Download
| Alert*
|
oval:org.secpod.oval:def:300172
A vulnerability has been found and corrected in libgdiplus: Multiple integer overflows in libgdiplus 2.6.7, as used in Mono, allow attackers to execute arbitrary code via a crafted TIFF file, related to the gdip_load_tiff_image function in tiffcodec.c; a crafted JPEG file, related to the gdip_load ... oval:org.secpod.oval:def:100640 An implementation of the GDI+ API, built on top of Cairo. oval:org.secpod.oval:def:700070 Stefan Cornelius discovered that libgdiplus incorrectly handled certain image files. If a user or automated system were tricked into opening a crafted image file, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. oval:org.secpod.oval:def:100241 An Open Source implementation of the GDI+ API, it is part of the Mono Project oval:org.secpod.oval:def:100708 An Open Source implementation of the GDI+ API, it is part of the Mono Project |
