CVE-2023-52618 block/rnbd-srv: Check for unlikely string overflow

In the Linux kernel, the following vulnerability has been resolved: block/rnbd-srv: Check for unlikely string overflow Since "devsearchpath" can technically be as large as PATHMAX, there was a risk of truncation when copying it and a second string into "fullpath" since it was also PATHMAX sized...

CVE-2023-52618

In the Linux kernel, the following vulnerability has been resolved: block/rnbd-srv: Check for unlikely string overflow Since "devsearchpath" can technically be as large as PATHMAX, there was a risk of truncation when copying it and a second string into "fullpath" since it was also PATHMAX sized...

CVE-2023-50671

In exiftags 1.01, nikonprop1 in nikon.c has a heap-based buffer overflow write of size 28 because snprintf can write to an unexpected address...

DEBIAN-CVE-2023-50671

In exiftags 1.01, nikonprop1 in nikon.c has a heap-based buffer overflow write of size 28 because snprintf can write to an unexpected address...

CVE-2023-50671

In exiftags 1.01, nikonprop1 in nikon.c has a heap-based buffer overflow write of size 28 because snprintf can write to an unexpected address...

Heap overflow

In exiftags 1.01, nikonprop1 in nikon.c has a heap-based buffer overflow write of size 28 because snprintf can write to an unexpected address...

UBUNTU-CVE-2023-50671

In exiftags 1.01, nikonprop1 in nikon.c has a heap-based buffer overflow write of size 28 because snprintf can write to an unexpected address...

CVE-2023-50671

In exiftags 1.01, nikonprop1 in nikon.c has a heap-based buffer overflow write of size 28 because snprintf can write to an unexpected address...

exiftags Security Vulnerabilities

exiftags is a utility for parsing attribute data for a given JPEG image. A security vulnerability exists in exiftags version 1.01, which stems from a heap-based buffer overflow in nikonprop1 in nikon.c, where snprintf can write to an exception address...

PT-2024-13950 · Exiftags +1 · Exiftags +1

Name of the Vulnerable Software and Affected Versions: exiftags version 1.01 Description: The issue is a heap-based buffer overflow caused by the snprintf function writing to an unexpected address in the nikon prop1 function within nikon.c. This occurs because snprintf can write a size of 28,...

CVE-2023-50671

In exiftags 1.01, nikonprop1 in nikon.c has a heap-based buffer overflow write of size 28 because snprintf can write to an unexpected address...

CVE-2023-50671

CVE-2023-50671 affects exiftags 1.01, where the function nikon_prop1 in nikon.c triggers a heap-based buffer overflow (write of size 28) due to snprintf writing to an unexpected address. Multiple sources (NVD, Red Hat, OSV, UBUNTU OSV, Debian OSV, PRION, and Nessus-derived entries) consistently d...

CVE-2023-50671

In exiftags 1.01, nikonprop1 in nikon.c has a heap-based buffer overflow write of size 28 because snprintf can write to an unexpected address...

CVE-2023-48800

In TOTOLINK X6000RFirmware V9.4.0cu.852B20230719, the shttpd file sub417338 function obtains fields from the front-end, connects them through the snprintf function, and passes them to the CsteSystem function, resulting in a command execution vulnerability...

CVE-2023-48800

In TOTOLINK X6000RFirmware V9.4.0cu.852B20230719, the shttpd file sub417338 function obtains fields from the front-end, connects them through the snprintf function, and passes them to the CsteSystem function, resulting in a command execution vulnerability...

CVE-2023-48800

In TOTOLINK X6000RFirmware V9.4.0cu.852B20230719, the shttpd file sub417338 function obtains fields from the front-end, connects them through the snprintf function, and passes them to the CsteSystem function, resulting in a command execution vulnerability...

CVE-2023-48800

In TOTOLINK X6000RFirmware V9.4.0cu.852B20230719, the shttpd file sub417338 function obtains fields from the front-end, connects them through the snprintf function, and passes them to the CsteSystem function, resulting in a command execution vulnerability...

CVE-2023-48801

In TOTOLINK X6000RFirmware V9.4.0cu.852B20230719, the shttpd file sub415534 function obtains fields from the front-end, connects them through the snprintf function, and passes them to the CsteSystem function, resulting in a command execution vulnerability...

CVE-2023-48801

The CVE-2023-48801 entry describes a command-execution vulnerability in TOTOLINK X6000R_Firmware (V9.4.0cu.852_B20230719). The affected component is the shttpd process; specifically sub_415534, which takes fields from the front-end, concatenates them via snprintf, and passes the result to CsteSys...

CVE-2023-48801

In TOTOLINK X6000RFirmware V9.4.0cu.852B20230719, the shttpd file sub415534 function obtains fields from the front-end, connects them through the snprintf function, and passes them to the CsteSystem function, resulting in a command execution vulnerability...