php: Out-of-bounds heap memory read in exif_read_data() caused by malformed input

The exifprocessTIFFinJPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not validate TIFF start data, which allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via crafted header data...

php: Out-of-bounds heap memory read in exif_read_data() caused by malformed input

The exifprocessIFDTAG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not properly construct spprintf arguments, which allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via crafted...

double free in krb5 code

In curl's implementation of the Kerberos authentication mechanism, the function readdata in security.c is used to fill the necessary krb5 structures. When reading one of the length fields from the socket, it fails to ensure that the length parameter passed to realloc is not set to 0. This would...

UBUNTU-CVE-2016-8619

The function readdata in security.c in curl before version 7.51.0 is vulnerable to memory double free...

Unspecified Vulnerability in Oracle Sun Systems Products 'SMB Users' Subpart

Oracle Sun Systems Products Suite is a Sun Systems Products Suite from Oracle USA. A security vulnerability exists in the Oracle Sun Systems Products 'SMB Users' subcomponent. A local attacker could exploit the vulnerability to read data, compromising the confidentiality and integrity of the data...

Oracle Communications Applications Unspecified Vulnerability in Oracle Communications EAGLE Application Processor Component

Oracle Communications is a suite of communications applications for rapidly delivering and monetizing digital lifestyle services from Oracle Corporation. the Oracle Communications EAGLE Application Processor is one of the platform components that provides Signaling Transmission Points STPs,...

USN-2988-1 lxd vulnerabilities

Robie Basak discovered that LXD incorrectly set permissions when setting up a loop based ZFS pool. A local attacker could use this issue to copy and read the data of any LXD container. CVE-2016-1581 Robie Basak discovered that LXD incorrectly set permissions when switching an unprivileged contain...

PHP 'exif_read_data()' function information disclosure vulnerability (CNVD-2016-02881)

PHP is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. A security vulnerability in the PHP 'exifreaddata' function allows remote attackers to exploit the vulnerability to read heap memory...

PHP 'exif_read_data()' function information disclosure vulnerability

PHP is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. A security vulnerability in the PHP 'exifreaddata' function allows remote attackers to exploit the vulnerability to read heap memory...

PHP 'exif_read_data()' function information disclosure vulnerability (CNVD-2016-02882)

PHP is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. A security vulnerability in the PHP 'exifreaddata' function allows remote attackers to exploit the vulnerability to read heap memory...

Unspecified Vulnerability in Oracle PeopleSoft Products PeopleSoft Enterprise PeopleTools Component (CNVD-2016-02558)

Oracle PeopleSoft is a suite of enterprise human capital management solutions from Oracle.PeopleSoft Enterprise HCM Candidate Gateway is a self-service front-end to the Oracle PeopleSoft Enterprise Recruiting solution component. An unspecified vulnerability in the PIA Search Functionality...

Unspecified Vulnerability in Oracle Financial Services Software Oracle FLEXCUBE Direct Banking Component (CNVD-2016-02479)

Oracle Financial Services Software is a set of Oracle's core banking, online banking and property management financial services software, of which Oracle FLEXCUBE Direct Banking is a set of Internet and mobile banking solution components. An unspecified vulnerability exists in the Pre-Login...

CVE-2016-1357

The password-management administration component in Cisco Policy Suite CPS 7.0.1.3, 7.0.2, 7.0.2-att, 7.0.3-att, 7.0.4-att, and 7.5.0 allows remote attackers to bypass intended RBAC restrictions and read unspecified data via unknown vectors, aka Bug ID CSCut85211...

PT-2017-7315

Name of the Vulnerable Software and Affected Versions Salt versions prior to 2015.8.3 Description The issue concerns the state.sls function in Salt, which uses weak permissions on the cache data. This allows local users to obtain sensitive information by reading the file. Recommendations For...

CVE-2016-1152

Cybozu Office 9.9.0 through 10.3.0 allows remote authenticated users to bypass intended access restrictions, and read or write to plan data, via unspecified vectors, a different vulnerability than CVE-2015-8484, CVE-2015-8485, and CVE-2015-8486...

IBM WebSphere Portal LDAP Injection Vulnerability

IBM WebSphere Portal is a suite of enterprise portal software from IBM. The software creates a platform that connects the internal and external parts of an organization, allowing employees, customers and suppliers to access internal data through the platform. A security vulnerability exists in IB...

The vulnerability of the Solaris operating system allows a perpetrator to gain access to data reading, modify data, or cause service interruptions.

The vulnerability of Solaris Kernel Zones, a component of the Solaris operating system, is related to errors in the code. Exploiting this vulnerability can allow an attacker, operating locally, to gain access to read, modify, add, or delete data. This may cause the operating system to become...

The vulnerability of the Oracle Fusion Middleware software allows a perpetrator to gain unauthorized access to read data.

The vulnerability of the Oracle Access Manager component of the Oracle Fusion Middleware software is related to errors in the code. Exploiting this vulnerability may allow an attacker, operating remotely, to gain unauthorized access to read data...

The vulnerability of the Oracle E-Business Suite system’s automation activities allows a perpetrator to gain unauthorized access to read data.

The vulnerability of the Oracle Application Object Library component in the Oracle E-Business Suite automation system is related to errors in the code. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to read data...

The vulnerability of the Oracle Fusion Middleware software allows a perpetrator to gain unauthorized access to read data.

The vulnerability of the Oracle Jdeveloper component of the Oracle Fusion Middleware software is related to errors in the code. Exploiting this vulnerability may allow an attacker, operating remotely, to gain unauthorized access to read data...