Lucene search
K

104 matches found

OSV
OSV
added 2021/03/19 4:15 a.m.5 views

PYSEC-2021-36

An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size...

7.5CVSS5.9AI score0.02372EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2021/03/19 3:29 a.m.26 views

CVE-2021-25290

An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size...

7.5CVSS6.8AI score0.02372EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2021/03/19 3:29 a.m.44 views

CVE-2021-25290

An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size...

7.5CVSS8.6AI score0.02372EPSS
Exploits0
CNNVD
CNNVD
added 2021/03/11 12:0 a.m.2 views

Pillow 缓冲区错误漏洞

Pillow is a Python-based image processing library. buffer overflow vulnerability exists in versions of Pillow prior to 8.1.1, which stems from the presence of a negative offset memcpy with an invalid size in TiffDecode.c. No details of the vulnerability are currently available...

7.5CVSS5.9AI score0.02372EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2021/03/03 12:0 a.m.16 views

CVE-2021-252890

In TiffDecode.c, there is a negative-offset memcpy with an invalid size...

5.8AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2019/11/26 4:15 p.m.20 views

CVE-2019-14842

Structured reply is a feature of the newstyle NBD protocol allowing the server to send a reply in chunks. A bounds check which was supposed to test for chunk offsets smaller than the beginning of the request did not work because of signed/unsigned confusion. If one of these chunks contains a...

9.8CVSS7.2AI score0.01848EPSS
Exploits0References5
OSV
OSV
added 2017/05/01 6:59 p.m.1 views

DEBIAN-CVE-2017-8396

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 because the existing reloc offset range tests didn't catch small negative offsets less than the size of the reloc field. This vulnerability causes programs that condu...

7.5CVSS9.2AI score0.01839EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/11/15 11:40 a.m.3 views

php: OOB read in grapheme_stripos and grapheme_strpos when negative offset is used

The graphemestrpos function in ext/intl/grapheme/graphemestring.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via a negative offset...

9.8CVSS7.4AI score0.06229EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2016/11/15 11:40 a.m.7 views

php: OOB read in grapheme_stripos and grapheme_strpos when negative offset is used

The graphemestripos function in ext/intl/grapheme/graphemestring.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via a negative offset...

9.8CVSS7.4AI score0.06229EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2016/05/22 1:0 a.m.41 views

CVE-2016-4540

Removed by vendor...

9.8CVSS8.7AI score0.06229EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2016/05/06 12:0 a.m.38 views

CVE-2016-4541

The graphemestrpos function in ext/intl/grapheme/graphemestring.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via a negative offset...

9.8CVSS7.1AI score0.06229EPSS
Exploits1References3
OSV
OSV
added 2016/05/06 12:0 a.m.6 views

UBUNTU-CVE-2016-4540

The graphemestripos function in ext/intl/grapheme/graphemestring.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via a negative offset...

9.8CVSS7.2AI score0.06229EPSS
Exploits1References4
OSV
OSV
added 2016/05/06 12:0 a.m.3 views

UBUNTU-CVE-2016-4541

The graphemestrpos function in ext/intl/grapheme/graphemestring.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via a negative offset...

9.8CVSS7.2AI score0.06229EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2010/07/08 12:0 a.m.23 views

Kaspersky Antivirus <= 6.0.1.411 UPX DoS Vulnerability

Kaspersky AntiVirus Engine 6.0.1.411 for Windows allows remote attackers to cause a denial of service CPU consumption via a crafted UPX compressed file with a negative offset, which triggers an infinite loop during decompression. SPDX-FileCopyrightText: 2010 LSS Some text descriptions might be...

7.8CVSS5.5AI score0.02916EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2008/04/16 11:56 p.m.3 views

libfishsound: insufficient boundary checks

Array index vulnerability in Speex 1.1.12 and earlier, as used in libfishsound 0.9.0 and earlier, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib before 1.1.12, and many other products, allows remote attackers to execute arbitrary code via a header structure...

9.3CVSS7.5AI score0.06136EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2008/04/08 6:0 p.m.22 views

CVE-2008-1686

Array index vulnerability in Speex 1.1.12 and earlier, as used in libfishsound 0.9.0 and earlier, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib before 1.1.12, and many other products, allows remote attackers to execute arbitrary code via a header structure...

9.3CVSS7.4AI score0.06136EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2008/04/08 12:0 a.m.29 views

CVE-2008-1686

Array index vulnerability in Speex 1.1.12 and earlier, as used in libfishsound 0.9.0 and earlier, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib before 1.1.12, and many other products, allows remote attackers to execute arbitrary code via a header structure...

9.3CVSS7.5AI score0.06136EPSS
Exploits1References5
FreeBSD
FreeBSD
added 2008/04/06 12:0 a.m.34 views

libxine -- array index vulnerability

xine Team reports: A new xine-lib version is now available. This release contains a security fix an unchecked array index that could allows remote attackers to execute arbitrary code via a header structure containing a negative offset, which is used to dereference a function pointer...

9.3CVSS7.3AI score0.06136EPSS
Exploits1References1
Prion
Prion
added 2008/03/06 12:44 a.m.21 views

Integer overflow

Integer overflow in the BMP::readFromStream method in the libsgl.so library in Google Android SDK m3-rc37a and earlier, and m5-rc14, allows remote attackers to execute arbitrary code via a crafted BMP file with a header containing a negative offset field...

7.5CVSS8.2AI score0.04867EPSS
Exploits3References6Affected Software1
NVD
NVD
added 2008/03/06 12:44 a.m.18 views

CVE-2008-0986

Integer overflow in the BMP::readFromStream method in the libsgl.so library in Google Android SDK m3-rc37a and earlier, and m5-rc14, allows remote attackers to execute arbitrary code via a crafted BMP file with a header containing a negative offset field...

7.5CVSS7.6AI score0.04867EPSS
Exploits3References6
Rows per page
Query Builder