UBUNTU-CVE-2019-19880

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled...

CVE-2019-19880

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled...

CVE-2019-19880

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled...

CVE-2019-19880

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled...

CVE-2019-19880

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled...

SQLite Invalid Pointer Dereference Vulnerability

SQLite is the United States D. Richard Hipp software developers of a set of C-based open source embedded relational database management system. The system is characterized by independence, isolation, cross-platform and so on. SQLite 3.30.1 version of the window.c file of the exprListAppendList ha...

Kyrol Internet Security Invalid Pointer Vulnerability

Kyrol Internet Security is an antivirus product from Malaysia. An invalid pointer vulnerability exists in the IOCTL handling of the kyrld.sys driver in Kyrol Internet Security 9.0.6.9, which stems from the fact that the use of 0x9C402405 with METHODNEITHER results in the reading of the original...

CVE-2019-19820

CVE-2019-19820 affects Kyrol Internet Security 9.0.6.9, via an invalid pointer in IOCTL handling of kyrld.sys. Using 0x9C402405 with METHOD_NEITHER yields a read primitive, enabling local privilege escalation, denial of service, and potentially code execution from user mode. The connected documen...

EulerOS 2.0 SP2 : cairo (EulerOS-SA-2019-2495)

According to the versions of the cairo packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Cairo is a 2D graphics library designed to provide high-quality display and print output. Currently supported output targets include the X Window...

gnutls: invalid pointer access upon receiving async handshake messages

A flaw was found in the way gnutls handled malformed TLS 1.3 asynchronous messages. An attacker could use this flaw to crash an application compiled with gnutls via invalid pointer access...

Moderate: Red Hat Security Advisory: gnutls security, bug fix, and enhancement update

An update for gnutls is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

CVE-2018-14613

An issue was discovered in the btrfs filesystem code in the Linux kernel. An invalid pointer dereference in ioctlmappage when mounting and operating a crafted btrfs image is due to a lack of block group item validation in checkleafitem in fs/btrfs/tree-checker.c function. This could lead to a...

CVE-2009-0136

Multiple array index errors in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to cause a denial of service application crash or execute arbitrary code via an Audible Audio .aa file with a crafted 1 nlen or 2 vlen Tag...

CVE-2019-14210

An issue was discovered in Foxit PhantomPDF before 8.3.10. The application could be exposed to Memory Corruption due to the use of an invalid pointer copy, resulting from a destructed string object...

CVE-2019-14210

An issue was discovered in Foxit PhantomPDF before 8.3.10. The application could be exposed to Memory Corruption due to the use of an invalid pointer copy, resulting from a destructed string object...

EulerOS 2.0 SP8 : gnutls (EulerOS-SA-2019-1649)

According to the versions of the gnutls packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way gnutls handled malformed TLS 1.3 asynchronous messages. An attacker could use this flaw to crash an application...

CVE-2019-12323

The HC.Server service in Hosting Controller HC10 10.14 allows an Invalid Pointer Write DoS...

CVE-2019-12323

The HC.Server service in Hosting Controller HC10 10.14 allows an Invalid Pointer Write DoS...

Code injection

The HC.Server service in Hosting Controller HC10 10.14 allows an Invalid Pointer Write DoS...

CVE-2019-12323

The CVE-2019-12323 entry concerns Hosting Controller HC10 HC.Server Service 10.14. Affected software: HC10 HC.Server Service 10.14. Vulnerability: Remote Invalid Pointer Write that can cause a DoS if the service is reachable (port 8794). Root cause: invalid pointer write within HC.Server. Impact:...