Qualcomm Chipsets 资源管理错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A resource management error vulnerability exists in Qualcomm Chipsets that stems from a memory corruption in the DSP service allocation buffer...

FFmpeg 安全漏洞

ffmpeg is a rust library by meh.individual developer. A security vulnerability exists in versions of FFmpeg prior to 8.0, which stems from an integer underflow when parsing a DHAV file header, which may result in a duration before reading the allocation buffer...

PT-2025-22473 · Sandboxie · Sandboxie

Name of the Vulnerable Software and Affected Versions: Sandboxie versions 0.0.1 through 1.15.11 Description: Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. An arithmetic overflow in the memory allocation subsystem, specifically within the...

Linux Distros Unpatched Vulnerability : CVE-2017-17122

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dumprelocsinsection function in objdump.c in GNU Binutils 2.29.1 does not check for reloc count integer overflows, which allows remote attackers to cause a...

CVE-2022-28733

Integer underflow in grubnetrecvip4packets; A malicious crafted IP packet can lead to an integer underflow in grubnetrecvip4packets function on rsm-totallen value. Under certain circumstances the totallen value may end up wrapping around to a small integer number which will be used in memory...

Google TensorFlow Buffer Overflow Vulnerability (CNVD-2022-09855)

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow suffers from a buffer overflow vulnerability that stems from the inability of the ""tf.rawops.RaggedGather"" parameter in the software to determine a valid ragged tensor code,...

Google TensorFlow buffer overflow vulnerability (CNVD-2021-64534)

A buffer overflow vulnerability exists in Google TensorFlow, an end-to-end open source platform for machine learning from Google, Inc. FractionalAvgPoolGrad" implementation may access data outside the boundaries of the heap allocation buffer. No details of the vulnerability are currently availabl...

SUSE-SU-2019:1849-1 Security update for podofo

This update for podofo fixes the following issues: Security issues fixed: - CVE-2017-8054: Fixed a vulnerability in PdfPagesTree::GetPageNodeFromArray function which could allow remote attackers to cause Denial of Service bsc1035596. - CVE-2018-5783: Fixed an uncontrolled memory allocation in...

(Pwn2Own) Mozilla Firefox Array.slice Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the implementati...

SUSE-SU-2016:1233-1 Security update for openssl

This update for openssl fixes the following issues: - CVE-2016-2108: Memory corruption in the ASN.1 encoder bsc977617 - CVE-2016-2107: Padding oracle in AES-NI CBC MAC check bsc977616 - CVE-2016-2105: EVPEncodeUpdate overflow bsc977614 - CVE-2016-2106: EVPEncryptUpdate overflow bsc977615 -...

Adobe Flash - .SWF Out-of-Bounds Memory Read (2)

Adobe Flash - .SWF Out-of-Bounds Memory Read 2 Source: https://code.google.com/p/google-security-research/issues/detail?id=362&can=1&q=label%3AProduct-Flash%20modified-after%3A2015%2F8%2F17&sort=id The following access violation was observed in the Adobe Flash Player plugin: 1dec.1af0: Access...

CVE-2008-2374

src/sdp.c in bluez-libs 3.30 in BlueZ, and other bluez-libs before 3.34 and bluez-utils before 3.34 versions, does not validate string length fields in SDP packets, which allows remote SDP servers to cause a denial of service or possibly have unspecified other impact via a crafted length field th...