CVE-2017-14059
|
2024-11-21 12:12 |
2017-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256286
|
6.5 |
MEDIUM
Network
|
ffmpeg
|
ffmpeg
|
In FFmpeg 2.4 and 3.3.3, the read_data function in libavformat/hls.c does not restrict reload attempts for an insufficient list, which allows remote attackers to cause a denial of service (infinite l…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-14058
|
2024-11-21 12:12 |
2017-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256287
|
6.5 |
MEDIUM
Network
|
ffmpeg
|
ffmpeg
|
In FFmpeg 3.3.3, a DoS in asf_read_marker() due to lack of an EOF (End of File) check might cause huge CPU and memory consumption. When a crafted ASF file, which claims a large "name_len" or "count" …
|
CWE-834
Excessive Iteration
|
CVE-2017-14057
|
2024-11-21 12:12 |
2017-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256288
|
6.5 |
MEDIUM
Network
|
ffmpeg
|
ffmpeg
|
In libavformat/rl2.c in FFmpeg 3.3.3, a DoS in rl2_read_header() due to lack of an EOF (End of File) check might cause huge CPU and memory consumption. When a crafted RL2 file, which claims a large "…
|
CWE-834
Excessive Iteration
|
CVE-2017-14056
|
2024-11-21 12:12 |
2017-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256289
|
6.5 |
MEDIUM
Network
|
ffmpeg
|
ffmpeg
|
In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mv_read_header() due to lack of an EOF (End of File) check might cause huge CPU and memory consumption. When a crafted MV file, which claims a large "…
|
CWE-834
Excessive Iteration
|
CVE-2017-14055
|
2024-11-21 12:12 |
2017-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256290
|
6.5 |
MEDIUM
Network
|
ffmpeg
|
ffmpeg
|
In libavformat/rmdec.c in FFmpeg 3.3.3, a DoS in ivr_read_header() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted IVR file, which claims a large "len" fiel…
|
CWE-834
Excessive Iteration
|
CVE-2017-14054
|
2024-11-21 12:12 |
2017-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
