QEMU Invalid Pointer Initialization Vulnerability (CNVD-2021-45768)

QEMU is a suite of analog processor software. A security vulnerability exists in QEMU that stems from the function udp6input using memory outside of the working mbuf buffer when processing udp packets from incoming guests that are smaller than the size of the udphdr structure. An attacker could...

CVE-2021-3595

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the tftpinput function and could occur while processing a udp packet that is smaller than the size of the 'tftpt' structure. This issue may lead to out-of-bounds read access or...

CVE-2021-3595

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the tftpinput function and could occur while processing a udp packet that is smaller than the size of the 'tftpt' structure. This issue may lead to out-of-bounds read access or...

DEBIAN-CVE-2021-3593

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udp6input function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bounds read access or...

CVE-2021-3594

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udpinput function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bounds read access or...

Out-of-bounds

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udp6input function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bounds read access or...

CVE-2021-3592

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the bootpinput function and could occur while processing a udp packet that is smaller than the size of the 'bootpt' structure. A malicious guest could use this flaw to leak 10 byte...

CVE-2021-3594

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udpinput function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bounds read access or...

Intel Core Processors 缓冲区错误漏洞

Intel Core Processors is an Intel Core family of central processing units CPUs from Intel Corporation. A security vulnerability exists in Intel Core Processors that stems from an invalid objectless pointer vulnerability in the AMD graphics driver for Windows 10 that could lead to privilege...

PT-2021-7370 · Libslirp +9 · Libslirp +9

Name of the Vulnerable Software and Affected Versions: libslirp versions prior to 4.6.0 Description: The issue is related to an invalid pointer initialization in the SLiRP networking implementation, specifically in the udp6 input function. This occurs when processing UDP packets that are smaller...

Arbitrary Code Execution

gpac is vulnerable to arbitrary code execution. An invalid pointer dereference in the function SetupWriters in isomedia/isomstore.c allows an attacker to execute arbitrary code on the host OS...

Denial Of Service (DoS)

gpac is vulnerable to denial of service. The vulnerability exists due to an invalid pointer dereference in the function gfhintertrackfinalize in mediatools/isomhinter.c...

Integer overflow

TensorFlow is an end-to-end open source platform for machine learning. The TFLite code for allocating TFLiteIntArrays is vulnerable to an integer overflow issuehttps://github.com/tensorflow/tensorflow/blob/4ceffae632721e52bf3501b736e4fe9d1221cdfa/tensorflow/lite/c/common.cL24-L27. An attacker can...

Huawei EulerOS: Security Advisory for compat-openldap (EulerOS-SA-2021-1771)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GPAC Invalid Pointer Dereference Vulnerability (CNVD-2021-30587)

GPAC is a multimedia framework for rich media and distributed under the LGPL license. An invalid pointer dereference vulnerability exists in the gfhintertrackfinalize function in mediatools/isomhinter.c in GPAC versions 0.8.0 and 1.0.1. No detailed vulnerability details are provided at this time...

GPAC Invalid Pointer Dereference Vulnerability (CNVD-2021-30586)

GPAC is a multimedia framework for rich media and distributed under the LGPL license. An invalid pointer dereference vulnerability exists in the SetupWriters function in isomedia/isomstore.c in GPAC versions 0.8.0 and 1.0.1. No detailed vulnerability details are provided at this time...

CVE-2020-35981

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function SetupWriters in isomedia/isomstore.c...

CVE-2020-35982

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function gfhintertrackfinalize in mediatools/isomhinter.c...

CVE-2020-35982

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function gfhintertrackfinalize in mediatools/isomhinter.c...

DEBIAN-CVE-2020-35982

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function gfhintertrackfinalize in mediatools/isomhinter.c...