The vulnerability of the Windows Media Foundation component in Windows operating systems allows attackers to install programs, view, modify, or delete data with the privileges of a legitimate user.

The vulnerability of the Windows Media Foundation component in Windows operating systems arises from operations that occur outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to install programs, view, modify, or delete data with the privileges of a legitimate use...

Design/Logic Flaw

LibEtPan through 1.9.4, as used in MailCore 2 through 0.6.3 and other products, has a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data e.g., from a meddler-in-the-middle attacker and evaluates it in a TLS...

OPENSUSE-SU-2020:0937-1 Security update for coturn

This update for coturn fixes the following issues: Version 4.5.1.3: Remove reference to SSLv3: ghcoturn/coturn566 Ignore MD5 for BoringSSL: ghcoturn/coturn579 STUN response buffer not initialized properly; he issue found and reported ghcoturn/coturn583 by Felix D�rre all credits belongs to him...

DEBIAN-CVE-2020-4067

In coturn before version 4.5.1.3, there is an issue whereby STUN/TURN response buffer is not initialized properly. There is a leak of information between different client connections. One client an attacker could use their connection to intelligently query coturn to get interesting bytes in the...

The vulnerability of the IPAddressFamily extension in the OpenSSL library allows a hacker to compromise the integrity of data.

The vulnerability of the IPAddressFamily extension in the OpenSSL library is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to compromise data integrity remotely...

Kernel: KVM: OOB memory access via mmio ring buffer

An out-of-bounds access issue was found in the way Linux kernel's KVM hypervisor implements the Coalesced MMIO write operation. It operates on an MMIO ring buffer 'struct kvmcoalescedmmio' object, wherein write indices 'ring-first' and 'ring-last' value could be supplied by a host user-space...

The vulnerability of the Hotspot component in Oracle Java SE software allows a perpetrator to gain unauthorized access to protected data or cause service failures.

The vulnerability of the Oracle Java SE software platform’s hotspot component arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected data or cause service failures...

OPENSUSE-SU-2019:1120-1 Security update for libgxps

This update for libgxps fixes the following issues: - CVE-2018-10733: Fixed a heap-based buffer over-read issue in ftfontfacehash bsc1092125. This update was imported from the SUSE:SLE-15:Update update project...

CVE-2018-19183

ethereumjs-vm 2.4.0 allows attackers to cause a denial of service vm.runCode failure and REVERT via a "code: Buffer.frommycode, 'hex'" attribute. NOTE: the vendor disputes this because REVERT is a normal bytecode that can be triggered from high-level source code, leading to a normal programmatic...

CURL-CVE-2018-0500 SMTP send heap buffer overflow

curl might overflow a heap based memory buffer when sending data over SMTP and using a reduced read buffer. When sending data over SMTP, curl allocates a separate "scratch area" on the heap to be able to escape the uploaded data properly if the uploaded data contains data that requires it. The si...

The vulnerability of the oemcmd_handler function in the Android operating system’s WLAN component from the CAF repository allows a hacker to disclose protected information.

The vulnerability of the oemcmdhandler function in the Android operating system’s WLAN component from the CAF repository is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to disclose sensitive information using a...

PYSEC-2018-148

In the DataBuf class in include/exiv2/types.hpp in Exiv2 0.26, an issue exists in the constructor with an initial buffer size. A large size value may lead to a SIGABRT during an attempt at memory allocation. NOTE: some third parties have been unable to reproduce the SIGABRT when using the...

MGASA-2017-0369 Updated weechat packages fix security vulnerability

It was discovered that logger.c in the logger plugin in WeeChat before 1.9.1 allows a crash via strftime date/time specifiers, because a buffer is not initialized CVE-2017-14727...

CVE-2017-15045

LAME 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4, 3.99.5, 3.98.4, 3.98.2 and 3.98 has a heap-based buffer over-read in fillbuffer in libmp3lame/util.c, related to lameencodebuffersamplet in libmp3lame/lame.c, a different vulnerability than CVE-2017-9410...

CVE-2017-8257

In all Qualcomm products with Android releases from CAF using the Linux kernel, when accessing the sderotator debug interface for register reading with multiple processes, one process can free the debug buffer while another process still has the debug buffer in use...

CURL-CVE-2017-1000101 URL globbing out of bounds read

curl supports "globbing" of URLs, in which a user can pass a numerical range to have the tool iterate over those numbers to do a sequence of transfers. In the globbing function that parses the numerical range, there was an omission that made curl read a byte beyond the end of the URL if given a...

Design/Logic Flaw

An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in the Continental AG Infineon S-Gold 2 PMB 8876 chipset on BMW several models produced between 2009-2010, Ford a limited number of P-HEV vehicles, Infiniti 2013 JX35, Infiniti 2014-2016 QX60, Infiniti...

CVE-2017-9633

An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in the Continental AG Infineon S-Gold 2 PMB 8876 chipset on BMW several models produced between 2009-2010, Ford a limited number of P-HEV vehicles, Infiniti 2013 JX35, Infiniti 2014-2016 QX60, Infiniti...

UBUNTU-CVE-2017-7697

In libsamplerate before 0.1.9, a buffer over-read occurs in the calcoutputsingle function in srcsinc.c via a crafted audio file...

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, allow attackers to execute arbitrary code.

The vulnerability in the PDF viewer software such as Adobe Reader, Document Cloud, and Adobe Acrobat lies in the execution of arbitrary code by a remote attacker after an operation outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code throu...