Apple多款产品缓冲区错误漏洞

Apple iPadOS and others are products of Apple, Inc.Apple iPadOS is an operating system for iPad tablets.Apple macOS Big Sur is a mobile application app.Apple macOS Monterey is the 18th major version of macOS, the desktop operating system used for the Macintosh... version. A buffer error...

Adobe Acrobat Reader Dc Buffer Overflow Vulnerability (CNVD-2022-11156)

Adobe Acrobat Reader Dc is a Pdf reading tool from Adobe. Adobe Acrobat Reader Dc suffers from a buffer error vulnerability that originates from a boundary error when handling untrusted input. An attacker could exploit this vulnerability to create a specially crafted PDF file, trick the victim in...

Jsish 缓冲区错误漏洞

Jsish is a small JavaScript parser with a built-in database written in C. A denial of service vulnerability exists in Jsish v3.5.0, which is caused by a failure to properly handle incoming error messages and could lead to a denial of service DoS via the NumberConstructor in src/jsiNumber.c...

Elfspirit 缓冲区错误漏洞

Elfspirit is a Chinese Elf static analysis and injection framework . It is used to parse, manipulate and disguise Elf files. A security vulnerability exists in elfspirit, which stems from a read out-of-bounds error that could cause an attacker to crash the application or disclose information...

Mozilla Thunderbird 缓冲区错误漏洞

Mozilla Thunderbird is the United States Mozilla Foundation's set of independent from the Mozilla Application Suite e-mail client software. The software supports IMAP, POP mail protocols, and HTML mail formats. Mozilla Thunderbird suffers from a buffer error vulnerability that arises from imprope...

Vim 缓冲区错误漏洞

Vim is an editor for UNIX-based platforms. A buffer error vulnerability exists in vim that stems from a heap-based buffer overflow in vim...

GPAC 缓冲区错误漏洞

GPAC is an open source multimedia framework. v1.1.0 of GPAC contains a security vulnerability that can be exploited by attackers to perform denial of service DoS attacks...

Espruino 缓冲区错误漏洞

Espruino is a JavaScript interpreter. It is designed for devices with only 128kB of flash memory and 8kB of RAM. A buffer error vulnerability exists in Espruino, which stems from the failure of jsvNewFromString in the product src/jsvar.c file to properly handle memory boundaries. The following...

Moddable SDK 缓冲区错误漏洞

Moddable SDK is a software development kit SDK for IoT embedded software development from Moddable USA. a security vulnerability exists in Moddable SDK v11.5.0, which stems from an invalid memory access in component asanmemmove. No details of the vulnerability are currently available...

Oracle MySQL 缓冲区错误漏洞

Oracle MySQL Server is a relational database from Oracle Corporation. A buffer error vulnerability exists in MySQL Server due to an input validation error in the Server:Optimizer component in MySQL Server. A remote attacker could exploit this vulnerability to corrupt or delete data...

小米投屏 缓冲区错误漏洞

Xiaomi Xiaomi Screen Throw is a Chinese Xiaomi Technology Xiaomi company's offers a screen throw function. A security vulnerability exists in the Xiaomi Screen Throw http service, which could cause the application to crash on a LAN...

Oracle MySQL 缓冲区错误漏洞

MySQL Cluster is a write-scalable, real-time, ACID-compliant transactional database designed to guarantee 99.999% availability. An information disclosure vulnerability exists in Oracle MySQL Cluster, which can be exploited by an attacker to cause a read beyond the end of an array...

Allwinner Technology R818 缓冲区错误漏洞

The Allwinner Technology R818 is a quad-core intelligent voice with screen chip from Allwinner Technology Zhuhai, China. The Allwinner Technology R818 SoC Android Q SDK V1.0 suffers from a buffer error vulnerability that could lead to a system crash or EoP...

Oracle MySQL 缓冲区错误漏洞

Oracle MySQL is an open source relational database management system from Oracle Corporation. MySQL Cluster is a highly useful and redundant version of Oracle MySQL Cluster for distributed computing environments. The vulnerability can be exploited to read the contents of memory or crash an...

Huawei Smartphone Buffer Overflow Vulnerability (CNVD-2022-08047)

The Huawei Smartphone is a smartphone from the Chinese company Huawei. The Huawei Smartphone suffers from a buffer error vulnerability that stems from an integer overflow vulnerability in the ACPU in the smartphone. An attacker could exploit this vulnerability to cause out-of-bounds access...

GPAC 缓冲区错误漏洞

GPAC is an open source multimedia framework. A security vulnerability exists in GPAC that originates from the function gfsgvrmlmfreset containing an invalid memory address dereference. An attacker can cause a denial of service via this vulnerability...

ClamAV 缓冲区错误漏洞

Clam AntiVirus is an open source antivirus engine for detecting Trojans, viruses, malware and other malicious threats.Clam AntiVirus suffers from an input validation error vulnerability that can be exploited by attackers to implement denial of service attacks...

GPAC 缓冲区错误漏洞

GPAC is an open source multimedia framework. v1.1.0 of GPAC contains a security vulnerability that stems from the function gflistlast containing an invalid memory address dereference. An attacker could exploit this vulnerability to cause a denial of service...

Xfig 缓冲区错误漏洞

Xfig is a charting tool. A utility program for converting XFig graphic files. A security vulnerability exists in Xfig that stems from a segmentation error in the openstream function in readpics.c...

Microsoft Windows Remote Desktop Protocol缓冲区错误漏洞

Microsoft Windows Remote Desktop Protocol RDP is a Microsoft application for connecting to remote Windows desktops. A buffer error vulnerability exists in Microsoft Windows Remote Desktop Protocol. The following products and versions are affected:Windows 10 Version 1809 for 32-bit Systems,Windows...