CVE-2022-29503

A memory corruption vulnerability exists in the libpthread linuxthreads functionality of uClibC 0.9.33.2 and uClibC-ng 1.0.40. Thread allocation can lead to memory corruption. An attacker can create threads to trigger this vulnerability...

CVE-2022-29503 affecting package uclibc-ng for versions less than 1.0.43-1

CVE-2022-29503 affecting package uclibc-ng for versions less than 1.0.43-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-29503 affecting package uclibc-ng 1.0.41-1

CVE-2022-29503 affecting package uclibc-ng 1.0.41-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-29503

The affected application lacks proper validation of user-supplied data when parsing project files e.g., CSP. This could lead to a stack-based buffer overflow. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process...

CVE-2023-29503

Summary of CVE-2023-29503 (Horner Automation Cscape/Cscape EnvisionRV) Quellen confirm a stack-based buffer overflow caused by improper validation of user-supplied data when parsing project files (e.g., CSP). Affected products include Horner Automation Cscape (v9.90 SP8) and Cscape EnvisionRV (v4...

CVE-2022-29503

A memory corruption vulnerability exists in the libpthread linuxthreads functionality of uClibC 0.9.33.2 and uClibC-ng 1.0.40. Thread allocation can lead to memory corruption. An attacker can create threads to trigger this vulnerability...

CVE-2022-29503

A memory corruption vulnerability exists in the libpthread linuxthreads functionality of uClibC 0.9.33.2 and uClibC-ng 1.0.40. Thread allocation can lead to memory corruption. An attacker can create threads to trigger this vulnerability...

CVE-2022-29503

CVE-2022-29503 describes a memory corruption vulnerability in the libpthread linuxthreads functionality of uClibC 0.9.33.2 and uClibC-ng 1.0.40 . The issue arises from thread allocation, allowing an attacker to trigger memory corruption by creating threads. Affected components are the libpthread/...

uClibC and uClibC-ng libpthread linuxthreads memory corruption vulnerabilities

Talos Vulnerability Report TALOS-2022-1517 uClibC and uClibC-ng libpthread linuxthreads memory corruption vulnerabilities September 22, 2022 CVE Number CVE-2022-29503 SUMMARY A memory corruption vulnerability exists in the libpthread linuxthreads functionality of uClibC 0.9.33.2 and uClibC-ng...

CVE-2020-29503

Dell EMC PowerStore before version 1.0.3.0.5.xxx contains a file-permission vulnerability that a locally authenticated attacker could exploit to disclose information from certain system directories. The provided documents consistently describe the issue across NVD/CNVD entries; no explicit exploi...

CVE-2021-29503 Improper Neutralization of Script-Related HTML Tags in Notes

HedgeDoc is a platform to write and share markdown. HedgeDoc before version 1.8.2 is vulnerable to a cross-site scripting attack using the YAML-metadata of a note. An attacker with write access to a note can embed HTML tags in the Open Graph metadata section of the note, resulting in the frontend...

CVE-2021-29503

HedgeDoc before 1.8.2 is vulnerable to XSS via YAML-metadata in notes. An attacker with write access can embed HTML in Open Graph metadata, causing the frontend to render a script tag in the head; unauthenticated edits possible if guests can edit, otherwise authenticated users with write access c...