29 matches found
WavPack 缓冲区错误漏洞
WavPack is a free, open source lossless audio compression format with a .wv file extension. An out-of-bounds write vulnerability exists in WavpackPackSamples in packutils.c in WavPack 5.3.0, which stems from an integer overflow in the malloc parameter and can be exploited by an attacker to cause ...
UBUNTU-CVE-2018-18483
The getcount function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31, allows remote attackers to cause a denial of service malloc called with the result of an integer-overflowing calculation or possibly have unspecified other impact via a crafted string, as demonstrated by...
powerpc and Intel i386 GNU C Library Integer Overflow Vulnerability
The powerpc is a compact instruction set architecture CPU central processing unit.The Intel i386 is an x86 series CPU central processing unit from Intel Corporation.The GNU C Library aka glibc, libc6 is one of the open source, freeware C language compilers released under the LGPL license. An...
UBUNTU-CVE-2017-17426
The malloc function in the GNU C Library aka glibc or libc6 2.26 could return a memory block that is too small if an attempt is made to allocate an object whose size is close to SIZEMAX, potentially leading to a subsequent heap overflow. This occurs because the per-thread cache aka tcache feature...
SWFTools Denial of Service Vulnerability (CNVD-2017-37437)
SWFTools is a utility toolset for working with Adobe Flash files SWF files. A security vulnerability exists in the 'wavconvert2mono' function in the lib/wav.c file in SWFTools version 0.9.2, which stems from the program's failure to properly restrict multiplication in malloc calls. The...
gc: malloc() and calloc() overflows
Multiple integer overflows in the 1 GCgenericmalloc and 2 calloc functions in malloc.c, and the 3 GCgenericmallocignoreoffpage function in mallocx.c in Boehm-Demers-Weiser GC libgc before 7.2 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows...
boost: ordered_malloc() overflow
Integer overflow in the orderedmalloc function in boost/pool/pool.hpp in Boost Pool before 3.9 makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large memory chunk size value, which causes less memory to be allocated than expected...
Moderate gnupg security update
1.2.6-6 - backport fixes for two more malloc overflows from 1.4.5rc1 200502...
Interbase 6.0 malloc() issues
====================================================================== Strategic Reconnaissance Team Security Advisory SRT2002-06-17-1043 Topic : Interbase 6.0-1 Date : June 17, 2002 Credit : KF dotslashatsnosoft.com Site : http://www.snosoft.com...