Lucene search
K

44 matches found

OSV
OSV
added 2020/12/09 12:0 a.m.4 views

OSV-2020-2250 Heap-buffer-overflow in grk::t1_part1::T1Part1::decompress

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28415 Crash type: Heap-buffer-overflow READ 12 Crash state: grk::t1part1::T1Part1::decompress grk::DecompressBlockExec::open grk::T1DecompressScheduler::decompressBlock...

7.2AI score
Exploits0References1
OSV
OSV
added 2020/06/29 9:15 p.m.9 views

AZL-44193 CVE-2020-15389 affecting package openjpeg2 2.3.1-12

jp2/opjdecompress.c in OpenJPEG through 2.3.1 has a use-after-free that can be triggered if there is a mix of valid and invalid files in a directory operated on by the decompressor. Triggering a double-free may also be possible. This is related to calling opjimagedestroy twice...

6.5CVSS7AI score0.02595EPSS
Exploits0References1
OSV
OSV
added 2019/04/12 7:23 a.m.10 views

OPENSUSE-SU-2019:1196-1 Security update for libarchive

This update for libarchive fixes the following issues: Security issues fixed: - CVE-2018-1000877: Fixed a double free vulnerability in RAR decoder bsc1120653 - CVE-2018-1000878: Fixed a Use-After-Free vulnerability in RAR decoder bsc1120654 - CVE-2018-1000879: Fixed a NULL Pointer Dereference...

8.8CVSS7.6AI score0.04575EPSS
Exploits1References13
OSV
OSV
added 2016/09/25 11:41 a.m.10 views

MGASA-2016-0318 Updated libarchive packages fix security vulnerability

The updated packages fix several security vulnerabilities: A flaw was found in the way libarchive handled hardlink archive entries of non-zero size. Combined with flaws in libarchive's file system sandboxing, this issue could cause an application using libarchive to overwrite arbitrary files with...

7.5CVSS7.9AI score0.04707EPSS
Exploits1References10
Rows per page
Query Builder