PDFResurrect buffer overflow vulnerability (CNVD-2020-16832)

PDFResurrect is a tool for analyzing PDF documents. A buffer error vulnerability exists in the 'pdfloadpageskids' function of the pdf.c file in versions of PDFResurrect prior to 0.18, which can be exploited by an attacker to cause malloc failures and out-of-bounds writes...

CVE-2019-14934

An issue was discovered in PDFResurrect before 0.18. pdfloadpageskids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write...

CVE-2019-14934

An issue was discovered in PDFResurrect before 0.18. pdfloadpageskids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write...

CVE-2019-14934

An issue was discovered in PDFResurrect before 0.18. pdfloadpageskids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write...

Out-of-bounds

An issue was discovered in PDFResurrect before 0.18. pdfloadpageskids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write...

CVE-2019-14934

CVE-2019-14934 affects PDFResurrect prior to 0.18. The issue is in pdf_load_pages_kids in pdf.c where an unchecked size value can cause a malloc failure and an out-of-bounds write. Public advisories (Debian, Mageia, Ubuntu, Fedora/OpenVAS) indicate patches/upstream fixes have been released; remed...

CVE-2019-14934

An issue was discovered in PDFResurrect before 0.18. pdfloadpageskids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write...

CVE-2019-14934

An issue was discovered in PDFResurrect before 0.18. pdfloadpageskids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write...

UBUNTU-CVE-2019-13590

An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h startread function, there is an integer overflow on the result of integer addition wraparound to 0 fed into the lsxcalloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid...

CVE-2017-9937

In LibTIFF 4.0.8, there is a memory malloc failure in tifjbig.c. A crafted TIFF document can lead to an abort resulting in a remote denial of service attack...

Design/Logic Flaw

In LibTIFF 4.0.8, there is a memory malloc failure in tifjbig.c. A crafted TIFF document can lead to an abort resulting in a remote denial of service attack...

CVE-2017-9937

In LibTIFF 4.0.8, there is a memory malloc failure in tifjbig.c. A crafted TIFF document can lead to an abort resulting in a remote denial of service attack...

CVE-2017-9937

In LibTIFF 4.0.8, there is a memory malloc failure in tifjbig.c. A crafted TIFF document can lead to an abort resulting in a remote denial of service attack...

CVE-2017-9937

CVE-2017-9937 : LibTIFF 4.0.8 has a memory malloc failure in tif_jbig.c that can be triggered by a crafted TIFF document, leading to a remote denial of service (abort). No additional exploit specifics or mitigations are provided in the connected documents.

CVE-2017-9937

In LibTIFF 4.0.8, there is a memory malloc failure in tifjbig.c. A crafted TIFF document can lead to an abort resulting in a remote denial of service attack...

OpenSLP Denial of Service Vulnerability

OpenSLP Service Location Protocol is an IETF standard protocol developed by the OpenSLP project for dynamic service discovery within the Internet. The protocol supports looking up services in the network by their types and attributes. A denial of service vulnerability exists in the 'xrealloc'...

UBUNTU-CVE-2014-8091

X.Org X Window System aka X11 and X X11R5 and X.Org Server aka xserver and xorg-server before 1.16.3, when using SUN-DES-1 Secure RPC authentication credentials, does not check the return value of a malloc call, which allows remote attackers to cause a denial of service NULL pointer dereference a...

libvncserver: remote code execution, denial of service

CVE-2014-6051 Integer overflow in MallocFrameBuffer on client side. A malicious VNC server could advertise a very large screen size by RFB protocol, width and height are 16-bit integers, resulting in an integer overflow during malloc on client-side. Heap corruption, and possibly remote code...

UBUNTU-CVE-2014-6052

The HandleRFBServerMessage function in libvncclient/rfbproto.c in LibVNCServer 0.9.9 and earlier does not check certain malloc return values, which allows remote VNC servers to cause a denial of service application crash or possibly execute arbitrary code by specifying a large screen size in a 1...

Stack overflow

Stack-based buffer overflow in string/strcolll.c in the GNU C Library aka glibc or libc6 2.17 and earlier allows context-dependent attackers to cause a denial of service crash or possibly execute arbitrary code via a long string that triggers a malloc failure and use of the alloca function...