SUSE CVE-2018-6912

The decodeplane function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service out of array read via a crafted AVI file...

SUSE CVE-2018-13867

An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in the function H5Faccumread in H5Faccum.c...

PT-2023-35922 · Libxml2 · Libxml2

Name of the Vulnerable Software and Affected Versions: libxml2 affected versions not specified Description: The issue is related to a heap-buffer-overflow read error. Technical details about the crash indicate it occurs in the xmlParseTryOrFinish and xmlParseChunk functions within the xml.c file...

DEBIAN-CVE-2023-25567

GSS-NTLMSSP, a mechglue plugin for the GSSAPI library that implements NTLM authentication, has an out-of-bounds read when decoding target information prior to version 1.2.0. The length of the avpair is not checked properly for two of the elements which can trigger an out-of-bound read. The...

CVE-2023-24559

A vulnerability has been identified in Solid Edge SE2022 All versions V222.0MP12, Solid Edge SE2023 All versions V223.0Update2. The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to...

Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in LibTIFF

Summary IBM Watson Discovery Cartridge for IBM Cloud Pak for Data contains a vulnerable version of LibTIFF. Vulnerability Details CVEID:CVE-2022-0924 DESCRIPTION: libtiff is vulnerable to a denial of service, caused by heap-based buffer overflow in cpContigBufToSeparateBuf. By persuading a victim...

Adobe Illustrator Multiple Vulnerabilities (APSB22-60) - Windows

Adobe Illustrator is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you c...

Debian DSA-5277-1 : php7.4 - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5277 advisory. Multiple security issues were discovered in PHP, a widely-used open source general purpose scripting language which could result in denial of service, information...

Slackware Linux 15.0 / current php Multiple Vulnerabilities (SSA:2022-314-01)

The version of php installed on the remote host is prior to 7.4.33. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-314-01 advisory. - The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allo...

wavpack: Heap out-of-bounds read in WavpackPackSamples()

A heap out-of-bounds read flaw was found in WavPacks' WavpackPackSamples function of src/packutils.c and only affects the command-line program of WavPack not libwavpack. This flaw allows an attacker to exploit this flaw for a website that uses the WavPack command-line program on user-provided...

PT-2022-36751 · Git +1 · Quickjs

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. Technical details about the crash include the crash type being a heap-buffer-overflow read 4,...

Amazon Linux 2022 : libtiff, libtiff-devel, libtiff-static (ALAS2022-2022-183)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-183 advisory. Out-of-bounds Read error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available wi...

Adobe Acrobat 缓冲区错误漏洞

Adobe Acrobat is a suite of PDF file editing and conversion tools from the American company Audobee Adobe. A buffer error vulnerability exists in Adobe Acrobat DC versions prior to 22.003.20258 and Acrobat 2020 20.005.30407, which originates from an out-of-bounds read and could lead to a memory...

PT-2022-36678 · Git +1 · Hunspell

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. Technical details about the crash include the AffixMgr::compound check, SuggestMgr::checkword,...

Adobe Photoshop Multiple Vulnerabilities (APSB21-109) - Windows

Adobe Photoshop is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

PT-2022-37262 · Git +1 · Ghostscript

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-underflow read error. Technical details about the crash include the functions gs type2 interpret, copied type1 gly...

PT-2022-37164 · Unknown · Libarchive

Name of the Vulnerable Software and Affected Versions: libarchive affected versions not specified Description: The issue is related to a heap-use-after-free read error. Technical details about the crash include the archive read data function and the process head file function in libarchive...

Huawei EulerOS: Security Advisory for compat-libtiff3 (EulerOS-SA-2022-1884)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP9 : libtiff (EulerOS-SA-2022-1869)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Null source pointer passed as an argument to memcpy function within TIFFFetchStripThing in tifdirread.c in libtiff versions from 3.9.0 to 4.3.0...

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2022-1739)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...