CVE-2021-3382

Stack buffer overflow vulnerability in gitea 1.9.0 through 1.13.1 allows remote attackers to cause a denial of service crash via vectors related to a file path...

CVE-2021-3382

Stack buffer overflow vulnerability in gitea 1.9.0 through 1.13.1 allows remote attackers to cause a denial of service crash via vectors related to a file path...

CVE-2021-3382

The CVE concerns Gitea versions 1.9.0 through 1.13.1, where a stack buffer overflow vulnerability allows remote attackers to cause a denial of service (crash) via vectors related to a file path. The connected data consistently describe this as a stack-based overflow affecting gitea in that versio...

CVE-2021-3382

Stack buffer overflow vulnerability in gitea 1.9.0 through 1.13.1 allows remote attackers to cause a denial of service crash via vectors related to a file path...

Gitea 缓冲区错误漏洞

Gitea is an open source community-driven clone of Gogs, a lightweight code hosting solution with a backend written in Go under the MIT license. A stack buffer overflow vulnerability exists in gitea versions 1.9.0 through 1.13.1. A remote attacker can exploit this vulnerability to cause a denial o...

CVE-2020-25856

The function DecWPA2KeyData in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 up to and excluding 2.08 does not validate the size parameter for an rtlmemcpy operation, resulting in a stack buffer overflow which can be exploited for remote code execution or denial of...

CVE-2020-25854

The function DecWPA2KeyData in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 up to and excluding 2.08 does not validate the size parameter for an internal function, rtarc4cryptveneer or AESUnWRAPveneer, resulting in a stack buffer overflow which can be exploited for...

Stack overflow

The function CheckMic in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 up to and excluding 2.08 does not validate the size parameter for an internal function, rtmd5hmacveneer or rthmacsha1veneer, resulting in a stack buffer over-read which can be exploited for denial ...

CVE-2020-25854

The CVE-2020-25854 issue affects Realtek RTL8195A Wi‑Fi Module before April 2020 (up to but excluding 2.08). The DecWPA2KeyData() path does not validate the size for internal veneers rt_arc4_crypt_veneer() or _AES_UnWRAP_veneer(), causing a stack buffer overflow that can enable remote code execut...

CVE-2020-25854

The function DecWPA2KeyData in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 up to and excluding 2.08 does not validate the size parameter for an internal function, rtarc4cryptveneer or AESUnWRAPveneer, resulting in a stack buffer overflow which can be exploited for...

CVE-2020-25855

The function AESUnWRAP in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 up to and excluding 2.08 does not validate the size parameter for a memcpy operation, resulting in a stack buffer overflow which can be exploited for remote code execution or denial of service. An...

CVE-2020-25856

Summary: CVE-2020-25856 affects Realtek RTL8195A Wi‑Fi Module. A stack buffer overflow exists in DecWPA2KeyData() due to unvalidated size in an rtl_memcpy() call for versions released before April 2020 (up to and excluding 2.08). This can be exploited to achieve remote code execution or denial of...

CVE-2020-25856

The function DecWPA2KeyData in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 up to and excluding 2.08 does not validate the size parameter for an rtlmemcpy operation, resulting in a stack buffer overflow which can be exploited for remote code execution or denial of...

Stack overflow

In aee, there is a possible memory corruption due to a stack buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-11; Patch ID: ALPS05457070...

CVE-2021-0362

CVE-2021-0362 affects Android 11 as described across multiple sources. The vulnerability is a memory corruption via a stack buffer overflow in the aee component, enabling local privilege escalation with System-level execution privileges. Exploitation does not require user interaction. Patch ALPS0...

OSV-2021-261 Stack-buffer-overflow in flb_sds_cat

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30093 Crash type: Stack-buffer-overflow READ Crash state: flbsdscat ratranslatekeymap flbratranslate...

CentOS 8 : cups (CESA-2020:1765)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:1765 advisory. - cups: stack-buffer-overflow in libcups's asn1gettype function CVE-2019-8675 - cups: stack-buffer-overflow in libcups's asn1getpacked function...

CentOS 8 : squid:4 (CESA-2020:2041)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:2041 advisory. - squid: improper check for new member in ESIExpression::Evaluate allows for stack buffer overflow CVE-2019-12519 - squid: parsing of header...

OSV-2021-257 Stack-buffer-overflow in kdf_sshkdf_set_ctx_params

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30037 Crash type: Stack-buffer-overflow READ 1 Crash state: kdfsshkdfsetctxparams EVPKDFCTXsetparams cryptofuzz::module::OpenSSL::OpKDFSSH...

CentOS 8 : thunderbird (CESA-2019:3237)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2019:3237 advisory. - Mozilla: Use-after-free when creating index updates in IndexedDB CVE-2019-11757 - Mozilla: Potentially exploitable crash due to 360 Total Security...