CVE-2013-4296

The remoteDispatchDomainMemoryStats function in daemon/remote.c in libvirt 0.9.1 through 0.10.1.x, 0.10.2.x before 0.10.2.8, 1.0.x before 1.0.5.6, and 1.1.x before 1.1.2 allows remote authenticated users to cause a denial of service uninitialized pointer dereference and crash via a crafted RPC ca...

libvirt: invalid free in remoteDispatchDomainMemoryStats

The remoteDispatchDomainMemoryStats function in daemon/remote.c in libvirt 0.9.1 through 0.10.1.x, 0.10.2.x before 0.10.2.8, 1.0.x before 1.0.5.6, and 1.1.x before 1.1.2 allows remote authenticated users to cause a denial of service uninitialized pointer dereference and crash via a crafted RPC ca...

Oracle Linux 3 : cups (ELSA-2010-0754)

From Red Hat Security Advisory 2010:0754 : Updated cups packages that fix one security issue are now available for Red Hat Enterprise Linux 3. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which...

Oracle Linux 5 : Important: / krb5 (ELSA-2007-0858)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2007-0858 advisory. 1.5-28 - add preliminary patch to fix buffer overflow in rpcsecgss implementation in libgssrpc 250973, CVE-2007-3999 and write through uninitialized...

WinAmp security vulnerabilities

Buffer overflow, uninitialized pointer dereference...

CVE-2013-2005

X.org libXt 1.1.3 and earlier does not check the return value of the XGetWindowProperty function, which allows X servers to trigger use of an uninitialized pointer and memory corruption via vectors related to the 1 ReqCleanup, 2 HandleSelectionEvents, 3 ReqTimedOut, 4 HandleNormal, and 5...

CVE-2013-2005

X.org libXt 1.1.3 and earlier does not check the return value of the XGetWindowProperty function, which allows X servers to trigger use of an uninitialized pointer and memory corruption via vectors related to the 1 ReqCleanup, 2 HandleSelectionEvents, 3 ReqTimedOut, 4 HandleNormal, and 5...

Memory corruption

X.org libXt 1.1.3 and earlier does not check the return value of the XGetWindowProperty function, which allows X servers to trigger use of an uninitialized pointer and memory corruption via vectors related to the 1 ReqCleanup, 2 HandleSelectionEvents, 3 ReqTimedOut, 4 HandleNormal, and 5...

CVE-2013-2005

X.org libXt 1.1.3 and earlier does not check the return value of the XGetWindowProperty function, which allows X servers to trigger use of an uninitialized pointer and memory corruption via vectors related to the 1 ReqCleanup, 2 HandleSelectionEvents, 3 ReqTimedOut, 4 HandleNormal, and 5...

CVE-2013-2005

X.Org X11 libXt 1.1.3 and earlier are affected by CVE-2013-2005 because XGetWindowProperty return values are not checked, which can lead to use of an uninitialized pointer and memory corruption in vectors related to ReqCleanup, HandleSelectionEvents, ReqTimedOut, HandleNormal, and HandleSelection...

CVE-2013-2005

X.org libXt 1.1.3 and earlier does not check the return value of the XGetWindowProperty function, which allows X servers to trigger use of an uninitialized pointer and memory corruption via vectors related to the 1 ReqCleanup, 2 HandleSelectionEvents, 3 ReqTimedOut, 4 HandleNormal, and 5...

CVE-2013-2005

X.org libXt 1.1.3 and earlier does not check the return value of the XGetWindowProperty function, which allows X servers to trigger use of an uninitialized pointer and memory corruption via vectors related to the 1 ReqCleanup, 2 HandleSelectionEvents, 3 ReqTimedOut, 4 HandleNormal, and 5...

Microsoft Windows - Win32k!EPATHOBJ::pprFlattenRec Uninitialized Next Pointer Testcase

I'm quite proud of this list cycle trick, here's how to turn it into an arbitrary write. First, we create a watchdog thread that will patch the list atomically when we're ready. This is needed because we can't exploit the bug while HeavyAllocPool is failing, because of the early exit in...

Kernel: llc: information leak via getsockname

The llcuigetname function in net/llc/afllc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument...

DEBIAN-CVE-2012-6542

The llcuigetname function in net/llc/afllc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument...

CVE-2012-6542

The llcuigetname function in net/llc/afllc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument...

CVE-2012-6542

The llcuigetname function in net/llc/afllc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument...

CVE-2012-6542

The llcuigetname function in net/llc/afllc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument...

Corel WordPerfect uninitialized pointer dereference

User-controlled pointer dereferences on WPD parsing...

CVE-2012-6542

The llcuigetname function in net/llc/afllc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument...