775 matches found
CVE-2020-11251
Out-of-bounds read vulnerability while accessing DTMF payload due to lack of check of buffer length before copying in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music,...
Qualcomm 芯片 缓冲区错误漏洞
A Qualcomm chip is a chip from Qualcomm Incorporated USA. a way of miniaturizing circuitry including primarily semiconductor devices, but also passive components, etc. and is manufactured from time to time on the surface of semiconductor wafers. A security vulnerability exists in a number of...
CVE-2021-27378
An issue was discovered in the randcore crate before 0.6.2 for Rust. Because readu32into and readu64into mishandle certain buffer-length checks, a random number generator may be seeded with too little data...
CVE-2021-27378
An issue was discovered in the randcore crate before 0.6.2 for Rust. Because readu32into and readu64into mishandle certain buffer-length checks, a random number generator may be seeded with too little data...
CVE-2021-27378
An issue was discovered in the randcore crate before 0.6.2 for Rust. Because readu32into and readu64into mishandle certain buffer-length checks, a random number generator may be seeded with too little data...
UBUNTU-CVE-2021-27378
An issue was discovered in the randcore crate before 0.6.2 for Rust. Because readu32into and readu64into mishandle certain buffer-length checks, a random number generator may be seeded with too little data...
CVE-2021-27378
The CVE-2021-27378 issue affects the rand_core crate prior to 0.6.2 for Rust. The root cause is mishandling in read_u32_into and read_u64_into that can lead to a random number generator being seeded with insufficient data, enabling an improper seed condition. Public references in the connected do...
CVE-2021-27378
An issue was discovered in the randcore crate before 0.6.2 for Rust. Because readu32into and readu64into mishandle certain buffer-length checks, a random number generator may be seeded with too little data...
FasterXML Jackson Resource Management Error Vulnerability
FasterXML Jackson is a data processing tool for Java from FasterXML, Inc. A resource management error vulnerability exists in FasterXML Jackson. The vulnerability stems from a failure to check the buffer length in jackson-dataformat-cbor resulting in an OutOfMemoryError exception being thrown. Th...
Rust rand_core Security Feature Issue Vulnerability
Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security signature vulnerability exists in Rust randcore, which is caused by readu32into and readu64into mishandling buffer length checks, and can be exploited to cause a buffer overflow or heap overflow. The...
RUSTSEC-2021-0023 Incorrect check on buffer length when seeding RNGs
Summary: randcore::le::readu32into and readu64into have incorrect checks on the source buffer length, allowing the destination buffer to be under-filled. Implications: some downstream RNGs, including Hc128Rng but not the more widely used ChaChaRng, allow seeding using the SeedableRng::fromseed...
Incorrect check on buffer length when seeding RNGs
Summary: randcore::le::readu32into and readu64into have incorrect checks on the source buffer length, allowing the destination buffer to be under-filled. Implications: some downstream RNGs, including Hc128Rng but not the more widely used ChaChaRng, allow seeding using the SeedableRng::fromseed...
Qualcomm Display Buffer Error Vulnerability
Qualcomm Display is a Qualcomm Incorporated USA component used to support display functionality in chips. A buffer error vulnerability exists in Qualcomm Display that stems from improper length checking of the response buffer, which could result in out-of-bounds access in TA...
Cross site request forgery (csrf)
async-h1 is an asynchronous HTTP/1.1 parser for Rust crates.io. There is a request smuggling vulnerability in async-h1 before version 2.3.0. This vulnerability affects any webserver that uses async-h1 behind a reverse proxy, including all such Tide applications. If the server does not read the bo...
Altran picoTCP and picoTCP-NG Buffer Error Vulnerability
Altran picoTCP is a small footprint modular open source TCP/IP stack from Altran Belgium, designed for embedded systems and the Internet of Things. A buffer error vulnerability exists in picoTCP and picoTCP-NG, which stems from the inability of the TCP input data handling function to validate the...
Buffer overflow
Buffer overflow in LibFastCV library due to improper size checks with respect to buffer length' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8052, APQ8056, APQ8076, APQ8096, APQ8096SG, APQ8098, MDM9655, MSM8952, MSM8956,...
UBUNTU-CVE-2020-0430
In skbheadlen of /include/linux/skbuff.h, there is a possible out of bounds read due to memory corruption. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndro...
CVE-2020-8905
A buffer length validation vulnerability in Asylo versions prior to 0.6.0 allows an attacker to read data they should not have access to. The 'encuntrustedrecvfrom' function generates a return value which is deserialized by 'MessageReader', and copied into three different 'extents'. The length of...
CVE-2020-8905
A buffer length validation vulnerability in Asylo versions prior to 0.6.0 allows an attacker to read data they should not have access to. The 'encuntrustedrecvfrom' function generates a return value which is deserialized by 'MessageReader', and copied into three different 'extents'. The length of...
Input validation
A buffer length validation vulnerability in Asylo versions prior to 0.6.0 allows an attacker to read data they should not have access to. The 'encuntrustedrecvfrom' function generates a return value which is deserialized by 'MessageReader', and copied into three different 'extents'. The length of...