GNU patch 'intuit_diff_type' function denial of service vulnerability

GNU patch is part of the GNU project and is a set of tools for generating patch files. A security vulnerability exists in the 'intuitdifftype' function of the pch.c file in GNU patch 2.7.6 and earlier. A remote attacker can exploit this vulnerability to cause a denial of service null pointer...

GNU Binutils Denial of Service Vulnerability (CNVD-2018-12117)

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU Project to work with target files in a variety of formats, with connectors, assemblers, and other tools for target files and archives.GNU libiberty is one of the GNU program...

Denial of Service Vulnerability in the FXOS Software and NX-OS Software Fabric Services Component of Multiple Cisco Products (CNVD-2018-14571)

Cisco Firepower 4100 Series Next-Generation Firewalls are all products of Cisco Corporation.Cisco Firepower 4100 Series Next-Generation Firewalls is a 4100 series firewall device. Cisco Firepower 4100 Series Next-Generation Firewalls are 4100 series firewalls.MDS 9000 Series Multilayer Switches a...

FFmpeg Libavcodec Denial of Service Vulnerability

FFmpeg is the FFmpeg team's complete solution for recording, converting, and streaming audio and video. libavcodec is one of the general-purpose encoding/decoding libraries. A security vulnerability exists in Libavcode in FFmpeg. The vulnerability can be exploited to cause a denial of service nul...

Linux kernel denial of service vulnerability (CNVD-2018-12155)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the net/socket.c file in Linux kernel versions 4.17.1 and earlier. An attacker could exploit this vulnerability to cause a null...

PoDoFo Denial of Service Vulnerability (CNVD-2018-10343)

PoDoFo is an open source , written in C++ using the PDF file format library . A security vulnerability exists in the 'PdfPage::GetPageNumber' function in the PdfPage.cpp file in PoDoFo version 0.9.5. A remote attacker can exploit this vulnerability to cause a denial of service null pointer...

HDF5 'H5S_hyper_make_spans' function null pointer dereference vulnerability

HDF5 is a free suite of tools for managing the storage of different types of data that can be managed, manipulated, viewed, analyzed, and generated in portable formats. A security vulnerability exists in the 'H5Shypermakespans' function in the H5Shyper.c file in HDF5 version 1.10.2. A remote...

HDF5 'H5O__chunk_deserialize' function null pointer dereference vulnerability

HDF5 is a free suite of tools for managing the storage of different types of data that can be managed, manipulated, viewed, analyzed, and generated in portable formats. A security vulnerability exists in the 'H5Ochunkdeserialize' function in the H5Ocache.c file in HDF5 version 1.10.2. A remote...

quasselcore denial of service vulnerability

Quassel aka Quassel IRC is a cross-platform distributed IRC chat client developed by the Quassel IRC team , which is developed using the QT application framework , PostgreSQL database to store data . A security vulnerability exists in CoreAuthHandler::handleconst Login &msg in the...

PHP Denial of Service Vulnerability (CNVD-2018-09169)

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. The language is mainly used for Web development and supports a variety of databases and operating systems. A security vulnerability exists in th...

SQLite Denial of Service Vulnerability (CNVD-2018-06132)

SQLite is an open source C-based embedded relational database management system developed by American software developer D. Richard Hipp. The system is characterized by independence, isolation, cross-platform and so on. A security vulnerability exists in versions prior to SQLite 3.22.0. An attack...

Denial of service vulnerability in curl

Haxx curl is a set of file transfer tools from the Swedish company Haxx that work on the command line using URL syntax, the tool supports file uploads and downloads, and includes a libcurl client-side URL transfer library for program development. A security vulnerability exists in the LDAP code i...

Linux kernel denial of service vulnerability (CNVD-2018-06474)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the 'unimacmdioprobe' function in the drivers/net/phy/mdio-bcm-unimac.c file in Linux kernel 4.15.8 and earlier, which stems from a...

MIT krb5 Denial of Service Vulnerability

MIT krb5 also known as MIT Kerberos 5 is the United States Massachusetts Institute of Technology MIT developed a set of network authentication protocols, which uses a client/server structure, and the client and server side can be authenticated to each other i.e., double authentication to prevent...

Exempi Null Pointer Reference Vulnerability

Exempi is an open source implementation of XMP based on the Adobe XMP SDK. A security vulnerability exists in Exempi 2.4.4 and earlier versions, which stems from a failure to detect the presence of null values in the bitstream in the XMPFiles/source/FormatSupport/WEBPSupport.cpp file. An attacker...

Tor Denial of Service Vulnerability (CNVD-2018-05901)

Tor The Onion Router is a second-generation implementation of onion routing, primarily used for anonymous access to the Internet. A security vulnerability exists in Tor versions prior to 0.2.9.15, 0.3.1.x prior to 0.3.1.10, and 0.3.2.x prior to 0.3.2.10. A remote attacker could exploit this...

Linux kernel denial of service vulnerability (CNVD-2018-04627)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the fs/ocfs2/cluster/nodemanager.c file in the Linux kernel, which arises from a program failing to use a requested mutex.A local...

Apache Xerces-C XML Parser Library Denial of Service Vulnerability

Apache Xerces XML Parser library is the Apache Apache Software Foundation of the United States of America, a XML syntax parser library . Apache Xerces-C is its language version. A security vulnerability exists in the Apache Xerces-C XML Parser library. A remote attacker could exploit this...

ImageMagick 'BenchmarkOpenCLDevices' Function Denial of Service Vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A security vulnerability exists in the 'BenchmarkOpenCLDevices' function in the MagickCore/opencl.c file in ImageMagic...

Linux kernel denial of service vulnerability (CNVD-2018-05068)

Linux kernel is the kernel used by the operating system Linux released by the Linux Foundation in the United States. netfilter subsystem is one of the tcp network packet filtering subsystems. A security vulnerability exists in the netfilter subsystem in Linux kernel versions 4.15.7 and earlier. A...