ALT-PU-2020-3548-1
Closed vulnerabilities
Modified: 2024-11-21
CVE-2017-5208
Integer overflow in the wrestool program in icoutils before 0.31.1 allows remote attackers to cause a denial of service (memory corruption) via a crafted executable, which triggers a denial of service (application crash) or the possibility of execution of arbitrary code.
- RHSA-2017:0837
- RHSA-2017:0837
- DSA-3756
- DSA-3756
- [oss-security] 20170108 Re: CVE Request: icoutils: exploitable crash in wrestool programm
- [oss-security] 20170108 Re: CVE Request: icoutils: exploitable crash in wrestool programm
- 95315
- 95315
- https://bugzilla.redhat.com/show_bug.cgi?id=1411251
- https://bugzilla.redhat.com/show_bug.cgi?id=1411251
- GLSA-201801-12
- GLSA-201801-12
Modified: 2024-11-21
CVE-2017-5331
Integer overflow in the check_offset function in b/wrestool/fileread.c in icoutils before 0.31.1 allows local users to cause a denial of service (process crash) and execute arbitrary code via a crafted executable.
- openSUSE-SU-2017:0166
- openSUSE-SU-2017:0166
- openSUSE-SU-2017:0167
- openSUSE-SU-2017:0167
- openSUSE-SU-2017:0168
- openSUSE-SU-2017:0168
- DSA-3765
- DSA-3765
- [oss-security] 20170110 Re: CVE Request: icoutils: exploitable crash in wrestool programm
- [oss-security] 20170110 Re: CVE Request: icoutils: exploitable crash in wrestool programm
- 95378
- 95378
- USN-3178-1
- USN-3178-1
- https://bugzilla.redhat.com/show_bug.cgi?id=1412248
- https://bugzilla.redhat.com/show_bug.cgi?id=1412248
Modified: 2024-11-21
CVE-2017-5332
The extract_group_icon_cursor_resource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows local users to cause a denial of service (process crash) and execute arbitrary code via a crafted executable.
- openSUSE-SU-2017:0166
- openSUSE-SU-2017:0166
- openSUSE-SU-2017:0167
- openSUSE-SU-2017:0167
- openSUSE-SU-2017:0168
- openSUSE-SU-2017:0168
- RHSA-2017:0837
- RHSA-2017:0837
- DSA-3765
- DSA-3765
- [oss-security] 20170110 Re: CVE Request: icoutils: exploitable crash in wrestool programm
- [oss-security] 20170110 Re: CVE Request: icoutils: exploitable crash in wrestool programm
- 95380
- 95380
- USN-3178-1
- USN-3178-1
- https://bugzilla.redhat.com/show_bug.cgi?id=1412263
- https://bugzilla.redhat.com/show_bug.cgi?id=1412263
- https://git.savannah.gnu.org/cgit/icoutils.git/commit/?id=1aa9f28f7bcbdfff6a84a15ac8d9a87559b1596a
- https://git.savannah.gnu.org/cgit/icoutils.git/commit/?id=1aa9f28f7bcbdfff6a84a15ac8d9a87559b1596a
Modified: 2024-11-21
CVE-2017-5333
Integer overflow in the extract_group_icon_cursor_resource function in b/wrestool/extract.c in icoutils before 0.31.1 allows local users to cause a denial of service (process crash) or execute arbitrary code via a crafted executable file.
- openSUSE-SU-2017:0166
- openSUSE-SU-2017:0166
- openSUSE-SU-2017:0167
- openSUSE-SU-2017:0167
- openSUSE-SU-2017:0168
- openSUSE-SU-2017:0168
- RHSA-2017:0837
- RHSA-2017:0837
- DSA-3765
- DSA-3765
- [oss-security] 20170110 Re: CVE Request: icoutils: exploitable crash in wrestool programm
- [oss-security] 20170110 Re: CVE Request: icoutils: exploitable crash in wrestool programm
- 95678
- 95678
- USN-3178-1
- USN-3178-1
- https://bugzilla.redhat.com/show_bug.cgi?id=1412259
- https://bugzilla.redhat.com/show_bug.cgi?id=1412259
- https://git.savannah.gnu.org/cgit/icoutils.git/commit/?id=1a108713ac26215c7568353f6e02e727e6d4b24a
- https://git.savannah.gnu.org/cgit/icoutils.git/commit/?id=1a108713ac26215c7568353f6e02e727e6d4b24a