The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, and Adobe Acrobat Reader 2017 are related to writing data beyond the buffer in memory, allowing attackers to execute arbitrary code in the context of the current user.

The vulnerability of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2015 is related to data writing beyond the buffer boundaries in memory. Exploiting this vulnerability...

SUSE-SU-2020:2057-1 Security update for python-Pillow

This update for python-Pillow fixes the following issues: - Add 0019-FLI-overflow-error-fix-and-testcase.patch Fixes CVE-2016-0775, bsc965582 - Add 0020-Fix-OOB-reads-in-FLI-decoding.patch Fixes CVE-2020-10177, bsc1173413 - Add 0021-Fix-bounds-overflow-in-JPEG-2000-decoding.patch Fixes...

The vulnerability of the Windows Jet Database Engine database management system in the Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of the Windows Jet Database Engine database management system in Windows operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the opj_t1_clbl_decode_processor function (openjp2/t1.c) in the OpenJPEG image encoding and decoding library, which allows a hacker to trigger a service failure.

The vulnerability of the opjt1clbldecodeprocessor function in the OpenJPEG image encoding and decoding library is related to writing beyond the buffer memory boundaries. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

The vulnerability of the Windows operating system’s DNS server, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of the Windows operating system’s DNS server relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially crafted DNS request...

The vulnerability of the Windows UPnP Device Host service allows attackers to increase their privileges.

The vulnerability of the Windows UPnP Device Host service in the Windows operating system is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

The vulnerability of the Windows operating system’s Resource Policy allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Windows operating system’s resource policy is related to operations that go beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information through a specially created application...

The vulnerability of VMware ESXi, VMware Fusion, and VMware Workstations relates to the occurrence of operations outside the buffer boundaries in memory, which allows an attacker to trigger a system failure.

The vulnerability of VMware ESXi, VMware Fusion, and VMware Workstations lies in the fact that operations are executed outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the USB 3.0 (xHCI) controller in VMware ESXi, VMware Workstation, and VMware Fusion allows a attacker to cause a service failure or execute arbitrary code.

The vulnerability of the USB 3.0 xHCI controller in VMware ESXi, VMware Workstation, and VMware Fusion lies in the writing of data beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure or execute arbitrary code...

The vulnerability of the cat_multiple_files function in the GPAC multimedia platform, related to the occurrence of operations outside the buffer in memory, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the catmultiplefiles function on the GPAC multimedia platform is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protect...

The vulnerability of the gf_text_get_utf8_line function in the multimedia platform GPAC, related to writing beyond buffer boundaries, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the gftextgetutf8line function on the multimedia platform GPAC is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the PuTTY cryptographic protection mechanism, related to the execution of operations beyond the buffer boundaries in memory, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the PuTTY encryption protection mechanism lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the implementations of the functions netclear() and nextitem() in the demon telnetd of the netkit-telnet server allows a intruder to execute arbitrary code.

The vulnerability of the implementations of the functions netclear and nextitem in the telnetd daemon of the netkit-telnet server is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code by...

The vulnerability of the `user_block_count` function in Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the userblockcount function in Linux kernel relates to reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the cpSeparateBufToContigBuf function in software for viewing, editing, and converting TIFF files relates to writing beyond the buffer boundaries. This allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the cpSeparateBufToContigBuf function in software for viewing, editing, and converting TIFF files relates to the execution of operations within acceptable buffer data limits. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its...

SUSE-SU-2020:1553-2 Security update for libexif

This update for libexif to 0.6.22 fixes the following issues: Security issues fixed: - CVE-2016-6328: Fixed an integer overflow in parsing MNOTE entry data of the input file bsc1055857. - CVE-2017-7544: Fixed an out-of-bounds heap read vulnerability in exifdatasavedataentry function in...

nodejs: memory corruption in napi_get_value_string_* functions

A flaw was found in nodejs. Calling napigetvaluestringlatin1, napigetvaluestringutf8, or napigetvaluestringutf16 with a non-NULL buf, and a bufsize of 0 will cause the entire string value to be written to buf, probably overrunning the length of the buffer...

The vulnerability of the multimedia platform Adobe Shockwave Player, related to the execution of operations beyond buffer boundaries in memory, allows attackers to execute arbitrary code.

The vulnerability of the multimedia platform Adobe Shockwave Player is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

The vulnerability of the multimedia platform Adobe Shockwave Player, related to the execution of operations beyond buffer boundaries in memory, allows attackers to execute arbitrary code.

The vulnerability of the multimedia platform Adobe Shockwave Player is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

The vulnerability of the multimedia platform Adobe Shockwave Player, related to the execution of operations beyond buffer boundaries in memory, allows attackers to execute arbitrary code.

The vulnerability of the multimedia platform Adobe Shockwave Player is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...