36 matches found
EUVD-2021-0027
Malware in sbrugna...
EUVD-2017-14695
Malware in sbrugna...
Out-of-bounds Read
asterix-decoder is vulnerable to Out-of-bounds Read. The vulnerability is due to a flaw in memory management, leading to unintended access to heap memory beyond its allocated boundaries...
SUSE CVE-2017-5596
In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the ASTERIX dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-asterix.c by changing a data type to avoid an integer overflow...
Asterix Heap-based Buffer Overflow
Croatia Control Asterix 2.8.1 has a heap-based buffer over-read, with additional details to be disclosed at a later date...
GHSA-6MMF-V5Q7-VW2W Asterix Heap-based Buffer Overflow
Croatia Control Asterix 2.8.1 has a heap-based buffer over-read, with additional details to be disclosed at a later date...
CVE-2021-44144
Croatia Control Asterix 2.8.1 has a heap-based buffer over-read, with additional details to be disclosed at a later date...
CVE-2021-44144
Croatia Control Asterix 2.8.1 has a heap-based buffer over-read, with additional details to be disclosed at a later date...
Heap overflow
Croatia Control Asterix 2.8.1 has a heap-based buffer over-read, with additional details to be disclosed at a later date...
PYSEC-2021-860
Croatia Control Asterix 2.8.1 pythonv0.7.2 has a heap-based buffer over-read, with additional details to be disclosed at a later date...
PYSEC-2021-860
Croatia Control Asterix 2.8.1 pythonv0.7.2 has a heap-based buffer over-read, with additional details to be disclosed at a later date...
CVE-2021-44144
Croatia Control Asterix 2.8.1 has a heap-based buffer over-read, with additional details to be disclosed at a later date...
CVE-2021-44144
CVE-2021-44144 concerns Croatia Control Asterix 2.8.1 , with a reported heap-based buffer over-read. The root cause is a memory-management flaw that allows access to heap memory beyond allocated boundaries. Public documentation in the connected sources confirms the issue and its association with ...
Croatia Control Asterix 缓冲区错误漏洞
Croatia Control Asterix is an open source utility program from Croatian company Croatia Control. It is used to read and parse EuroControl Asterix protocol data from standard input, files or network multicast streams and print it to standard output in text, Xml or Json format. A security...
Heap-based Buffer Overflow in croatiacontrolltd/asterix
✍️ Description Whilst experimenting with asterix, built from commit f44cfea, compiled with Clang 10 + ASan on Ubuntu 20.04.2 LTS, we are able to induce a heap-buffer-overflow in DataItemBits::getBits asterix/src/asterix/DataItemBits.cpp:125. Since there is no bounds checking, when the software...
SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2017:1442-1)
Wireshark was updated to version 2.2.6, which brings several new features, enhancements and bug fixes. Thses security issues were fixed : - CVE-2017-7700: In Wireshark the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in...
[SECURITY] [DSA 3811-1] wireshark security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3811-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 18, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DLA 858-1] wireshark security update
Package : wireshark Version : 1.12.1+g01b65bf-4+deb8u6deb7u7 CVE ID : CVE-2017-5596 CVE-2017-5597 CVE-2017-6467 CVE-2017-6468 CVE-2017-6469 CVE-2017-6470 CVE-2017-6471 CVE-2017-6472 CVE-2017-6473 CVE-2017-6474 It was discovered that Wireshark, a network protocol analyzer, contained several...
Debian: Security Advisory (DSA-3811-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Wireshark Denial of Service Vulnerability (CNVD-2017-01977)
Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A denial of service vulnerability exists in the ASTERIX parser in Wireshark versions 2.2...