CVE-2018-13844

An issue has been found in HTSlib 1.8. It is a memory leak in fairead in faidx.c. NOTE: This has been disputed with the assertion that this vulnerability exists in the test harness and HTSlib users would be aware of the need to destruct this object returned by faiload in their own code...

DEBIAN-CVE-2018-13005

An issue was discovered in MP4Box in GPAC 0.7.1. The function urnRead in isomedia/boxcodebase.c has a heap-based buffer over-read...

DEBIAN-CVE-2018-11739

An issue was discovered in libtskimg.a in The Sleuth Kit TSK from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function rawread in tsk/img/raw.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory...

Heap overflow

The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx in LibreOffice before 5.4.6.1 and 6.x before 6.0.2.1 does not validate a customizations index, which allows remote attackers to cause a denial of service heap-based buffer overflow with write access or possibly have unspecifie...

CVE-2018-10120

CVE-2018-10120 affects LibreOffice: SwCTBWrapper::Read in sw/source/filter/ww8/ww8toolbar.cxx does not validate a customizations index, enabling a heap-based buffer overflow when opening crafted Word records. Affected versions are LibreOffice before 5.4.6.1 and 6.x before 6.0.2.1. Impact per desc...

PT-2018-18614 · Libyal +1 · Libevt +1

Name of the Vulnerable Software and Affected Versions: libevt versions prior to 2018-03-17 Description: The issue concerns the libevt record values read event function in libevt record values.c, which does not properly check for out-of-bounds values of user SID data size, strings size, or data...

ALPINE-CVE-2017-13090

The retr.c:fdreadbody function is called when processing OK responses. When the response is sent chunked in wget before 1.19.2, the chunk parser uses strtol to read each chunk's length, but doesn't check that the chunk length is a non-negative number. The code then tries to read the chunk in piec...

PT-2017-13080 · Tsk +1 · The Sleuth Kit +1

Name of the Vulnerable Software and Affected Versions: The Sleuth Kit TSK version 4.4.2 Description: The issue occurs when the fls command in The Sleuth Kit TSK hangs on a corrupt exfat image. This happens due to a problem in the tsk img read function located in tsk/img/img io.c within the...

DEBIAN-CVE-2017-12432

In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadPCXImage in coders/pcx.c, which allows attackers to cause a denial of service...

UBUNTU-CVE-2017-9432

Document Liberation Project libstaroffice before 2017-04-07 has an out-of-bounds write caused by a stack-based buffer overflow related to the DatabaseName::read function in lib/StarWriterStruct.cxx...

CVE-2017-9432

Document Liberation Project libstaroffice before 2017-04-07 has an out-of-bounds write caused by a stack-based buffer overflow related to the DatabaseName::read function in lib/StarWriterStruct.cxx...

CVE-2017-9432

Document Liberation Project libstaroffice before 2017-04-07 has an out-of-bounds write caused by a stack-based buffer overflow related to the DatabaseName::read function in lib/StarWriterStruct.cxx...

lrzip denial of service vulnerability (CNVD-2017-06449)

lrzip Long Range ZIP is an open source compression utility for large files. A security bypass vulnerability exists in the 'bufRead::get' function of the libzpaq/libzpaq.h file in liblrzip.so in lrzip version 0.631. A remote attacker could use this vulnerability to cause a denial of service other...

radare2 denial of service vulnerability

radare2 is a set of libraries and tools for working with binary files. A security vulnerability exists in the 'rread' function in the libr/include/rendian.h file in radare2 version 1.2.1. A remote attacker can exploit this vulnerability to cause a denial of service null pointer backreference and...

CVE-2016-9637

The 1 ioportread and 2 ioportwrite functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vectors involving an out-of-range ioport access...

DEBIAN-CVE-2016-10165

The TypeMLURead function in cmstypes.c in Little CMS aka lcms2 allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read...

lcms2: Out-of-bounds read in Type_MLU_Read()

The TypeMLURead function in cmstypes.c in Little CMS aka lcms2 allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read...

CVE-2015-8789

Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document...

CVE-2015-8789

Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document...

CVE-2015-8789

Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document...