Lucene search
K

85 matches found

CVE
CVE
added 2021/09/30 4:40 p.m.52 views

CVE-2020-20665

CVE-2020-20665 affects rudp v0.6, with a memory leak reported in the main.c component. The vulnerability is associated with a memory leak in rudp, leading to potential availability impact (CVE metrics cite HIGH availability impact under CVSS-3.1, and MEDIUM under CVSS-2.0). Exploitation details a...

7.5CVSS7.5AI score0.01103EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2021/03/31 10:3 a.m.22 views

CVE-2019-19005

A bitmap double free in main.c in autotrace 0.31.1 allows attackers to cause an unspecified impact via a malformed bitmap image. This may occur after the use-after-free in CVE-2017-9182...

7.8CVSS6.3AI score0.02228EPSS
Exploits0References3
CVE
CVE
added 2021/02/26 9:45 p.m.97 views

CVE-2021-26567

Summary: CVE-2021-26567 is a stack-based buffer overflow in the FAAD2 decoder (frontend/main.c) of faad2 prior to 2.2.7.1. The vulnerability allows a local attacker to execute arbitrary code via crafted filename and pathname options. Affected context is mainly Synology DiskStation Manager (faad2 ...

7.8CVSS8.6AI score0.01129EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/02/11 9:15 p.m.17 views

CVE-2019-19005

A bitmap double free in main.c in autotrace 0.31.1 allows attackers to cause an unspecified impact via a malformed bitmap image. This may occur after the use-after-free in CVE-2017-9182...

7.8CVSS6.8AI score
Exploits0References3
Prion
Prion
added 2021/02/11 9:15 p.m.18 views

Double free

A bitmap double free in main.c in autotrace 0.31.1 allows attackers to cause an unspecified impact via a malformed bitmap image. This may occur after the use-after-free in CVE-2017-9182...

6.8CVSS7.3AI score0.02228EPSS
Exploits0References3Affected Software2
Veracode
Veracode
added 2020/12/06 3:22 a.m.20 views

Privilege Escalation

s3d is vulnerable to privilege escalation. The pipeinitterminal function in main.c allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier...

7.8CVSS5.2AI score0.0042EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2019/07/19 8:15 p.m.13 views

CVE-2019-13989

dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat function in main.c...

7.8CVSS7.6AI score0.00982EPSS
Exploits1References1
Prion
Prion
added 2019/07/19 8:15 p.m.14 views

Stack overflow

dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat function in main.c...

6.8CVSS7.6AI score0.00982EPSS
Exploits1References1Affected Software1
UbuntuCve
UbuntuCve
added 2019/07/19 8:15 p.m.23 views

CVE-2019-13989

dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat function in main.c...

7.8CVSS7.1AI score0.00982EPSS
Exploits1References2
OSV
OSV
added 2019/07/19 8:15 p.m.12 views

UBUNTU-CVE-2019-13989

dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat function in main.c...

7.8CVSS7.1AI score0.00982EPSS
Exploits1References3
CVE
CVE
added 2019/07/19 7:40 p.m.155 views

CVE-2019-13989

CVE-2019-13989 affects dpic 2019.06.20, with a Stack-based Buffer Overflow in the wfloat() function of main.c. The vulnerability can impact C/I/A (per CVSS) and has public advisories indicating fixes in newer dpic packages (e.g., Mageia MGASA-2020-0460) and vendor/OS advisories; patching/upgradin...

7.8CVSS7.5AI score0.00982EPSS
Exploits1References1Affected Software1
UbuntuCve
UbuntuCve
added 2018/04/06 5:29 p.m.30 views

CVE-2013-6876

The 1 ptyinitterminal and 2 pipeinitterminal functions in main.c in s3dvt 0.2.2 and earlier allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier. NOTE: this vulnerability was fixed with commit ad732f00b411b092c66a04c359da0f16ec3b387, but the...

7.8CVSS7.1AI score0.00587EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2018/01/25 12:0 a.m.32 views

w3m - multiple vulnerabilities

Tatsuya Kinoshita reports: CVE-2018-6196 table.c: Prevent negative indent value in feedtableblocktag. CVE-2018-6197 form.c: Prevent invalid columnPos call in formUpdateBuffer. CVE-2018-6198 config.h.dist, config.h.in, configure, configure.ac, main.c, rc.c: Make temporary directory safely when /.w...

7.5CVSS6.2AI score0.04391EPSS
Exploits2References1
OSV
OSV
added 2018/01/05 9:29 p.m.11 views

CVE-2018-5252

libimageworsener.a in ImageWorsener 1.3.2, when libjpeg 8d is used, has a large loop in the getrawsampleint function in imagew-main.c...

5.3CVSS7.1AI score
Exploits0References1
CVE
CVE
added 2018/01/05 9:0 p.m.41 views

CVE-2018-5252

CVE-2018-5252 affects ImageWorsener 1.3.2 (libimageworsener.a) when linked with libjpeg 8d. The vulnerability is described as a large loop in get_raw_sample_int in imagew-main.c, leading to denial of service. Multiple sources (CNVD, NVD, Red Hat entry) corroborate the vulnerable component and ver...

5.3CVSS5.2AI score0.00891EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2017/07/30 4:29 p.m.22 views

CVE-2017-11747

main.c in Tinyproxy 1.8.4 and earlier creates a /run/tinyproxy/tinyproxy.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for tinyproxy.pid modification before a root script executes a...

5.5CVSS5.8AI score0.00292EPSS
Exploits0References2
CNVD
CNVD
added 2017/05/25 12:0 a.m.5 views

ImageWorsener Denial of Service Vulnerability (CNVD-2017-08092)

ImageWorsener is a set of image scaling and processing utilities. A security vulnerability exists in the imagew-main.c:960:12 of the libimageworsener.a file in ImageWorsener version 1.3.1. A remote attacker can exploit this vulnerability to cause a denial of service buffer overflow with a special...

6.5CVSS6.8AI score0.01225EPSS
Exploits0References1
NVD
NVD
added 2017/05/23 4:29 a.m.21 views

CVE-2017-9203

imagew-main.c:960:12 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service buffer underflow via a crafted image, related to imagew-bmp.c...

6.5CVSS6.3AI score0.01225EPSS
Exploits0References2
OSV
OSV
added 2017/05/23 4:29 a.m.18 views

CVE-2017-9203

imagew-main.c:960:12 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service buffer underflow via a crafted image, related to imagew-bmp.c...

6.5CVSS6.8AI score0.01225EPSS
Exploits0References2
CNVD
CNVD
added 2016/09/30 12:0 a.m.2 views

Gnome gnome-session buffer overflow vulnerability

Gnome-session is a session tool for the Gnome 2.x desktop environment. A buffer overflow vulnerability exists in the 'main.c' script of nome gnome-session, which stems from the program's failure to perform proper bounds checking on user-submitted input. An attacker could use this vulnerability to...

8AI score
Exploits0References1
Rows per page
Query Builder