Vulnerabilities > Entropymine > Imageworsener > 1.3.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-19 | CVE-2017-9094 | Infinite Loop vulnerability in Entropymine Imageworsener The lzw_add_to_dict function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted image. | 4.3 |
| 2017-05-19 | CVE-2017-9093 | Infinite Loop vulnerability in Entropymine Imageworsener The my_skip_input_data_fn function in imagew-jpeg.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted image. | 4.3 |
| 2017-04-29 | CVE-2017-8327 | Resource Exhaustion vulnerability in Entropymine Imageworsener The bmpr_read_uncompressed function in imagew-bmp.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (memory consumption) via a crafted image. | 7.1 |
| 2017-04-29 | CVE-2017-8326 | Incorrect Calculation vulnerability in Entropymine Imageworsener libimageworsener.a in ImageWorsener before 1.3.1 has "left shift cannot be represented in type int" undefined behavior issues, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image, related to imagew-bmp.c and imagew-util.c. | 6.8 |
| 2017-04-29 | CVE-2017-8325 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Entropymine Imageworsener The iw_process_cols_to_intermediate function in imagew-main.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted image. | 6.8 |
| 2017-04-19 | CVE-2017-7962 | Divide By Zero vulnerability in Entropymine Imageworsener 1.3.0 The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file. | 4.3 |
| 2017-04-18 | CVE-2017-7940 | Resource Exhaustion vulnerability in Entropymine Imageworsener 1.3.0 The iw_read_gif_file function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file. | 4.3 |
| 2017-04-18 | CVE-2017-7939 | Out-of-bounds Read vulnerability in Entropymine Imageworsener 1.3.0 The read_next_pam_token function in imagew-pnm.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted file. | 4.3 |
| 2017-04-10 | CVE-2017-7624 | Missing Release of Resource after Effective Lifetime vulnerability in Entropymine Imageworsener 1.3.0 The iw_read_bmp_file function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file. | 4.3 |
| 2017-04-10 | CVE-2017-7623 | Out-of-bounds Read vulnerability in Entropymine Imageworsener 1.3.0 The iwmiffr_convert_row32 function in imagew-miff.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file. | 4.3 |