Design/Logic Flaw

When dynamic memory allocation fails, currently the process sleeps for one second and continues with infinite loop without retrying for memory allocation in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, QCN5502, SD 210/SD 212/SD...

CVE-2017-18277

When dynamic memory allocation fails, currently the process sleeps for one second and continues with infinite loop without retrying for memory allocation in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, QCN5502, SD 210/SD 212/SD...

CVE-2017-18277

When dynamic memory allocation fails, currently the process sleeps for one second and continues with infinite loop without retrying for memory allocation in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, QCN5502, SD 210/SD 212/SD...

CVE-2017-18277

CVE-2017-18277 describes a memory allocation failure in Qualcomm closed‑source components (Snapdragon Auto/Mobile/Wear) across multiple SD/SoC generations (e.g., SD 210/212/205, 625, 650, 810, 820, 835; MDM9xxx, QCN5502, etc.). The bug behavior is that when dynamic memory allocation fails, the pr...

The vulnerability of the pcxLoadRaster function in the Sam2p image conversion utility allows a attacker to cause a service failure or exert other effects.

The vulnerability of the pcxLoadRaster function in the Sam2p image conversion utility is caused by buffer overflow in the dynamic memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

Oracle Linux 7 : systemd (ELSA-2018-0260)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2018-0260 advisory. 219-42.0.2.7 - fix netdev is missing for iscsi entry in /etc/fstab Orabug: 25897792 [email protected] - set 'RemoveIPC=no' in logind.conf as default for OL7...

systemd security update

219-42.0.2.7 - fix netdev is missing for iscsi entry in /etc/fstab Orabug: 25897792 [email protected] - set 'RemoveIPC=no' in logind.conf as default for OL7.2 22224874 - allow dm remove ioctl to co-operate with UEK3 Vaughan Cao Orabug: 18467469 - add hv dynamic memory support Jerry Snitselaar...

The vulnerability of the post_load function in the QEMU hardware-emulation driver’s hw/input/ps2.c file allows a hacker to perform out-of-buffer reading operations in dynamic memory.

The vulnerability of the postload function in the QEMU hardware-emulation emulator’s hw/input/ps2.c file is related to incorrect validation of input data. Exploiting this vulnerability allows a remote attacker to perform out-of-buffer read operations on dynamic memory...

The vulnerability in the software for converting images on the Debian GNU/Linux operating system arises from overflowing buffers in dynamic memory, allowing an attacker to cause the application to terminate abnormally.

The vulnerability of the software for converting image formats in the Debian GNU/Linux operating system is caused by an overflow in the buffer of dynamic memory. Exploiting this vulnerability allows a malicious actor to cause the application to terminate abnormally by using a specially crafted cu...

The vulnerability of the MatrixSSL cryptographic information protection software lies in buffer overflows in dynamic memory, allowing attackers to execute arbitrary code.

The vulnerability of the MatrixSSL information encryption software arises from an overflow in the buffer in the dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a X.509 certificate with a specially crafted “Subject Alt Name”...

The vulnerability in the software for converting images on the Debian GNU/Linux operating system arises from overflowing buffers in dynamic memory, allowing an attacker to cause the application to terminate abnormally.

The vulnerability of the software for converting image formats in the Debian GNU/Linux operating system is caused by an overflow in the buffer of dynamic memory. Exploiting this vulnerability allows a malicious actor to cause the application to terminate abnormally by using a specially crafted cu...

The vulnerability of the Horizon View virtualization platform and the Unified Access Gateway access server is caused by a buffer overflow in the dynamic memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Horizon View virtualization platform and the Unified Access Gateway access server stems from a buffer overflow in the dynamic memory. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code on the device...

The vulnerability of the Oniguruma library, which arises from the use of an uninitialized variable, allows a hacker to perform read operations beyond the buffer boundary in dynamic memory.

The vulnerability of the Oniguruma library exists due to incorrect processing of reg-dmin in the forwardsearchrange function. This allows the use of an uninitialized variable during data reading from the buffer. Exploiting this vulnerability could enable a malicious actor to read beyond the...

The vulnerability of the GetImageDepth function in MagickCore/attribute.c, a console-based graphic editor for ImageMagick, allows a hacker to cause a service failure.

The vulnerability of the GetImageDepth function in MagickCore/attribute.c of the ImageMagick console graphic editor is related to the writing of data beyond the specified buffer. Exploiting this vulnerability can allow a malicious actor to cause a service failure rereading of the buffer in dynami...

The vulnerability of the FFmpeg multimedia library, which allows a hacker to perform recording beyond the memory limit

The vulnerability of the FFmpeg multimedia library arises from an overflow in the buffer in the dynamic memory. Exploiting this vulnerability allows a malicious actor to perform write operations beyond the memory boundaries, related to the function ipvideodecodeblockopcode0xA in...

The vulnerability of the FFmpeg multimedia library, which allows a hacker to perform recording beyond the memory limit

The vulnerability of the FFmpeg multimedia library arises from an overflow in the buffer in the dynamic memory. Exploiting this vulnerability allows a malicious actor to perform write operations beyond the memory boundaries, related to the decodeframecommon function in libavcodec/pngdec.c...

The vulnerability of the FFmpeg multimedia library, which allows a hacker to perform recording beyond the memory limit

The vulnerability of the FFmpeg multimedia library arises from an overflow in the buffer in the dynamic memory. Exploiting this vulnerability allows a malicious actor to perform write operations beyond the memory boundaries, related to the function ffh264SliceContextInit in libavcodec/h264dec.c...

The vulnerability of the FFmpeg multimedia library’s component allows a hacker to execute arbitrary code.

The vulnerability of the FFmpeg multimedia library’s component is caused by an overflow in the buffer in the dynamic memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using data with incorrect size in the HTTP response...

The vulnerability of the coders/psd.c component in the console-based image editing tool ImageMagick allows a hacker to exert undefined effects.

The vulnerability of the coders/psd.c component in the console-based ImageMagick graphics editor is caused by a buffer overflow in the dynamic memory. Exploiting this vulnerability allows an attacker to exert unpredictable effects remotely...

The vulnerability of the t1_decoder_parse_charstrings function in the FreeType library allows a hacker to write data beyond the buffer boundaries.

The vulnerability of the t1decoderparsecharstrings function psaux/t1decode.c in the FreeType library arises due to an overflow in the buffer of dynamic memory. Exploiting this vulnerability could allow a remote attacker to write data beyond the buffer’s capacity...