EulerOS 2.0 SP10 : openssl (EulerOS-SA-2023-1960)

According to the versions of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a netwo...

apr-util: out-of-bounds writes in the apr_base64

A flaw was found in the Apache Portable Runtime Utility APR-util library. This issue may allow a malicious attacker to cause an out-of-bounds write due to an integer overflow when encoding/decoding a very long string using the base64 family of functions...

PT-2023-3439 · Unknown +2 · Imagemagick +2

Name of the Vulnerable Software and Affected Versions: ImageMagick affected versions not specified Description: A security flaw in ImageMagick causes a shell command injection vulnerability via video:vsync or video:pixel-format options in VIDEO encoding/decoding. This issue is related to the lack...

gssntlmssp: incorrect free when decoding target information

A flaw was found in GSS-NTLMSSP, a mechglue plugin for the GSSAPI library that implements NTLM authentication. An incorrect free when decoding target information can trigger a denial of service. The error condition incorrectly assumes the cb and sh buffers contain a copy of the data that needs to...

gssntlmssp: memory corruption when decoding UTF16 strings

A flaw was found in GSS-NTLMSSP, a mechglue plugin for the GSSAPI library that implements NTLM authentication. Memory corruption can be triggered when decoding UTF16 strings. The variable outlen was not initialized and could cause writing a zero to an arbitrary place in memory if the ntlmstrconve...

gssntlmssp: multiple out-of-bounds read when decoding NTLM fields

A flaw was found in GSS-NTLMSSP, a mechglue plugin for the GSSAPI library that implements NTLM authentication. Multiple out-of-bounds reads occur when decoding NTLM fields and can trigger a denial of service. A 32-bit integer overflow condition can lead to incorrect checks of the consistency of t...

golang: encoding/gob: stack exhaustion in Decoder.Decode

A flaw was found in golang. When calling Decoder, Decode on a message that contains deeply nested structures, a panic can occur due to stack exhaustion and allows an attacker to impact system availability...

RHEL 8 : go-toolset:rhel8 (RHSA-2023:3083)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3083 advisory. Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes: golang: crypto/tls...

PT-2023-9157 · Ofono +4 · Ofono +4

Name of the Vulnerable Software and Affected Versions: ofono affected versions not specified Description: A flaw was found in ofono, an Open Source Telephony on Linux, where a stack overflow bug is triggered within the decode deliver report function during SMS decoding. This issue is related to t...

The vulnerability of the Pillow image processing library, related to uncontrolled resource consumption, allows a hacker to perform a type of “denial-of-service” attack.

The vulnerability of the Pillow image-processing library lies in the fact that the application does not properly control the consumption of internal resources in TiffImagePlugin.py during the context setting for image decoding. Exploiting this vulnerability allows a remote attacker to trigger...

PT-2023-9373 · Ofono +4 · Ofono +4

Name of the Vulnerable Software and Affected Versions: ofono affected versions not specified Description: A flaw was found in ofono, an Open Source Telephony on Linux, where a stack overflow bug is triggered within the decode status report function during SMS decoding. The attack scenario is...

Upgraded Q -> 2 from #298 [1683709930306]

Judge has assessed an item in Issue 298 as 2 risk. The relevant finding follows: L-01 Valid hex string is not decoded correctly by hexStringToBytes32 and reads memory out-of-boundary Links Impact Valid hexadecimal strings are not decoded correctly. Decoding reads out-of-bounds memory returning...

PT-2023-7966 · Ofono +4 · Ofono +4

Name of the Vulnerable Software and Affected Versions: ofono affected versions not specified Description: A flaw was found in ofono, an Open Source Telephony on Linux, where a stack overflow bug is triggered within the sms decode address field function during the SMS PDU decoding. This issue can ...

gdk-pixbuf: heap-buffer overflow when decoding the lzw compressed stream of image data

A flaw was found in gdk-pixbuf. The vulnerability occurs due to the index overwriting in the lzwdecodernew function, leading to a heap buffer overflow. This flaw allows an attacker to input a specially crafted GIF file, leading to a crash or code execution...

golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding

A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests...

Nextcloud: Open redirect on "Unsupported browser" warning

An open redirect vulnerability was found in Nextcloud's UnsupportedBrowser.vue component. Attackers could construct a malicious URL that includes the redirecturl parameter and a URL of their choice, which would redirect the user to the attacker's URL without validating the decoded URL or checking...

CVE-2023-29996

In NanoMQ v0.15.0-0, segment fault with Null Pointer Dereference occurs in the process of decoding subinfodecode and unsubinfodecode...

PT-2023-22509 · Nanomq · Nanomq

Name of the Vulnerable Software and Affected Versions: NanoMQ version 0.15.0-0 Description: A segment fault with Null Pointer Dereference occurs in the process of decoding subinfo decode and unsubinfo decode. This issue is related to the decoding process, which can lead to a crash. Recommendation...

编号撤回

XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. This CVE number has been withdrawn...

编号撤回

XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. This CVE number has been withdrawn...