CVE-2019-19481

An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/card-cac1.c mishandles buffer limits for CAC certificates...

CVE-2019-19481

An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/card-cac1.c mishandles buffer limits for CAC certificates...

The vulnerability of the strncpy function in Atftpd arises from the possibility of the operation exceeding the buffer’s memory limit. This allows attackers to compromise data integrity and confidentiality, or cause service failures.

The vulnerability of the strncpy function in the Atftpd package is related to the sending of a 3-byte error message by the package. Exploiting this vulnerability allows an attacker to compromise data integrity and confidentiality, or cause service failures...

CVE-2019-3832

It was discovered the fix for CVE-2018-19758 libsndfile was not complete and still allows a read beyond the limits of a buffer in wavwriteheader function in wav.c. A local attacker may use this flaw to make the application crash...

The vulnerability of the QEMU hardware emulation software allows for data to be written beyond the specified buffer limit, enabling a hacker to trigger a service failure.

The vulnerability of the QEMU hardware emulation software allows for data to be written beyond the specified buffer limits. Exploiting this vulnerability can enable a hacker to trigger a service failure...

The vulnerability of the load_image function in the GIMP graphic editor, related to reading beyond the buffer limit of memory, allows attackers to cause system failures, undermine data integrity, and compromise confidentiality.

The vulnerability of the loadimage function in the GIMP graphic editor’s plug-ins/common/file-gbr.c file is related to the issue of data being written beyond the buffer boundaries when processing UTF-8 formatted data. Exploiting this vulnerability can allow an attacker to cause service failures,...

CVE-2016-2570

The Edge Side Includes ESI parser in Squid 3.x before 3.5.15 and 4.x before 4.0.7 does not check buffer limits during XML parsing, which allows remote HTTP servers to cause a denial of service assertion failure and daemon exit via a crafted XML document, related to esi/CustomParser.cc and...

DSA-2040-1 squidguard - several vulnerabilities

Bulletin has no description...

Mandrake Security Advisory MDVSA-2009:178 (squid)

The remote host is missing an update to squid announced via advisory MDVSA-2009:178. OpenVAS Vulnerability Test $Id: mdksa2009178.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:178 squid Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Mandrake Security Advisory MDVSA-2009:161-1 (squid)

The remote host is missing an update to squid announced via advisory MDVSA-2009:161-1. OpenVAS Vulnerability Test $Id: mdksa20091611.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:161-1 squid Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

Mandrake Security Advisory MDVSA-2009:161 (squid)

The remote host is missing an update to squid announced via advisory MDVSA-2009:161. OpenVAS Vulnerability Test $Id: mdksa2009161.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:161 squid Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Mandrake Security Advisory MDVSA-2009:161 (squid)

The remote host is missing an update to squid announced via advisory MDVSA-2009:161. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Design/Logic Flaw

Squid 3.0 through 3.0.STABLE16 and 3.1 through 3.1.0.11 does not properly enforce "buffer limits and related bound checks," which allows remote attackers to cause a denial of service via 1 an incomplete request or 2 a request with a large header size, related to a HttpMsg.cc and b clientside.cc...

CVE-2009-2621

CVE-2009-2621 affects Squid: versions 3.0 through 3.0.STABLE16 and 3.1 through 3.1.0.11 are vulnerable to DoS due to improper enforcement of buffer limits and related bound checks, enabling remote denial of service via incomplete requests or requests with large headers (affecting HttpMsg.cc and c...