Lucene search
K

441 matches found

Positive Technologies
Positive Technologies
added 2020/01/22 12:0 a.m.6 views

PT-2020-1242 · Libyang · Libyang

Name of the Vulnerable Software and Affected Versions: libyang versions prior to 1.0-r3 Description: A NULL pointer dereference issue is present in the lys extension instances free function due to a copy of unresolved extensions in lys restr dup. This can cause applications that use libyang to...

8.8CVSS6.6AI score0.0279EPSS
Exploits7References42
OSV
OSV
added 2019/12/31 12:15 a.m.3 views

UBUNTU-CVE-2019-20163

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function gfodfavccfgwritebs in odf/descriptors.c...

5.5CVSS7.1AI score0.00865EPSS
Exploits1References3
OSV
OSV
added 2019/12/31 12:0 a.m.1 views

UBUNTU-CVE-2019-14584

Null pointer dereference in Tianocore EDK2 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS6.8AI score0.00328EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/09/19 12:0 a.m.5 views

The vulnerability in the drivers/net/wireless/ath/ath10k/usb.c kernel of Linux operating systems allows a hacker to cause a service failure.

The vulnerability in the drivers/net/wireless/ath/ath10k/usb.c file of Linux operating systems is related to pointer assignment errors. Exploiting this vulnerability allows a remote attacker to cause service interruptions by using an incomplete address in the endpoint descriptor...

7.8CVSS5.5AI score0.03771EPSS
Exploits0References28Affected Software2
AlpineLinux
AlpineLinux
added 2019/07/01 12:0 a.m.3 views

CVE-2019-13147

In Audio File Library aka audiofile 0.3.6, there exists one NULL pointer dereference bug in ulaw2linearbuf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file...

6.5CVSS6.9AI score0.01913EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2019/06/18 7:8 p.m.6 views

curl: LDAP NULL pointer dereference

A NULL pointer dereference flaw was found in the way libcurl checks values returned by the openldap ldapgetattributeber function. A malicious LDAP server could use this flaw to crash a libcurl client application via a specially crafted LDAP reply...

7.5CVSS7.3AI score0.09565EPSS
Exploits0References5
OSV
OSV
added 2019/05/30 11:29 p.m.2 views

DEBIAN-CVE-2019-12482

An issue was discovered in GPAC 0.7.1. There is a NULL pointer dereference in the function gfisomgetoriginalformattype at isomedia/drmsample.c in libgpac.a, as demonstrated by MP4Box...

7.5CVSS7AI score0.01655EPSS
Exploits1References1
Cent OS
Cent OS
added 2019/05/29 7:55 p.m.244 views

libvirt security update

CentOS Errata and Security Advisory CESA-2019:1264 An update for libvirt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

8.8CVSS7.2AI score0.01411EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2019/05/23 4:17 p.m.120 views

Important: Red Hat Security Advisory: libvirt security and bug fix update

An update for libvirt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

8.8CVSS7.3AI score0.01411EPSS
Exploits0References2
OSV
OSV
added 2019/03/25 12:29 a.m.2 views

UBUNTU-CVE-2019-10022

An issue was discovered in Xpdf 4.01.01. There is a NULL pointer dereference in the function Gfx::opSetExtGState in Gfx.cc...

5.5CVSS6.4AI score0.00881EPSS
Exploits1References3
CNVD
CNVD
added 2018/12/24 12:0 a.m.2 views

Google Android Mask Pointer Error Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A mask pointer error vulnerability exists in Android. No details of the vulnerability are provided at this time...

7.8CVSS6.9AI score0.00143EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2018/12/21 10:19 a.m.29 views

CVE-2018-19876

cairo 1.16.0, in cairoftapplyvariations in cairo-ft-font.c, would free memory using a free function incompatible with WebKit's fastMalloc, leading to an application crash with a "free: invalid pointer" error...

6.5CVSS2AI score0.01714EPSS
Exploits0References2
NVD
NVD
added 2018/12/05 8:29 p.m.18 views

CVE-2018-19876

cairo 1.16.0, in cairoftapplyvariations in cairo-ft-font.c, would free memory using a free function incompatible with WebKit's fastMalloc, leading to an application crash with a "free: invalid pointer" error...

6.5CVSS6.6AI score0.01714EPSS
Exploits0References2
OSV
OSV
added 2018/12/03 6:29 a.m.2 views

DEBIAN-CVE-2018-19797

In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::SelectorList::populateextends in SharedPtr.hpp used by ast.cpp and astselectors.cpp may cause a Denial of Service application crash via a crafted sass input file...

6.5CVSS8.8AI score0.01829EPSS
Exploits0References1
OSV
OSV
added 2018/11/10 12:0 a.m.4 views

UBUNTU-CVE-2018-19149

Poppler before 0.70.0 has a NULL pointer dereference in popplerattachmentnew when called from popplerannotfileattachmentgetattachment...

6.5CVSS6.7AI score0.0274EPSS
Exploits1References4
AlpineLinux
AlpineLinux
added 2018/05/22 9:0 p.m.40 views

CVE-2018-11359

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the RRC dissector and other dissectors could crash. This was addressed in epan/proto.c by avoiding a NULL pointer dereference...

7.5CVSS7.5AI score0.02858EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2017/12/07 12:0 a.m.8 views

The vulnerability of the fimg2d driver for the Samsung Exynos 7420 Android operating system, which allows a hacker to compromise data confidentiality, integrity, and accessibility.

The vulnerability of the fimg2d driver for the Samsung Exynos 7420 Android operating system is related to pointer assignment errors. Exploiting this vulnerability allows a remote attacker to compromise data confidentiality, integrity, and accessibility...

10CVSS7.8AI score0.02633EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/11/09 12:0 a.m.4 views

The vulnerability of the inftrees library’s Zlib component allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the inftrees.c component of the zlib library arises due to a calculation error related to pointers. Exploiting this vulnerability may allow an attacker, operating remotely, to cause unpredictable behavior in the program, which could lead to breaches of confidentiality,...

6.8CVSS6.9AI score0.04793EPSS
Exploits0References13Affected Software7
Positive Technologies
Positive Technologies
added 2017/09/09 12:0 a.m.3 views

PT-2017-3183 · Bchunk +1 · Bchunk +1

Name of the Vulnerable Software and Affected Versions: bchunk versions 1.2.0 through 1.2.1 Description: The issue is related to pointer dereference errors. It can be exploited by a remote attacker using a specially crafted .cue file, potentially causing the application to crash. The problem arise...

5.5CVSS5.7AI score0.01EPSS
Exploits0References30
OSV
OSV
added 2017/04/20 6:59 p.m.3 views

ALPINE-CVE-2017-2784

An exploitable free of a stack pointer vulnerability exists in the x509 certificate parsing code of ARM mbed TLS before 1.3.19, 2.x before 2.1.7, and 2.4.x before 2.4.2. A specially crafted x509 certificate, when parsed by mbed TLS library, can cause an invalid free of a stack pointer leading to ...

8.1CVSS8AI score0.0339EPSS
Exploits2References1
Rows per page
Query Builder