189 matches found
UBUNTU-CVE-2018-18520
An Invalid Memory Address Dereference exists in the function elfend in libelf in elfutils through v0.174. Although eu-size is intended to support ar files inside ar files, handlear in size.c closes the outer ar file before handling all inner entries. The vulnerability allows attackers to cause a...
DEBIAN-CVE-2018-18310
An invalid memory address dereference was discovered in dwflsegmentreportmodule.c in libdwfl in elfutils through v0.174. The vulnerability allows attackers to cause a denial of service application crash with a crafted ELF file, as demonstrated by considernotes...
UBUNTU-CVE-2018-18310
An invalid memory address dereference was discovered in dwflsegmentreportmodule.c in libdwfl in elfutils through v0.174. The vulnerability allows attackers to cause a denial of service application crash with a crafted ELF file, as demonstrated by considernotes...
Invalid Memory Address Dereference Vulnerability in libming 'decompileSingleArgBuiltInFunctionCall' Function
libming is a Flash SWF output library written in C for use in systems developed in PHP, Perl, etc. It can be used to output Flash SWF files to the system. A security vulnerability exists in the 'decompileSingleArgBuiltInFunctionCall' function in version 0.4.8 of libming prior to 2018-03-12, which...
UBUNTU-CVE-2018-15870
An invalid memory address dereference was discovered in decompileGETVARIABLE in libming 0.4.8 before 2018-03-12. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...
UBUNTU-CVE-2018-15871
An invalid memory address dereference was discovered in decompileSingleArgBuiltInFunctionCall in libming 0.4.8 before 2018-03-12. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...
Oracle Re-Patches Decade-Old Solaris Bug
Oracle has issued three fixes for a critical Solaris vulnerability that could allow kernel-level privilege escalation. Impacted are the Solaris 10 and 11.3 operating environments. Sun Microsystems now owned by Oracle originally patched the vulnerability in 2009. But, a “re-fix” is now required,...
Invalid Memory Dereference
libexiv2.so is vulnerable to invalid memory dereference attacks. The vulnerability exists in Exiv2::getULong in types.cpp where parsing an image with invalid exif values would cause a denial of service DoS...
Denial Of Service (DoS)
libexiv2.so is vulnerable to denial of service DoS attacks. The vulnerability exists through an invalid memory dereference bug in Evix2::DataValue::read of value.cpp that causes a denial of service DoS attack when parsing a malicious exif...
Invalid Memory Address Dereference Vulnerability in libming 'getString' Function
libming is a Flash SWF output library written in C for use in systems developed in PHP, Perl, etc. It can be used to output Flash SWF files to the system. A security vulnerability exists in the 'getString' function in the util/decompile.c file in libming version 0.4.8. An attacker can exploit thi...
Invalid Memory Address Dereference Vulnerability in libming 'strlenext' Function
libming is a Flash SWF output library written in C for use in systems developed in PHP, Perl, etc. It can be used to output Flash SWF files to the system. A security vulnerability exists in the 'strlenext' function in the util/decompile.c file in libming version 0.4.8. An attacker can exploit thi...
Invalid Memory Address Dereference Vulnerability in libming 'getName' Function
libming is a Flash SWF output library written in C for use in systems developed in PHP, Perl, etc. It can be used to output Flash SWF files to the system. A security vulnerability exists in the 'getName' function in libming version 0.4.8. An attacker can exploit this vulnerability to cause a deni...
UBUNTU-CVE-2018-7874
An invalid memory address dereference was discovered in strlenext in util/decompile.c in libming 0.4.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...
UBUNTU-CVE-2018-7872
An invalid memory address dereference was discovered in the function getName in libming 0.4.8 for CONSTANT16 data. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...
UBUNTU-CVE-2018-7725
An issue was discovered in ZZIPlib 0.13.68. An invalid memory address dereference was discovered in zzipdiskfread in mmapped.c. The vulnerability causes an application crash, which leads to denial of service...
DEBIAN-CVE-2017-14864
An Invalid memory address dereference was discovered in Exiv2::getULong in types.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...
DEBIAN-CVE-2017-14859
An Invalid memory address dereference was discovered in Exiv2::StringValueBase::read in value.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...
DEBIAN-CVE-2017-14862
An Invalid memory address dereference was discovered in Exiv2::DataValue::read in value.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...
PYSEC-2017-137
An Invalid memory address dereference was discovered in Exiv2::getULong in types.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...
PYSEC-2017-135
An Invalid memory address dereference was discovered in Exiv2::DataValue::read in value.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...