Lucene search
+L

623 matches found

OSV
OSV
added 2018/07/31 9:29 p.m.2 views

DEBIAN-CVE-2016-8622

The URL percent-encoding decode function in libcurl before 7.51.0 is called curleasyunescape. Internally, even if this function would be made to allocate a unscape destination buffer larger than 2GB, it would return that new length in a signed 32 bit integer variable, thus the length would get...

9.8CVSS7.2AI score0.0467EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2018/06/23 12:0 a.m.34 views

GraphicsMagick -- SVG/Rendering vulnerability

GraphicsMagick News: Fix heap write overflow of PrimitiveInfo and PointInfo arrays. This is another manefestation of CVE-2016-2317, which should finally be fixed correctly due to active detection/correction of pending overflow rather than using estimation...

5.5CVSS2.5AI score0.0199EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2018/05/03 5:6 a.m.6 views

oniguruma: Out-of-bounds heap write in bitset_set_range()

An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A heap out-of-bounds write occurs in bitsetsetrange during regular expression compilation due to an uninitialized variable from an incorrect state transition. An incorrect...

9.8CVSS7.4AI score0.06261EPSS
Exploits1References4
OSV
OSV
added 2018/04/10 9:29 p.m.2 views

ALPINE-CVE-2018-3839

An exploitable code execution vulnerability exists in the XCF image rendering functionality of Simple DirectMedia Layer SDL2image-2.0.2. A specially crafted XCF image can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can display a specially crafted image to...

8.8CVSS8.2AI score0.02598EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2018/02/20 9:32 p.m.5 views

chromium-browser: incorrect derived class instantiation in v8

Type confusion could lead to a heap out-of-bounds write in V8 in Google Chrome prior to 64.0.3282.168 allowing a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...

8.8CVSS7.8AI score0.08793EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2018/01/16 12:0 a.m.31 views

Debian: Security Advisory (DLA-899-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.5AI score0.02266EPSS
Exploits0References3
seebug.org
seebug.org
added 2017/09/26 12:0 a.m.57 views

Libbpg BGP image decoding Code Execution Vulnerability(CVE-2016-8710)

Summary An exploitable heap write out of bounds vulnerability exists in the decoding of BPG images in libbpg library. A crafted BPG image decoded by libbpg can cause an integer underflow vulnerability causing an out of bounds heap write leading to remote code execution. This vulnerability can be...

6.8CVSS8.1AI score0.03388EPSS
Exploits2
OSV
OSV
added 2017/09/21 10:29 p.m.2 views

CVE-2017-9282

An integer overflow CWE-190 led to an out-of-bounds write CWE-787 on a heap-allocated area, leading to heap corruption in Micro Focus VisiBroker 8.5. The feasibility of leveraging this vulnerability for further attacks was not assessed...

9.8CVSS5.8AI score0.01169EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2017/08/21 12:48 p.m.24 views

CVE-2017-12459

The bfdmachoreadsymtabstrtab function in bfd/mach-o.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted mach-o file...

7.8CVSS6.3AI score0.01892EPSS
Exploits0References1
NVD
NVD
added 2017/08/18 6:29 p.m.17 views

CVE-2017-8272

In all Qualcomm products with Android releases from CAF using the Linux kernel, in a driver function, a value from userspace is not properly validated potentially leading to an out of bounds heap write...

7.8CVSS7.3AI score0.00356EPSS
Exploits0References2
Prion
Prion
added 2017/08/18 6:29 p.m.16 views

Heap overflow

In all Qualcomm products with Android releases from CAF using the Linux kernel, in a driver function, a value from userspace is not properly validated potentially leading to an out of bounds heap write...

6.8CVSS7.8AI score0.00356EPSS
Exploits0References2
Amazon
Amazon
added 2017/08/17 12:0 a.m.57 views

Medium: php56

Issue Overview: Out-of-bounds heap write in bitsetsetrange An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A heap out-of-bounds write occurs in bitsetsetrange during regular expression compilation due to an uninitialize...

9.8CVSS8.6AI score0.07511EPSS
Exploits5
CNVD
CNVD
added 2017/08/07 12:0 a.m.3 views

GNU Binutils 'alpha_vms_object_p' function out-of-bounds heap write vulnerability

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...

7.8CVSS6.9AI score0.01883EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/07 12:0 a.m.8 views

GNU Binutils 'bfd_mach_o_read_symtab_strtab' function out-of-bounds heap write vulnerability

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...

7.8CVSS7AI score0.01892EPSS
Exploits0References1
NVD
NVD
added 2017/08/04 3:29 p.m.16 views

CVE-2017-12450

The alphavmsobjectp function in bfd/vms-alpha.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted vms alpha file...

7.8CVSS7.7AI score0.01883EPSS
Exploits0References1
OSV
OSV
added 2017/08/04 3:29 p.m.29 views

CVE-2017-12450

The alphavmsobjectp function in bfd/vms-alpha.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted vms alpha file...

7.8CVSS7.3AI score
Exploits0References1
NVD
NVD
added 2017/08/04 3:29 p.m.18 views

CVE-2017-12459

The bfdmachoreadsymtabstrtab function in bfd/mach-o.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted mach-o file...

7.8CVSS7.8AI score0.01892EPSS
Exploits0References1
OSV
OSV
added 2017/08/04 3:29 p.m.4 views

DEBIAN-CVE-2017-12459

The bfdmachoreadsymtabstrtab function in bfd/mach-o.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted mach-o file...

7.8CVSS8.6AI score0.01892EPSS
Exploits0References1
OSV
OSV
added 2017/08/04 3:29 p.m.2 views

DEBIAN-CVE-2017-12450

The alphavmsobjectp function in bfd/vms-alpha.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted vms alpha file...

7.8CVSS7.9AI score0.01883EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/08/04 3:0 p.m.23 views

CVE-2017-12459

The bfdmachoreadsymtabstrtab function in bfd/mach-o.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted mach-o file...

7.7AI score0.01892EPSS
Exploits0References1
Rows per page
Query Builder