Astra Linux - уязвимость в htmldoc

There is a vulnerability in htmldoc 1.9.16. In the imageloadjpeg function, when image.cxx calls malloc, ‘img-width’ and ‘img-height’ are too large to prevent an integer overflow. As a result, the malloc function may return a heap block smaller than expected, causing a buffer overflow/Address...

CLSA-2026-1776605836 glibc: Fix of 3 CVEs

CVE-2018-6485: fix integer overflows in memalign and malloc - CVE-2018-1000001: fix realpath buffer underflow via getcwd - CVE-2018-19591: fix ifnametoindex descriptor leak...

glibc: Fix of 3 CVEs

CVE-2018-6485: fix integer overflows in memalign and malloc - CVE-2018-1000001: fix realpath buffer underflow via getcwd - CVE-2018-19591: fix ifnametoindex descriptor leak...

CLSA-2026-1776606103 glibc: Fix of 3 CVEs

CVE-2018-6485: fix integer overflows in memalign and malloc - CVE-2018-1000001: fix realpath buffer underflow via getcwd - CVE-2018-19591: fix ifnametoindex descriptor leak...

Linux Distros Unpatched Vulnerability : CVE-2017-16868

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In SWFTools 0.9.2, the wavconvert2mono function in lib/wav.c does not properly restrict a multiplication within a malloc call, which allows remote attackers to...

SUSE CVE-2025-29087

In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concatws SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string e.g., 2MB or more, an integer overflow occurs in calculating the size of the...

Medium: uriparser

Issue Overview: An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine in UriQuery.c has an integer overflow via long keys or values, with a resultant buffer overflow. CVE-2024-34402 An issue was discovered in uriparser through 0.9.7. ComposeQueryMallocExMm in UriQuery.c has an...

CVE-2021-27504

Texas Instruments devices running FREERTOS, malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'malloc' for FreeRTOS, resulting in code execution...

SUSE CVE-2013-4332

Multiple integer overflows in malloc/malloc.c in the GNU C Library aka glibc or libc6 2.18 and earlier allow context-dependent attackers to cause a denial of service heap corruption via a large value to the 1 pvalloc, 2 valloc, 3 posixmemalign, 4 memalign, or 5 alignedalloc functions...

SUSE CVE-2017-17426

The malloc function in the GNU C Library aka glibc or libc6 2.26 could return a memory block that is too small if an attempt is made to allocate an object whose size is close to SIZEMAX, potentially leading to a subsequent heap overflow. This occurs because the per-thread cache aka tcache feature...

CLSA-2022-1641904053 Fix of 14 CVEs

CVE-2018-9138: Fix stack exhaustion - CVE-2018-12641: Fix stack exhaustion - CVE-2018-12697: Fix NULL pointer dereference - CVE-2018-12698: Fix memory consumption - CVE-2018-12699: Fix heap-based buffer overflow - CVE-2018-12700: Fix infinite recursion - CVE-2018-17794: Fix NULL pointer...

autotrace: integer overflow in input-bmp.c

A biWidthbiBitCnt integer overflow in input-bmp.c in autotrace 0.31.1 allows attackers to provide an unexpected input value to malloc via a malformed bitmap image...

DEBIAN-CVE-2021-31873

An issue was discovered in klibc before 2.0.9. Additions in the malloc function may result in an integer overflow and a subsequent heap buffer overflow...

Texas Instruments TI-RTOS-MCU 输入验证错误漏洞

The Texas Instruments TI-RTOS-MCU is an application system from Texas Instruments, Inc. A real-time operating system RTOS for microcontrollers MCUs. Texas Instrument TI-RTOS has an input validation error vulnerability that originates from returning a valid pointer to a small buffer on a very larg...

PT-2021-4562 · Klibc +4 · Klibc +4

Name of the Vulnerable Software and Affected Versions: klibc versions prior to 2.0.9 Description: The issue is related to the malloc function in the klibc library, which may result in an integer overflow and a subsequent heap buffer overflow. This could allow a remote attacker to access...

UBUNTU-CVE-2020-35738

WavPack 5.3.0 has an out-of-bounds write in WavpackPackSamples in packutils.c because of an integer overflow in a malloc argument. NOTE: some third-parties claim that there are later "unofficial" releases through 5.3.2, which are also affected...

WavPack 缓冲区错误漏洞

WavPack is a free, open source lossless audio compression format with a .wv file extension. An out-of-bounds write vulnerability exists in WavpackPackSamples in packutils.c in WavPack 5.3.0, which stems from an integer overflow in the malloc parameter and can be exploited by an attacker to cause ...

PT-2020-5481 · Wavpack +5 · Wavpack +5

Name of the Vulnerable Software and Affected Versions: WavPack versions 5.3.0 through 5.3.2 Description: The issue is related to an out-of-bounds write in the WavpackPackSamples function in the pack utils.c file due to an integer overflow in a malloc argument. This can allow a remote attacker to...

UBUNTU-CVE-2018-18483

The getcount function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31, allows remote attackers to cause a denial of service malloc called with the result of an integer-overflowing calculation or possibly have unspecified other impact via a crafted string, as demonstrated by...

powerpc and Intel i386 GNU C Library Integer Overflow Vulnerability

The powerpc is a compact instruction set architecture CPU central processing unit.The Intel i386 is an x86 series CPU central processing unit from Intel Corporation.The GNU C Library aka glibc, libc6 is one of the open source, freeware C language compilers released under the LGPL license. An...