Switch:

background

MCERT

Threat Alerts

CVE-2019-16346 (ngiflib)

16th September 2019 - 22:35

ngiflib 0.4 has a heap-based buffer overflow in WritePixel() in ngiflib.c when called from DecodeGifImg| because deinterlacing for small pictures i... Read more

CVE-2019-16347 (ngiflib)

16th September 2019 - 22:35

ngiflib 0.4 has a heap-based buffer overflow in WritePixels() in ngiflib.c when called from DecodeGifImg| because deinterlacing for small pictures... Read more

CVE-2019-16352 (ffjpeg)

16th September 2019 - 22:35

ffjpeg before 2019-08-21 has a heap-based buffer overflow in jfif_load() at jfif.c. Link: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-201... Read more

CVE-2016-10958 (estatik)

16th September 2019 - 22:35

The estatik plugin before 2.3.0 for WordPress has unauthenticated arbitrary file upload via es_media_images[] to wp-admin/admin-ajax.php. Link: ht... Read more

CVE-2016-10959 (estatik)

16th September 2019 - 22:35

The estatik plugin before 2.3.1 for WordPress has authenticated arbitrary file upload (exploitable with CSRF) via es_media_images[] to wp-admin/adm... Read more