ChijinZ

17 exploits Active since May 2018
CVE-2018-11813 WRITEUP HIGH WRITEUP
libjpeg 9c - Denial of Service via Excessive Iteration in read_pixel
libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF.
CVSS 7.5
CVE-2018-11212 WRITEUP MEDIUM WRITEUP
libjpeg 9a and 9d - Denial of Service via Divide-by-Zero in alloc_sarray
An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.
CVSS 6.5
CVE-2018-11213 WRITEUP MEDIUM WRITEUP
libjpeg 9a - Denial of Service in get_text_gray_row
An issue was discovered in libjpeg 9a. The get_text_gray_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.
CVSS 6.5
CVE-2018-11214 WRITEUP MEDIUM WRITEUP
libjpeg 9a - Denial of Service in get_text_rgb_row
An issue was discovered in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.
CVSS 6.5
CVE-2018-11363 WRITEUP HIGH WRITEUP
pdfgen < 2018-04-09 - Heap-Based Buffer Over-Read in jpeg_size
jpeg_size in pdfgen.c in PDFGen before 2018-04-09 has a heap-based buffer over-read.
CVSS 7.5
CVE-2018-11364 WRITEUP HIGH WRITEUP
ReadStat 0.1.1 - Memory Leak in sav_parse_machine_integer_info_record
sav_parse_machine_integer_info_record in spss/readstat_sav_read.c in libreadstat.a in ReadStat 0.1.1 has a memory leak related to an iconv_open call.
CVSS 7.5
CVE-2018-11365 WRITEUP HIGH WRITEUP
ReadStat 0.1.1 - Denial of Service via Infinite Loop in SAS7BCAT Reader
sas/readstat_sas7bcat_read.c in libreadstat.a in ReadStat 0.1.1 has an infinite loop.
CVSS 7.5
CVE-2018-11813 WRITEUP HIGH WORKING POC
libjpeg 9c - Denial of Service via Excessive Iteration in read_pixel
libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF.
CVSS 7.5
CVE-2018-12064 WRITEUP CRITICAL WRITEUP
tinyexr 0.9.5 - Heap-Based Buffer Over-Read in ReadChannelInfo
tinyexr 0.9.5 has a heap-based buffer over-read via tinyexr::ReadChannelInfo in tinyexr.h.
CVSS 9.8
CVE-2018-12503 WRITEUP CRITICAL WRITEUP
tinyexr 0.9.5 - Heap-Based Buffer Over-Read in LoadEXRImageFromMemory
tinyexr 0.9.5 has a heap-based buffer over-read in LoadEXRImageFromMemory in tinyexr.h.
CVSS 9.8
CVE-2018-12504 WRITEUP HIGH WRITEUP
tinyexr 0.9.5 - Reachable Assertion in ComputeChannelLayout
tinyexr 0.9.5 has an assertion failure in ComputeChannelLayout in tinyexr.h.
CVSS 7.5
CVE-2020-18428 WRITEUP HIGH WRITEUP
tinyexr 0.9.5 - Denial of Service via Array Index Error in SaveEXR
tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR component, which can lead to a denial of service (DOS).
CVSS 7.5
CVE-2020-18430 WRITEUP HIGH WRITEUP
tinyexr 0.9.5 - Denial of Service via Array Index Error in DecodeEXRImage
tinyexr 0.9.5 was discovered to contain an array index error in the tinyexr::DecodeEXRImage component, which can lead to a denial of service (DOS).
CVSS 7.5
CVE-2021-45481 WRITEUP MEDIUM WRITEUP
WebKitGTK < 2.32.4 - Use-After-Free in ImageBufferCairoImageSurfaceBackend
In WebKitGTK before 2.32.4, there is incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create, leading to a segmentation violation and application crash, a different vulnerability than CVE-2021-30889.
CVSS 6.5
CVE-2021-45482 WRITEUP MEDIUM WRITEUP
WebKitGTK < 2.32.4 - Use-After-Free in WebCore::ContainerNode::firstChild
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode::firstChild, a different vulnerability than CVE-2021-30889.
CVSS 6.5
CVE-2021-45483 WRITEUP MEDIUM WRITEUP
webkitgtk < 2.32.4 - Use-After-Free in WebCore::Frame::page
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::Frame::page, a different vulnerability than CVE-2021-30889.
CVSS 6.5
CVE-2022-30293 WRITEUP HIGH WRITEUP
WebKitGTK < 2.36.0 - Heap-Based Buffer Overflow in TextureMapperLayer
In WebKitGTK through 2.36.0 (and WPE WebKit), there is a heap-based buffer overflow in WebCore::TextureMapperLayer::setContentsLayer in WebCore/platform/graphics/texmap/TextureMapperLayer.cpp.
CVSS 7.5