2509 matches found
PT-2019-5854 · Imagemagick +5 · Imagemagick +5
Name of the Vulnerable Software and Affected Versions: ImageMagick versions prior to 7.0.9-0 Description: The issue is related to the CropImage and CropImageToTiles routines in MagickCore/transform.c, where rounding calculations on unconstrained pixel offsets caused undefined behavior, including...
PT-2019-5726 · Imagemagick +5 · Imagemagick +5
Name of the Vulnerable Software and Affected Versions: ImageMagick versions prior to 7.0.8-68 Description: A flaw was found in ImageMagick in MagickCore/colorspace-private.h and MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined...
Undefined Behavior in sailsjs-cacheman
All versions of sailsjs-cacheman have a vulnerability that may lead to Undefined Behavior. The config variable is exposing to the global scope which may overwrite other variables and cause the application to misbehave. Recommendation No fix is currently available. Consider using an alternative...
Use-after-free in buffer conversion implementation
The From implementation for Vec was not properly implemented, returning a vector backed by freed memory. This could lead to memory corruption or be exploited to cause undefined behavior. A fix was published in version 0.1.3...
RUSTSEC-2019-0016 Use-after-free in buffer conversion implementation
The From implementation for Vec was not properly implemented, returning a vector backed by freed memory. This could lead to memory corruption or be exploited to cause undefined behavior. A fix was published in version 0.1.3...
UBUNTU-CVE-2019-14973
TIFFCheckMalloc and TIFFCheckRealloc in tifaux.c in LibTIFF through 4.0.10 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards. This can, for example, lead to an application crash...
FreeBSD : bro -- NULL pointer dereference and Signed integer overflow (f56669f5-d799-4ff5-9174-64a6d571c451)
Jon Siwek of Corelight reports : This is a security patch release to address potential Denial of Service vulnerabilities : - NULL pointer dereference in the RPC analysis code. RPC analyzers e.g. MOUNT or NFS are not enabled in the default configuration. - Signed integer overflow in BinPAC-generat...
bro -- Null pointer dereference and Signed integer overflow
Jon Siwek of Corelight reports: This is a security patch release to address potential Denial of Service vulnerabilities: Null pointer dereference in the RPC analysis code. RPC analyzers e.g. MOUNT or NFS are not enabled in the default configuration. Signed integer overflow in BinPAC-generated...
openSUSE Security Update : libcroco (openSUSE-2019-1575)
This update for libcroco fixes the following issues : Security issues fixed : - CVE-2017-7960: Fixed heap overflow input: check end of input before reading a byte bsc1034481. - CVE-2017-7961: Fixed undefined behavior tknzr: support only max long rgb values bsc1034482. - CVE-2017-8834: Fixed denia...
curl: FTP path trickery leads to NIL byte out of bounds write
It was found that libcurl did not safely parse FTP URLs when using the CURLOPTFTPFILEMETHOD method. An attacker, able to provide a specially crafted FTP URL to an application using libcurl, could write a NULL byte at an arbitrary location, resulting in a crash or an unspecified behavior...
Security update for libcroco (moderate)
openSUSE Security Update: Security update for libcroco Announcement ID: openSUSE-SU-2019:1575-1 Rating: moderate References: 1034481 1034482 1043898 1043899 Cross-References: CVE-2017-7960 CVE-2017-7961 CVE-2017-8834 CVE-2017-8871 Affected Products: openSUSE Leap 42.3 An update that fixes four...
SUSE SLED12 / SLES12 Security Update : libcroco (SUSE-SU-2019:1468-1)
This update for libcroco fixes the following issues : Security issues fixed : CVE-2017-7960: Fixed heap overflow input: check end of input before reading a byte bsc1034481. CVE-2017-7961: Fixed undefined behavior tknzr: support only max long rgb values bsc1034482. CVE-2017-8834: Fixed denial of...
SUSE-SU-2019:1468-1 Security update for libcroco
This update for libcroco fixes the following issues: Security issues fixed: - CVE-2017-7960: Fixed heap overflow input: check end of input before reading a byte bsc1034481. - CVE-2017-7961: Fixed undefined behavior tknzr: support only max long rgb values bsc1034482. - CVE-2017-8834: Fixed denial ...
Bug in SliceDeque::move_head_unchecked corrupts its memory
Affected versions of this crate entered a corrupted state if mem::sizeof:: % allocationgranularity != 0 and a specific allocation pattern was used: sufficiently shifting the deque elements over the mirrored page boundary. This allows an attacker that controls controls both element insertion and...
RUSTSEC-2019-0002 Bug in SliceDeque::move_head_unchecked corrupts its memory
Affected versions of this crate entered a corrupted state if mem::sizeof:: % allocationgranularity != 0 and a specific allocation pattern was used: sufficiently shifting the deque elements over the mirrored page boundary. This allows an attacker that controls controls both element insertion and...
SUSE-SU-2019:1102-1 Security update for glibc
This update for glibc fixes the following issues: Security issues fixed: - CVE-2019-9169: regex: fix read overrun bsc1127308, BZ 24114 - CVE-2016-10739: Fully parse IPv4 address strings bsc1122729, BZ 20018 - CVE-2009-5155: ERE '0|0|\1|0' causes regexec undefined behavior bsc1127223, BZ 18986...
Unaligned memory access
Affected versions of this crate violated alignment when casting byte slices to integer slices, resulting in undefined behavior. The flaw was corrected by Ralf Jung and Diggory Hardy...
RUSTSEC-2019-0035 Unaligned memory access
Affected versions of this crate violated alignment when casting byte slices to integer slices, resulting in undefined behavior. The flaw was corrected by Ralf Jung and Diggory Hardy...
CVE-2018-11966
Undefined behavior in UE while processing unknown IEI in OTA message in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCS605, SD 210/SD...
CVE-2018-11966
CVE-2018-11966 affects Qualcomm Snapdragon platforms (Auto/Compute/IoT/Wearables/SXR1130 family and multiple SDMs) across numerous devices (e.g., SD 210–DDR list, 625, 632, 650/52, 675, 712/710/670, 820/820A, 835/850, 855, 9120-era GPUs) due to undefined behavior in UE when processing an unknown ...