CVE-2022-30067

GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a crafted XCF file, the program will allocate for a huge amount of memory, resulting in insufficient memory or program crash...

SUSE SLED15 / SLES15 Security Update : jasper (SUSE-SU-2022:1479-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1479-1 advisory. - A flaw was found in jasper before 2.0.25. An out of bounds read issue was found in jp2decode function whic m...

SUSE SLES12 Security Update : jasper (SUSE-SU-2022:1475-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1475-1 advisory. - A flaw was found in jasper before 2.0.25. An out of bounds read issue was found in jp2decode function whic may lead to disclosure...

CVE-2022-1534

Buffer Over-read at parserawml.c:1416 in GitHub repository bfabiszewski/libmobi prior to 0.11. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow attackers to read sensitive information from other memory locations or cause a crash...

CVE-2022-1534

Buffer Over-read at parserawml.c:1416 in GitHub repository bfabiszewski/libmobi prior to 0.11. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow attackers to read sensitive information from other memory locations or cause a crash...

PT-2022-6739

Name of the Vulnerable Software and Affected Versions GIMP versions 2.10.30 through 2.10.30 GIMP version 2.99.10 Description The issue is related to a buffer overflow vulnerability. It can be exploited by a remote attacker using a specially crafted XCF file, which causes the program to allocate a...

vim over-range pointer offset vulnerability

Vim is a UNIX-based editor. vim versions prior to 8.2.4774 contain an out-of-range pointer offset vulnerability, which stems from the use of out-of-range pointer offsets in vim. An attacker could exploit this vulnerability to crash the program...

radare2 缓冲区错误漏洞

radare2 is a set of libraries and tools for working with binary files. radare2 has a security vulnerability that could be exploited by an attacker to read sensitive information from other memory locations or cause a crash...

FIS GT.M f_incr Function Denial of Service Vulnerability

FIS GT.M is a database platform. A denial of service vulnerability exists in FIS GT.M versions prior to V7.0-000, which stems from the fincr function in srport/fincr.c incorrectly initializing the type and the presence of a NULL pointer dereference, which can be exploited by an attacker to cause ...

UBUNTU-CVE-2021-42782

Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library...

CVE-2022-1383

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.8. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow attackers to read sensitive information from other memory locations or cause a crash...

CVE-2022-1383

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.8. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow attackers to read sensitive information from other memory locations or cause a crash...

CVE-2022-1383

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.8. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow attackers to read sensitive information from other memory locations or cause a crash...

MariaDB 资源管理错误漏洞

MariaDB is a free and open source database management system from the MariaDB Foundation and a forked version of MySQL with the Maria storage engine. A memory misreference vulnerability exists in Mariadb v10.9 and earlier versions, which originates in the /sql/sqlstring.h component...

编号撤回

MariaDB is a free and open source database management system from the MariaDB Foundation and a forked version of MySQL with the Maria storage engine. A memory misreference vulnerability exists in MariaDB v10.6.3 and lower, which stems from a post-release reuse error in the component...

CVE-2022-27523

A buffer over-read can be exploited in Autodesk TrueView 2022 may lead to an exposure of sensitive information or a crash through using a maliciously crafted DWG file as an Input. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the curre...

CVE-2022-22514

An authenticated, remote attacker can gain access to a dereferenced pointer contained in a request. The accesses can subsequently lead to local overwriting of memory in the CmpTraceMgr, whereby the attacker can neither gain the values read internally nor control the values to be written. If inval...

Stack overflow

Modbus Tools Modbus Slave versions 7.4.2 and prior is vulnerable to a stack-based buffer overflow in the registration field. This may cause the program to crash when a long character string is used...

CVE-2022-1068 Modbus Tools Modbus Slave Stack-Based Buffer Overflow

Modbus Tools Modbus Slave versions 7.4.2 and prior is vulnerable to a stack-based buffer overflow in the registration field. This may cause the program to crash when a long character string is used...

GPAC Denial of Service Vulnerability (CNVD-2022-25784)

GPAC is an open source multimedia framework. GPAC suffers from a denial-of-service vulnerability that stems from the presence of a null pointer dereference in the program. An attacker could exploit this vulnerability to cause the program to crash...