CVE-2021-46345

There is an Assertion 'cesu8cursorp == cesu8endp' failed at /jerry-core/lit/lit-strings.c in JerryScript 3.0.0...

CVE-2021-46351

There is an Assertion 'localtza == ecmadatelocaltimezoneadjustment datevalue' failed at /jerry-core/ecma/builtin-objects/ecma-builtin-date-prototype.cecmabuiltindateprototypedispatchset:421 in JerryScript 3.0.0...

CVE-2021-46349

There is an Assertion 'type == ECMAOBJECTTYPEGENERAL || type == ECMAOBJECTTYPEPROXY' failed at /jerry-core/ecma/operations/ecma-objects.c in JerryScript 3.0.0...

PT-2022-10014 · Qualcomm · Snapdragon

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to improper validation of function pointer type with actual function signature, which can lead to assertion in various Snapdragon products, including...

ROS-2-665

2.665 Multiple vulnerabilities in ISC BIND CVE-2021-25216, CVE-2021-25215, CVE-2021-25214 1. Vulnerability Description: CVE-2021-25216 A vulnerability exists due to a boundary error in the GSS-TSIG extension. A remote attacker can send specially crafted requests to the server, trigger a buffer...

CVE-2020-23308

There is an Assertion 'contextp-stacktopuint8 == LEXEREXPRESSIONSTART' at js-parser-expr.c:3565 in parserparseexpression in JerryScript 2.2.0...

CVE-2020-23308

There is an Assertion 'contextp-stacktopuint8 == LEXEREXPRESSIONSTART' at js-parser-expr.c:3565 in parserparseexpression in JerryScript 2.2.0...

QEMU 代码问题漏洞

QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. QEMU has a code issue vulnerability that can be exploited by an attacker to force an assertion error via QEMU's usb packet mapping to trigger a...

OpenLDAP Certificate List Syntax Denial of Service Vulnerability

OpenLDAP is an open source implementation of the Lightweight Directory Access Protocol LDAP from the OpenLDAP Foundation in the United States. A denial of service vulnerability exists in OpenLDAP Certificate List Syntax, which can be exploited by an attacker to trigger a denial of service by...

OpenLDAP Security Vulnerabilities

OpenLDAP is an open source implementation of the Lightweight Directory Access Protocol LDAP from the OpenLDAP Openldap Foundation in the United States. A security vulnerability exists in OpenLDAP CSN Normalization, which can be exploited by an attacker to trigger a denial of service by forcing an...

An issue was discovered in ide_dma_cb() in hw/ide/core.c in QEMU 2.4.0 through 4.2.0. The guest system can crash the QEMU process in the host system via a special SCSI_IOCTL_SEND_COMMAND. It hits an assertion that implies that the size of successful DMA transfers there must be a multiple of 512 (the size of a sector). NOTE: a member of the QEMU security team disputes the significance of this issue because a "privileged guest user has many ways to cause similar DoS effect without triggering this assert.

...

CVE-2017-7775

An assertion error has been reported in graphite2. An attacker could possibly exploit this flaw to cause an application crash...

CVE-2018-20013

In UrBackup 2.2.6, an attacker can send a malformed request to the client over the network, and trigger a fileservplugin/CClientThread.cpp CClientThread::ProcessPacket metadataid!=0 assertion, leading to shutting down the client application...

Out Of Bound Reads (OOB)

Mozilla Firefox is vulnerable to out of bound reads. This vulnerability exists due to an assertion error in graphite2. An attacker could possibly exploit this flaw to cause an application crash...

Amazon Linux 2 : bind (ALAS-2019-1170)

Crash from assertion error when debug log level is 10 and log entries meet buffer boundary. This flaw appears to be exploitable only when debug logging is enabled and set to at least a level of 10. As this configuration should be rare in production instances of bind, it is unlikely that most...

Medium: bind

Issue Overview: Crash from assertion error when debug log level is 10 and log entries meet buffer boundary. This flaw appears to be exploitable only when debug logging is enabled and set to at least a level of 10. As this configuration should be rare in production instances of bind, it is unlikel...

Scientific Linux Security Update : bind on SL7.x x86_64 (20190129)

Security Fixes : - bind: Crash from assertion error when debug log level is 10 and log entries meet buffer boundary CVE-2018-5742 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid121455; scriptversion"1.5";...

RHEL 7 : bind (RHSA-2019:0194)

"The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:0194 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named C Tenable...

bind: Crash from assertion error when debug log level is 10 and log entries meet buffer boundary

While backporting a feature for a newer branch of BIND9, RedHat introduced a path leading to an assertion failure in buffer.c:420. Affects RedHat versions bind-9.9.4-65.el7 - bind-9.9.4-72.el7. No ISC releases are affected. Other packages from other distributions who made the same error may also ...

DEBIAN-CVE-2019-6461

An issue was discovered in cairo 1.16.0. There is an assertion problem in the function cairoarcindirection in the file cairo-arc.c...