ZeroMQ libzmq 缓冲区错误漏洞

ZeroMQ libzmq 0MQ is a lightweight distributed messaging engine core library. A buffer overflow vulnerability exists in ZeroMQ libzmq, which stems from the failure of zmq::tcp read in this product to validate memory boundaries during a call, resulting in an out-of-bounds read operation that can b...

ALPINE-CVE-2019-13132

In ZeroMQ libzmq before 4.0.9, 4.1.x before 4.1.7, and 4.2.x before 4.3.2, a remote, unauthenticated client connecting to a libzmq application, running with a socket listening with CURVE encryption/authentication enabled, may cause a stack overflow and overwrite the stack with arbitrary data, due...

USN-4050-1 zeromq3 vulnerability

It was discovered that ZeroMQ incorrectly handled certain application metadata. A remote attacker could use this issue to cause ZeroMQ to crash, or possibly execute arbitrary code...

UBUNTU-CVE-2019-6250

A pointer overflow, with code execution, was discovered in ZeroMQ libzmq aka 0MQ 4.2.x and 4.3.x before 4.3.1. A v2decoder.cpp zmq::v2decodert::sizeready integer overflow allows an authenticated attacker to overwrite an arbitrary amount of bytes beyond the bounds of a buffer, which can be leverag...

libzmq Security Bypass Vulnerability

libzmq also known as ZeroMQ/C++ is a ZeroMQ lightweight messaging kernel core library. A security bypass vulnerability exists in libzmq. A remote attacker can exploit this vulnerability to perform a degradation attack via the ZMTP 2 and prior protocol headers to bypass the security mechanisms of...

UBUNTU-CVE-2014-7202

streamengine.cpp in libzmq aka ZeroMQ/C++ 4.0.5 before 4.0.5 allows man-in-the-middle attackers to conduct downgrade attacks via a crafted connection request...