12 matches found
CVE-2026-38570
bacnetstack 1.3.1 contains an Out-of-bounds Read in bacnettagnumberdecode which allows attackers to cause a denial of service...
CVE-2026-3283 libvips extract.c vips_extract_band_build out-of-bounds
A vulnerability has been found in libvips 8.19.0. This issue affects the function vipsextractbandbuild of the file libvips/conversion/extract.c. The manipulation of the argument extractband leads to out-of-bounds read. The attack needs to be performed locally. The exploit has been disclosed to th...
SUSE-SU-2026:20037-1 Security update for ovmf
This update for ovmf fixes the following issues: - CVE-2023-45229: integer underflow and out-of-bounds read when processing IANA/IATA options in a DHCPv6 Advertise message bsc1218879. - CVE-2023-45230: out-of-bounds write in the DHCPv6 client through a long Server ID option bsc1218880...
UBUNTU-CVE-2024-26608
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix global oob in ksmbdnlpolicy Similar to a reported issue check the commit b33fb5b801c6 "net: qualcomm: rmnet: fix global oob in rmnetpolicy", my local fuzzer finds another global out-of-bounds read for policy...
CVE-2021-42870
ACCEL-PPP 1.12.0 has an out-of-bounds read in postmsg when processing a callclearrequest...
CVE-2022-23096
An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply implementation lacks a check for the presence of sufficient Header Data, leading to an out-of-bounds read...
Denial Of Service (DoS) Through Out-of-Bounds Read
libtasn1.so is vulnerable to denial of service DoS attacks. The library contains multiple missing boundary checks, allowing a malicious user to pass ASN.1 input to cause an out-of-bounds read that can crash the application...
Information Disclosure
libcurl.so is vulnerable to information disclosure attacks. The vulnerability exists in the curleasyduphandle function when run with the CURLOPTCOPYPOSTFIELDS option as it improperly copies the HTTP POST data that introduces an out-of-bounds read which allows sensitive memory information to be re...
CVE-2017-8163
AR120-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR1200 with software V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR1200-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR150 with software V200R006C10,...
CVE-2016-5322
The setByteArray function in tifdir.c in libtiff 4.0.6 and earlier allows remote attackers to cause a denial of service out-of-bounds read via a crafted tiff image...
CVE-2010-4489
libvpx, as used in Google Chrome before 8.0.552.215 and possibly other products, allows remote attackers to cause a denial of service out-of-bounds read via a crafted WebM video. NOTE: this vulnerability exists because of a regression...
CVE-2008-2954
client/NmdcHub.cpp in Linux DC++ linuxdcpp before 0.707 allows remote attackers to cause a denial of service crash via an empty private message, which triggers an out-of-bounds read...