28 matches found
GSD-2023-1000392 x86/kexec: Fix double-free of elf header buffer
x86/kexec: Fix double-free of elf header buffer This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.19 by commit...
PT-2025-53223
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the handling of the ELF header buffer during kexec. Specifically, a superfluous vfree call within the crash load segments function's error pa...
GSD-2022-1003162 x86/kexec: fix memory leak of elf header buffer
x86/kexec: fix memory leak of elf header buffer This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.14 by commit...
CURL-CVE-2019-3822 NTLMv2 type-3 header stack buffer overflow
libcurl contains a stack based buffer overflow vulnerability. The function creating an outgoing NTLM type-3 header lib/vauth/ntlm.c:Curlauthcreatentlmtype3message, generates the request HTTP header contents based on previously received data. The check that exists to prevent the local buffer from...
IBM WebSphere Application Server 6.0 < 6.0.2.25 Multiple Vulnerabilities
IBM WebSphere Application Server 6.0.x before Fix Pack 25 appears to be running on the remote host. Such versions are reportedly affected by multiple vulnerabilities. - An unspecified vulnerability in the Administrative Console involving monitor role users. PK45768 - WebSphere Application Server...
MailEnable 1.1x - Content-Length Denial of Service
MailEnable 1.1x - Content-Length Denial of Service source: https://www.securityfocus.com/bid/10838/info MailEnable is reported prone to a remote denial of service vulnerability. This vulnerability is reported to exist in the MailEnable HTTP header parsing code. When reading a large content-length...
MPlayer 0.91.0 - Streaming ASX Header Parsing Buffer Overrun
MPlayer 0.91.0 - Streaming ASX Header Parsing Buffer Overrun source: https://www.securityfocus.com/bid/8702/info A vulnerability has been discovered in MPLayer when handling malformed streaming ASX file headers. The problem occurs due to insufficient bounds checking performed within asfhttpreques...
Cobalt RaQ 2.0/3.0 / qpopper 2.52/2.53 - 'EUIDL' Format String Input
// source: https://www.securityfocus.com/bid/1242/info A vulnerability exists in version 2.53 and prior of qpopper, a popular POP server, from Qualcomm. By placing machine executable code in the X-UIDL header field, supplying formatting strings in the "From:" field in a mail header, and then...