OSV-2023-1228 Stack-buffer-overflow in asn1_decode_entry

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64522 Crash type: Stack-buffer-overflow READ 8 Crash state: asn1decodeentry asn1decode scasn1decode...

OSV-2023-1227 Stack-buffer-overflow in io_memory_read

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64529 Crash type: Stack-buffer-overflow WRITE 11 Crash state: iomemoryread riopluginread riodescread...

PT-2023-30765 · Unknown +1 · Clickhouse

Name of the Vulnerable Software and Affected Versions: ClickHouse affected versions not specified Description: The issue is an integer underflow resulting in a crash due to a stack buffer overflow in the decompression of the FPC codec. It can be triggered and exploited by an unauthenticated...

CVE-2023-5055 L2CAP: Possible Stack based buffer overflow in le_ecred_reconf_req()

Possible variant of CVE-2021-3434 in function leecredreconfreq...

CLSA-2023-1700164647 squid: Fix of CVE-2023-46847

CVE-2023-46847: Fix stack buffer overflow when parsing Digest Authorization...

squid: Fix of CVE-2023-46847

CVE-2023-46847: Fix stack buffer overflow when parsing Digest Authorization...

CLSA-2023-1700164396 squid: Fix of CVE-2023-46847

CVE-2023-46847: Fix stack buffer overflow when parsing Digest Authorization...

CLSA-2023-1700160647 Fix CVE(s): CVE-2023-46847

SECURITY UPDATE: Denial of Service in HTTP Digest Authentication - debian/patches/CVE-2023-46847.patch: fix stack buffer overflow when parsing Digest Authorization - CVE-2023-46847...

KB5032921 - A possible stack buffer overflow from a remote code execution vulnerability has been exposed in the OLEDB provider for DB2.

KB5032921 - A possible stack buffer overflow from a remote code execution vulnerability has been exposed in the OLEDB provider for DB2. Host Integration Server 2020 Introduction A possible stack buffer overflow from a remote code execution has been exposed in the OLEDB provider for DB2. This fix...

Huawei EulerOS: Security Advisory for json-c (EulerOS-SA-2023-3181)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for json-c (EulerOS-SA-2023-3216)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the microprogrammed software of IP cameras Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 arises from buffer overflows in the stack. This allows intruders to execute arbitrary code.

The vulnerability of the microprogrammed software for IP cameras Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 arises due to buffer overflows in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code upon...

OSV-2023-1122 Stack-buffer-overflow in dxf_header_read

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63919 Crash type: Stack-buffer-overflow READ Crash state: dxfheaderread dwgreaddxf llvmfuzz.c...

kernel: netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one Eric Dumazet says: nfconntrackdccppacket has an unique: dh = skbheaderpointerskb, dataoff, sizeofdh, &dh; And nothing more is 'pulled' from the...

kernel: cpufreq: qcom: fix writes in read-only memory region

In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom: fix writes in read-only memory region This commit fixes a kernel oops because of a write in some read-only memory: 9.068287 Unable to handle kernel write to read-only memory at virtual address ffff800009240ad8...

squid:4 security update

libecap squid 4.15-6.0.1 - Improve HTTP chunked encoding compliance CVE-2023-46846 - Fix stack buffer overflow when parsing Digest Authorization CVE-2023-46847...

Rocky Linux 8 : shim (RLSA-2021:1734)

The remote Rocky Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RLSA-2021:1734 advisory. - A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw...

Low: gdb security update

The GNU Debugger GDB allows users to debug programs written in various programming languages including C, C++, and Fortran. Security Fixes: libiberty: Heap/stack buffer overflow in the dlanglname function in d-demangle.c CVE-2021-3826 For more details about the security issues, including the...

Moderate: LibRaw security update

LibRaw is a library for reading RAW files obtained from digital photo cameras CRW/CR2, NEF, RAF, DNG, and others. Security Fixes: LibRaw: stack buffer overflow in LibRawbufferdatastream::gets in src/librawdatastream.cpp CVE-2021-32142 For more details about the security issues, including the...

Rocky Linux 8 : redis:5 (RLSA-2019:2002)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2019:2002 advisory. - A heap-buffer overflow vulnerability was found in the Redis hyperloglog data structure versions 3.x before 3.2.13, 4.x before 4.0.14 and 5.x before...