15 matches found
April 2, 2024, update for Excel 2016 (KB5002577)
April 2, 2024, update for Excel 2016 KB5002577 This article describes update 5002577 for Microsoft Excel 2016 that was released on April 2, 2024.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't apply to the...
Android - libutils UTF16 to UTF8 Conversion Heap Buffer Overflow
Exploit for Android platform in category remote exploits Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=840 There's an inconsistency between the way that the two functions in libutils/Unicode.cpp handle invalid surrogate pairs in UTF16, resulting in a mismatch between the size...
Google Android - libutils UTF16 to UTF8 Conversion Heap Buffer Overflow
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=840 There's an inconsistency between the way that the two functions in libutils/Unicode.cpp handle invalid surrogate pairs in UTF16, resulting in a mismatch between the size calculated by utf16toutf8length and the number of bytes...
OpenJDK: incorrect handling of surrogate pairs in XML attribute values (JAXP, 8143167)
It was discovered that the JAXP component in OpenJDK failed to properly handle Unicode surrogate pairs used as part of the XML attribute values. Specially crafted XML input could cause a Java application to use an excessive amount of memory when parsed...
RHEL 6 : java-1.7.0-openjdk (RHSA-2016:0675)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:0675 advisory. The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Security...
RedHat Update for java-1.7.0-openjdk RHSA-2016:0676-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OpenJDK: incorrect handling of surrogate pairs in XML attribute values (JAXP, 8143167)
It was discovered that the JAXP component in OpenJDK failed to properly handle Unicode surrogate pairs used as part of the XML attribute values. Specially crafted XML input could cause a Java application to use an excessive amount of memory when parsed...
OpenJDK: incorrect handling of surrogate pairs in XML attribute values (JAXP, 8143167)
It was discovered that the JAXP component in OpenJDK failed to properly handle Unicode surrogate pairs used as part of the XML attribute values. Specially crafted XML input could cause a Java application to use an excessive amount of memory when parsed...
OpenJDK: incorrect handling of surrogate pairs in XML attribute values (JAXP, 8143167)
It was discovered that the JAXP component in OpenJDK failed to properly handle Unicode surrogate pairs used as part of the XML attribute values. Specially crafted XML input could cause a Java application to use an excessive amount of memory when parsed...
OpenJDK: incorrect handling of surrogate pairs in XML attribute values (JAXP, 8143167)
It was discovered that the JAXP component in OpenJDK failed to properly handle Unicode surrogate pairs used as part of the XML attribute values. Specially crafted XML input could cause a Java application to use an excessive amount of memory when parsed...
OpenJDK: incorrect handling of surrogate pairs in XML attribute values (JAXP, 8143167)
It was discovered that the JAXP component in OpenJDK failed to properly handle Unicode surrogate pairs used as part of the XML attribute values. Specially crafted XML input could cause a Java application to use an excessive amount of memory when parsed...
OpenJDK: incorrect handling of surrogate pairs in XML attribute values (JAXP, 8143167)
It was discovered that the JAXP component in OpenJDK failed to properly handle Unicode surrogate pairs used as part of the XML attribute values. Specially crafted XML input could cause a Java application to use an excessive amount of memory when parsed...
OpenJDK: incorrect handling of surrogate pairs in XML attribute values (JAXP, 8143167)
It was discovered that the JAXP component in OpenJDK failed to properly handle Unicode surrogate pairs used as part of the XML attribute values. Specially crafted XML input could cause a Java application to use an excessive amount of memory when parsed...
UBUNTU-CVE-2015-5380
The Utf8DecoderBase::WriteUtf16Slow function in unicode-decoder.cc in Google V8, as used in Node.js before 0.12.6, io.js before 1.8.3 and 2.x before 2.3.3, and other products, does not verify that there is memory available for a UTF-16 surrogate pair, which allows remote attackers to cause a deni...
JBoss Web 远程拒绝服务漏洞(CVE-2011-4610)
Bugtraq ID: 51829 CVE ID:CVE-2011-4610 JBOSS是一个基于J2EE的开放源代码的应用服务器。 当代理对Surrogate Pairs字符位于内部缓冲区边界时JBoss Web会进入一个无限循环,远程攻击者可以利用此缺陷触发对JBoss Web服务器的拒绝服务攻击。此JBoss Web服务器上的应用程序需使用UTF-8字符编码或在应答中包含用户提供的UTF-8字符串。 0 Red Hat JBoss Enterprise Web Platform 5.1.2 Red Hat JBoss Enterprise Web Platform 5 EL6 Re...