Lucene search
K

54 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:7 a.m.5 views

SUSE CVE-2019-17546

tifgetimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition...

8.8CVSS7.4AI score0.03356EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2022/06/08 12:0 a.m.5 views

Vulnerability of the OGRExpatRealloc function in the ogr/ogr_expat.cpp file. The GDAL geospatial transformation library allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

Vulnerability of the OGRExpatRealloc function in the ogr/ogrexpat.cpp file. The GDAL geoprocessing library involves repeated memory reclamation. Exploiting this vulnerability may allow a malicious actor to gain access to confidential data, compromise its integrity, and cause service failures...

10CVSS7.7AI score0.02577EPSS
Exploits0References16Affected Software8
BDU FSTEC
BDU FSTEC
added 2022/04/11 12:0 a.m.8 views

The vulnerability of the netCDF component of the GDAL library for geospatial data allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the netCDF component of the GDAL transformation library for geospatial data is related to writing beyond buffer boundaries. Exploiting this vulnerability allows attackers to access confidential data, compromise its integrity, and cause service failures...

7.8CVSS7.4AI score0.0035EPSS
Exploits0References9Affected Software2
OpenVAS
OpenVAS
added 2022/01/13 12:0 a.m.17 views

Debian: Security Advisory (DLA-2877-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.9AI score0.02577EPSS
Exploits1References4
OSV
OSV
added 2022/01/01 1:15 a.m.1 views

DEBIAN-CVE-2021-45943

GDAL 3.3.0 through 3.4.0 has a heap-based buffer overflow in PCIDSK::CPCIDSKFile::ReadFromFile called from PCIDSK::CPCIDSKSegment::ReadFromFile and PCIDSK::CPCIDSKBinarySegment::CPCIDSKBinarySegment...

5.5CVSS6.5AI score0.01491EPSS
Exploits1References1
OSV
OSV
added 2022/01/01 1:15 a.m.4 views

UBUNTU-CVE-2021-45943

GDAL 3.3.0 through 3.4.0 has a heap-based buffer overflow in PCIDSK::CPCIDSKFile::ReadFromFile called from PCIDSK::CPCIDSKSegment::ReadFromFile and PCIDSK::CPCIDSKBinarySegment::CPCIDSKBinarySegment...

5.5CVSS6.7AI score0.01491EPSS
Exploits1References8
PyPA
PyPA
added 2022/01/01 1:15 a.m.6 views

PYSEC-2022-43065

GDAL 3.3.0 through 3.4.0 has a heap-based buffer overflow in PCIDSK::CPCIDSKFile::ReadFromFile called from PCIDSK::CPCIDSKSegment::ReadFromFile and PCIDSK::CPCIDSKBinarySegment::CPCIDSKBinarySegment...

5.5CVSS7.5AI score0.01491EPSS
Exploits1References20Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/01/01 1:15 a.m.9 views

CVE-2021-45943

GDAL 3.3.0 through 3.4.0 has a heap-based buffer overflow in PCIDSK::CPCIDSKFile::ReadFromFile called from PCIDSK::CPCIDSKSegment::ReadFromFile and PCIDSK::CPCIDSKBinarySegment::CPCIDSKBinarySegment...

5.5CVSS5.8AI score0.01491EPSS
Exploits1References14
OSV
OSV
added 2022/01/01 1:15 a.m.4 views

PYSEC-2022-43065

GDAL 3.3.0 through 3.4.0 has a heap-based buffer overflow in PCIDSK::CPCIDSKFile::ReadFromFile called from PCIDSK::CPCIDSKSegment::ReadFromFile and PCIDSK::CPCIDSKBinarySegment::CPCIDSKBinarySegment...

5.5CVSS6.6AI score0.01491EPSS
Exploits1References11
CNNVD
CNNVD
added 2022/01/01 12:0 a.m.4 views

GDAL 缓冲区错误漏洞

GDAL is an open source geospatial data abstraction library. A buffer error vulnerability exists in GDAL that stems from the product's PCIDSK::CPCIDSKSegment::ReadFromFile and PCIDSK::CPCIDSKBinarySegment::CPCIDSKBinarySegment functions failing to correctly determine memory boundaries when calling...

5.5CVSS6.7AI score0.01491EPSS
Exploits1References15
CNNVD
CNNVD
added 2021/07/20 12:0 a.m.5 views

GDAL 缓冲区错误漏洞

GDAL is an open source geospatial data abstraction library. A security vulnerability exists in GDAL that stems from a stack-based buffer overflow...

7.8CVSS7.9AI score0.0035EPSS
Exploits0References6
OSV
OSV
added 2019/10/14 2:15 a.m.3 views

DEBIAN-CVE-2019-17545

GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogrexpat.cpp when the 10MB threshold is exceeded...

9.8CVSS8.3AI score0.02577EPSS
Exploits0References1
OSV
OSV
added 2019/10/14 2:15 a.m.20 views

PYSEC-2019-241

GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogrexpat.cpp when the 10MB threshold is exceeded...

9.8CVSS7.2AI score0.02577EPSS
Exploits0References9
OSV
OSV
added 2019/10/14 2:15 a.m.5 views

UBUNTU-CVE-2019-17545

GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogrexpat.cpp when the 10MB threshold is exceeded...

9.8CVSS7.3AI score0.02577EPSS
Exploits0References4
Rows per page
Query Builder