12 matches found
Astra Linux - уязвимость в parsec
The vulnerability of the parsecmdlin function in the PARSEC security subsystem is related to improper memory release after its use. Exploiting this vulnerability allows an attacker to cause a service failure...
EUVD-2025-20935
Malicious code in bioql PyPI...
The vulnerability of the SCSI component in the Linux operating system allows a hacker to gain elevated privileges within the system.
The vulnerability of the SCSI component in the Linux operating system is related to errors that occur after deallocation. Exploiting this vulnerability can allow an attacker to increase their privileges within the system...
The vulnerability of the rtl8xxxu component in the Linux operating system allows a hacker to increase their privileges within the system.
The vulnerability of the rtl8xxxu component in the Linux operating system’s kernel is related to memory usage errors after deallocation in the rtl8xxxustop function. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...
PT-2024-24620 · Samsung · Exynos 1330 +7
Name of the Vulnerable Software and Affected Versions: Samsung Mobile Processor and Wearable Processor Exynos versions 850, 1080, 2100, 1280, 1380, 1330, W920, W930 Description: An issue was discovered in the Samsung Mobile Processor and Wearable Processor, where the mobile processor lacks proper...
OSV-2022-1074 Invalid-free in _dealloc
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52587 Crash type: Invalid-free Crash state: dealloc PyDECREF framedealloc...
The vulnerability of the D-Bus inter-process communication system, related to memory corruption after deallocation, allows a malicious actor to trigger a service failure.
The vulnerability of the D-Bus inter-process communication mechanism is related to a memory usage error that occurs after freeing memory, caused by messages with non-sequential byte orders and Unix file descriptors. Exploiting this vulnerability can allow an attacker to cause service failures...
Adobe Framemaker 资源管理错误漏洞
Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. A memory misreference vulnerability exists in Adobe Framemaker. The vulnerability arises from a mix-up in the...
DEBIAN-CVE-2020-25863
In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector could crash. This was addressed in epan/dissectors/packet-multipart.c by correcting the deallocation of invalid MIME parts...
PT-2019-6455 · FFmpeg +5 · Ffmpeg +5
Name of the Vulnerable Software and Affected Versions: FFmpeg version 4.2 Description: The issue is related to a memory leak in the ff v4l2 m2m create context function in v4l2 m2m.c of the FFmpeg multimedia library. This leak occurs due to incorrect memory deallocation before the removal of the...
GLSA-200502-24 : Midnight Commander: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200502-24 Midnight Commander: Multiple vulnerabilities Midnight Commander contains several format string vulnerabilities CAN-2004-1004, buffer overflows CAN-2004-1005, a memory deallocation error CAN-2004-1092 and a buffer underfl...
Midnight Commander: Multiple vulnerabilities
Background Midnight Commander is a visual console file manager. Description Midnight Commander contains several format string vulnerabilities CAN-2004-1004, buffer overflows CAN-2004-1005, a memory deallocation error CAN-2004-1092 and a buffer underflow CAN-2004-1176. Impact An attacker could...