Information disclosure

Access of memory location after end of buffer issue exists in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. Opening a specially crafted V8 file may lead to information disclosure and/or arbitrary code execution...

CVE-2023-32270

Access of memory location after end of buffer issue exists in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. Opening a specially crafted V8 file may lead to information disclosure and/or arbitrary code execution...

PT-2023-14039 · Intel · Intel Qat Driver For Linux

Name of the Vulnerable Software and Affected Versions: Intel QAT Driver for Linux versions prior to 1.7.l.4.12 Description: The issue is related to improper buffer restriction in the software, which may allow an authenticated user to potentially enable denial of service via local access...

SUSE CVE-2020-28010

Exim 4 before 4.94.2 allows Out-of-bounds Write because the main function, while setuid root, copies the current working directory pathname into a buffer that is too small on some common platforms...

The vulnerability of the jsonrpc microprogramming system used in D-Link DIR-825 routers allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the jsonrpc microprogramming system used in D-Link DIR-825 routers lies in the fact that the operation results are stored outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause service failures...

CVE-2023-23609 contiki-ng BLE-L2CAP contains Improper size validation of L2CAP frames

Contiki-NG is an open-source, cross-platform operating system for Next-Generation IoT devices. Versions prior to and including 4.8 are vulnerable to an out-of-bounds write that can occur in the BLE-L2CAP module. The Bluetooth Low Energy - Logical Link Control and Adaptation Layer Protocol BLE-L2C...

Mozilla: Symlinks may resolve to partially uninitialized buffers

The Mozilla Foundation Security Advisory describes this flaw as: When resolving a symlink such as file:///proc/self/fd/1, an error message may be produced where the symlink was resolved to a string containing unitialized memory in the buffer...

Mozilla: Symlinks may resolve to partially uninitialized buffers

The Mozilla Foundation Security Advisory describes this flaw as: When resolving a symlink such as file:///proc/self/fd/1, an error message may be produced where the symlink was resolved to a string containing unitialized memory in the buffer...

CVE-2022-3379

Horner Automation's Cscape version 9.90 SP7 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by writing outside the memory buffer...

PT-2022-4154 · Schneider Electric · Ecostruxure Control Expert

Name of the Vulnerable Software and Affected Versions: EcoStruxure Control Expert versions V15.1 HF001 and prior Description: A memory buffer issue exists that could cause a crash of the Control Expert software when an incorrect project file is opened. The issue is related to improper restriction...

The vulnerability in the implementation of the util.printf() function allows attackers to execute arbitrary code in PDF viewer and editor applications like Adobe Reader and Adobe Acrobat.

The vulnerability of the util.printf function in PDF viewing and editing applications like Adobe Reader and Adobe Acrobat arises from the execution of operations outside of the buffer in memory, due to improper parameter checking. Exploiting this vulnerability allows a malicious actor to execute...

The vulnerability of the `prepare_inplace_add_virtual` function in the MariaDB database management system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the prepareinplaceaddvirtual function in the MariaDB database management system is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibili...

PT-2022-21148 · Libdwarf +3 · Libdwarf +3

Name of the Vulnerable Software and Affected Versions: libdwarf version 0.4.0 Description: The issue is a heap-based buffer over-read in the dwarf check string valid function located in dwarf util.c. Recommendations: For libdwarf version 0.4.0, at the moment, there is no information about a newer...

NonCustodialPSM.mint and redeem using mint control buffer in the inverted way

Lines of code Vulnerability details Impact Now there is no control of VOLT's issuance. For example, super fast VOLT mining is allowed, while mint control buffer will sit capped at its bufferCap, not affecting anything. This way mint speed control is disabled. The issue is that NonCustodialPSM.min...

CLSA-2022-1646915699 Fix CVE(s): CVE-2022-0729, CVE-2022-0572, CVE-2022-0685, CVE-2022-0554

SECURITY UPDATE: May end up with no current buffer - debian/patches/CVE-2022-0554.patch: When deleting the current buffer to not pick a quickfix buffer as the new current buffer - CVE-2022-0554 SECURITY UPDATE: Crash when repeatedly using :retab - debian/patches/CVE-2022-0572.patch: Bail out when...

CLSA-2022-1646915634 Fixed CVEs in vim: CVE-2022-0729, CVE-2022-0572, CVE-2022-0554, CVE-2022-0685

CVE-2022-0554: fix ending up with no current buffer - CVE-2022-0572: fix crashing when repeatedly using :retab - CVE-2022-0685: fix crashing when using special multi-byte character - CVE-2022-0729: fix crashing with specific regexp pattern and string...

The vulnerability of the RouterOS operating system in MikroTik routers allows a hacker to cause a service failure.

The vulnerability of the RouterOS operating system for MikroTik routers lies in the fact that operations are performed outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to cause a service failure through a specially crafted FTP request...

The vulnerability of the win_lbr_chartabsize() function in the Vim text editor, which allows a hacker to cause a service failure

The vulnerability of the winlbrchartabsize function in the Vim text editor is related to the occurrence of an operation outside the buffer during the use of the “vartabstop” value. Exploiting this vulnerability can allow a hacker to cause a service failure using a specially created file...

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome that stems from an object lifecycle issue in ANGLE. An attacker could use this vulnerability to bypass security restrictions...

OPENSUSE-SU-2021:1550-1 Security update for hiredis

This update for hiredis fixes the following issues: - CVE-2021-32765: Fix integer/buffer boo1191331 This update was imported from the openSUSE:Leap:15.2:Update update project...