CVSS: 8.1EPSS: 0%CPEs: 15EXPL: 1CVE-2017-6009 – icoutils: Buffer overflow in the decode_ne_resource_id function
https://notcve.org/view.php?id=CVE-2017-6009
16 Feb 2017 — An issue was discovered in icoutils 0.31.1. A buffer overflow was observed in the "decode_ne_resource_id" function in the "restable.c" source file. This is happening because the "len" parameter for memcpy is not checked for size and thus becomes a negative integer in the process, resulting in a failed memcpy. This affects wrestool. Se descubrió un problema en icoutils 0.31.1. • http://rhn.redhat.com/errata/RHSA-2017-0837.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •
CVSS: 8.1EPSS: 0%CPEs: 15EXPL: 1CVE-2017-6010 – icoutils: Buffer overflow in the extract_icons function
https://notcve.org/view.php?id=CVE-2017-6010
16 Feb 2017 — An issue was discovered in icoutils 0.31.1. A buffer overflow was observed in the "extract_icons" function in the "extract.c" source file. This issue can be triggered by processing a corrupted ico file and will result in an icotool crash. Se descubrió un problema en icoutils 0.31.1. Se observó un desbordamiento de búfer en la función "extract_icons" en el archivo fuente "extract.c". • http://rhn.redhat.com/errata/RHSA-2017-0837.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •
CVSS: 8.1EPSS: 0%CPEs: 15EXPL: 1CVE-2017-6011 – icoutils: Buffer overflow in the simple_vec function
https://notcve.org/view.php?id=CVE-2017-6011
16 Feb 2017 — An issue was discovered in icoutils 0.31.1. An out-of-bounds read leading to a buffer overflow was observed in the "simple_vec" function in the "extract.c" source file. This affects icotool. Se descubrió un problema en icoutils 0.31.1. Se ha observado una lectura fuera de límites que conduce a un desbordamiento de búfer en la función "simple_vec" en el archivo fuente "extract.c". • http://rhn.redhat.com/errata/RHSA-2017-0837.html • CWE-122: Heap-based Buffer Overflow CWE-125: Out-of-bounds Read •