29 matches found
PT-2024-6083
Name of the Vulnerable Software and Affected Versions OpenSSL versions prior to the next release exact version not specified CPython version 3.9 and earlier Description The issue is related to the OpenSSL API function SSL select next proto which can cause a crash or memory contents to be sent to...
PT-2023-14452 · Lenovo · Thinkpad X13S Bios Driver
Name of the Vulnerable Software and Affected Versions: ThinkPadX13s BIOS driver affected versions not specified Description: A buffer over-read issue was reported in the ThinkPadX13s BIOS driver, potentially allowing a local attacker with elevated privileges to cause information disclosure...
SUSE-SU-2022:3331-1 Security update for libconfuse0
This update for libconfuse0 fixes the following issues: - CVE-2022-40320: Fixed a heap-based buffer over-read in cfgtildeexpand in confuse.c bsc1203326...
CVE-2020-19751
An issue was discovered in gpac 0.8.0. The gfodfdelipmptool function in odfcode.c has a heap-based buffer over-read...
CVE-2020-23928
An issue was discovered in gpac before 1.0.1. The abstboxread function in boxcodeadobe.c has a heap-based buffer over-read...
OPENSUSE-SU-2019:2219-1 Security update for djvulibre
This update for djvulibre fixes the following issues: Security issues fixed: - CVE-2019-15142: Fixed heap-based buffer over-read bsc1146702. - CVE-2019-15143: Fixed resource exhaustion caused by corrupted image files bsc1146569. - CVE-2019-15144: Fixed denial-of-service caused by crafted PBM imag...
SUSE-SU-2019:0720-1 Security update for libgxps
This update for libgxps fixes the following issues: - CVE-2018-10733: Fixed a heap-based buffer over-read issue in ftfontfacehash bsc1092125...
Design/Logic Flaw
Artifex Software, Inc. MuJS before a0ceaf5050faf419401fe1b83acfa950ec8a8a89 allows context-dependent attackers to obtain sensitive information by using the "crafted JavaScript" approach, related to a "Buffer Over-read" issue...
MGASA-2016-0135 Updated optipng packages fix security vulnerabilities
An updated optipng package fixes a number of bugs and security vulnerabilities. CVE-2015-7802 - Buffer over-read issue CVE-2016-2191 - An invalid write and segmentation fault may occur while processing bitmap images...