The vulnerability of the flb_gzip_compress() function implementation in the Fluent Bit data collector allows a hacker to trigger a service failure.

The vulnerability of the flbgzipcompress function implementation in Fluent Bit data collectors is related to the writing of data beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

CVE-2021-22713

A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION8650, ION8800, ION7650, ION7700/73xx, and ION83xx/84xx/85xx/8600 see security notifcation for affected versions, which could cause the meter to reboot...

dotnet: System.Text.Encodings.Web Remote Code Execution

A remote code execution vulnerability was found in dotnet in the System.Text.Encodings.Web package, caused by a buffer overrun. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

dotnet: System.Text.Encodings.Web Remote Code Execution

A remote code execution vulnerability was found in dotnet in the System.Text.Encodings.Web package, caused by a buffer overrun. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

dotnet: System.Text.Encodings.Web Remote Code Execution

A remote code execution vulnerability was found in dotnet in the System.Text.Encodings.Web package, caused by a buffer overrun. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

dotnet: System.Text.Encodings.Web Remote Code Execution

A remote code execution vulnerability was found in dotnet in the System.Text.Encodings.Web package, caused by a buffer overrun. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

dotnet: System.Text.Encodings.Web Remote Code Execution

A remote code execution vulnerability was found in dotnet in the System.Text.Encodings.Web package, caused by a buffer overrun. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

dotnet: System.Text.Encodings.Web Remote Code Execution

A remote code execution vulnerability was found in dotnet in the System.Text.Encodings.Web package, caused by a buffer overrun. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

The vulnerability of the image_render_color_thresh() function (base/gxicolor.c) in the software for processing, transforming, and generating Ghostscript documents allows a hacker to trigger a service failure.

The vulnerability of the imagerendercolorthresh function base/gxicolor.c in the software for processing, transforming, and generating Ghostscript documents is related to writing beyond buffer boundaries. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the mj_raster_cmd() function (contrib/japanese/gdevmjc.c) in the software suite for processing Ghostscript document conversion and generation is related to writing beyond the buffer boundaries, allowing an attacker to trigger a service failure.

The vulnerability of the mjrastercmd function contrib/japanese/gdevmjc.c in the software suite for processing, transforming, and generating Ghostscript documents is related to writing beyond the buffer boundaries. Exploiting this vulnerability may allow a malicious actor to cause service failures...

The vulnerability of the cif_print_page() function in the software suite for processing, transforming, and generating Ghostscript documents allows a perpetrator to trigger a service failure.

The vulnerability of the cifprintpage function device/gdevcif.c in the software suite for processing, transforming, and generating Ghostscript documents is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service...

Vulnerability of the pcx_write_rle() function (contrib/japanese/gdev10v.c) in the software suite for processing, transforming, and generating Ghostscript documents, allowing a hacker to trigger a service failure

The vulnerability of the pcxwriterle function contrib/japanese/gdev10v.c in the software suite for processing, transforming, and generating Ghostscript documents is related to writing beyond buffer boundaries. Exploiting this vulnerability could allow a malicious actor to cause service failures...

Vulnerability of the lprn_is_black() function (contrib/lips4/gdevlprn.c) in the software suite for processing, transforming, and generating Ghostscript documents, allowing a hacker to trigger a service failure

The vulnerability of the lprnisblack function contrib/lips4/gdevlprn.c in the software suite for processing, transforming, and generating Ghostscript documents is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service...

MGASA-2021-0115 Updated pngcheck packages fix security vulnerabilities

This update fixes a buffer-overrun bug related to the MNG LOOP chunk which gets noticed even in PNG files if the -s option is used. RHBZ1908559. It also fixes a buffer overrun for certain invalid MNG PPLT chunk contents. RHBZ1907428...

Updated pngcheck packages fix security vulnerabilities

This update fixes a buffer-overrun bug related to the MNG LOOP chunk which gets noticed even in PNG files if the -s option is used. RHBZ1908559. It also fixes a buffer overrun for certain invalid MNG PPLT chunk contents. RHBZ1907428...

CVE-2021-26701

A remote code execution vulnerability was found in dotnet in the System.Text.Encodings.Web package, caused by a buffer overrun. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

SUSE SLED15 / SLES15 Security Update : glibc (SUSE-SU-2021:0653-1)

This update for glibc fixes the following issues : Fix buffer overrun in EUC-KR conversion module CVE-2019-25013, bsc1182117, BZ 24973 x86: Harden printf against non-normal long double values CVE-2020-29573, bsc1179721, BZ 26649 gconv: Fix assertion failure in ISO-2022-JP-3 module CVE-2021-3326,...

openSUSE Security Update : glibc (openSUSE-2021-358)

This update for glibc fixes the following issues : - Fix buffer overrun in EUC-KR conversion module CVE-2019-25013, bsc1182117, BZ 24973 - x86: Harden printf against non-normal long double values CVE-2020-29573, bsc1179721, BZ 26649 - gconv: Fix assertion failure in ISO-2022-JP-3 module...

SUSE SLES12 Security Update : glibc (SUSE-SU-2021:0608-1)

This update for glibc fixes the following issues : Fix buffer overrun in EUC-KR conversion module CVE-2019-25013, bsc1182117, BZ 24973 gconv: Fix assertion failure in ISO-2022-JP-3 module CVE-2021-3326, bsc1181505, BZ 27256 Fix parsing of /sys/devices/system/cpu/online bsc1180038, BZ 25859 powerp...

Security update for glibc (important)

openSUSE Security Update: Security update for glibc Announcement ID: openSUSE-SU-2021:0358-1 Rating: important References: 1178386 1179694 1179721 1180038 1181505 1182117 Cross-References: CVE-2019-25013 CVE-2020-27618 CVE-2020-29562 CVE-2020-29573 CVE-2021-3326 CVSS scores: CVE-2019-25013 NVD :...