60 matches found
CVE-2021-46606
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.0.80. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...
ASUS BMC Firmware 安全特征问题漏洞
ASUS BMC Firmware is a firmware from Asus China. The ASUS BMC Firmware suffers from a buffer overflow vulnerability that originates from a specific function that does not validate the length of a user-entered string, which can be exploited by a remote attacker to frequently terminate Web services...
AZL-44688 CVE-2020-15503 affecting package LibRaw for versions less than 0.19.5-5
LibRaw before 0.20-RC1 lacks a thumbnail size range check. This affects decoders/unpackthumb.cpp, postprocessing/memimage.cpp, and utils/thumbutils.cpp. For example, mallocsizeoflibrawprocessedimaget+T.tlength occurs without validating T.tlength...
DEBIAN-CVE-2019-14193
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with an unvalidated length at nfsreadlinkreply, in the "if" block after calculating the new path length...
CVE-2019-14193
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with an unvalidated length at nfsreadlinkreply, in the "if" block after calculating the new path length...
DEBIAN-CVE-2019-14195
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with unvalidated length at nfsreadlinkreply in the "else" block after calculating the new path length...
CVE-2019-14193
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with an unvalidated length at nfsreadlinkreply, in the "if" block after calculating the new path length...
UBUNTU-CVE-2019-14195
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with unvalidated length at nfsreadlinkreply in the "else" block after calculating the new path length...
Design/Logic Flaw
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with unvalidated length at nfsreadlinkreply in the "else" block after calculating the new path length...
CVE-2019-14193
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with an unvalidated length at nfsreadlinkreply, in the "if" block after calculating the new path length...
CVE-2019-14193
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with an unvalidated length at nfsreadlinkreply, in the "if" block after calculating the new path length...
CVE-2019-14195
CVE-2019-14195 affects Das U-Boot up to 2019.07. In the nfs_readlink_reply function, the code path in the else block after calculating the new path length uses an unbounded memcpy with unvalidated length. The issue is a potential memory corruption vulnerability stemming from an unbounded memcpy. ...
PT-2019-13519
Name of the Vulnerable Software and Affected Versions Das U-Boot versions prior to 2019.07 Description An issue was discovered in Das U-Boot. There is an unbounded memcpy with unvalidated length at nfs readlink reply in the "else" block after calculating the new path length. Recommendations For...
PT-2019-13517
Name of the Vulnerable Software and Affected Versions Das U-Boot versions prior to 2019.07 Description An issue was discovered in Das U-Boot. There is an unbounded memcpy with an unvalidated length at nfs readlink reply, in the "if" block after calculating the new path length. Recommendations For...
DEBIAN-CVE-2016-2528
The dissectnhdrextopt function in epan/dissectors/packet-lbmc.c in the LBMC dissector in Wireshark 2.0.x before 2.0.2 does not validate length values, which allows remote attackers to cause a denial of service stack-based buffer overflow and application crash via a crafted packet...
Oracle: Security Advisory (ELSA-2014-1870)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
xorg-x11-server: out of bounds access due to not validating length or offset values in XVideo extension
Multiple out-of-bounds access flaws were found in the way the X.Org server calculated memory requirements for certain requests. A malicious, authenticated client could use either of these flaws to crash the X.Org server...
xorg-x11-server: out of bounds access due to not validating length or offset values in XC-MISC extension
Multiple out-of-bounds access flaws were found in the way the X.Org server calculated memory requirements for certain requests. A malicious, authenticated client could use either of these flaws to crash the X.Org server...
libXfont security update
1.2.2-1.0.6 - CVE-2014-0209: integer overflow of allocations in font metadata file parsing bug 1163602, bug 1163601 - CVE-2014-0210: unvalidated length fields when parsing xfs protocol replies bug 1163602, bug 1163601 - CVE-2014-0211: integer overflows calculating memory needs for xfs replies bug...
openSUSE Security Update : libXt (openSUSE-SU-2013:1008-1)
This update of libXt fixes several security issues. - U0001-unvalidated-length-in-XtResourceConfigurationEH- CVE.patch - unvalidated length in XtResourceConfigurationEH CVE-2013-2002 bnc821670, bnc815451 - U0001-Unchecked-return-values-of-XGetWindowProperty-CVE -20.patch - Unchecked return values...