30 matches found
RUSTSEC-2021-0091 Reading on uninitialized buffer may cause UB ( `gfx_auxil::read_spirv()` )
Affected versions of this crate passes an uninitialized buffer to a user-provided Read implementation. Arbitrary Read implementations can read from the uninitialized buffer memory exposure and also can return incorrect number of bytes written to the buffer. Reading from uninitialized memory...
The vulnerability of SQLite’s data processing mechanism in Google Chrome browsers allows attackers to gain unauthorized access to confidential data.
The vulnerability of SQLite data processing mechanism in Google Chrome browsers is related to reading data from buffer files beyond their allowable limits. Exploiting this vulnerability can allow an attacker to gain unauthorized access to confidential data through a created HTML page...
CVE-2019-2337
CVE-2019-2337 describes a buffer-read flaw in Qualcomm’s Snapdragon hardware/firmware where EMM may read beyond the declared message length while skipping unknown IES. The issue is linked to multiple Snapdragon platforms (Auto, Compute, Consumer IoT, Industrial IoT, Mobile, Wearables) and a long ...
The vulnerability of the microprogrammed programmable logic controller Modicon, related to reading buffers from external sources, allows a intruder to disclose protected information.
The vulnerability of the microprogrammed programmable logic controller Modicon relates to the reading of buffers from external sources. Exploiting this vulnerability can allow an intruder, operating remotely, to disclose sensitive information by reading certain memory blocks in the controller via...
Denial Of Service (DoS)
libcurl.so is vulnerable to denial of service DoS. The library does not correctly check input data, allowing an attacker or compromised NTLM server to perform out-of-bounds buffer reading by providing a bad length + offset combination as input...
Denial Of Service (DoS)
OpenSSL is susceptible to denial of service attack. During buffer reading and writing with the SSLMODERELEASEBUFFERS mode, TLS/SSL client or server using OpenSSL can crash while processing SSL/TLS due to the flaw in ssl3readbytes function in s3pkt.c in OpenSSL...
SUSE-SU-2017:0433-1 Security update for libgit2
This update for libgit2 fixes the several issues. These security issues were fixed: - CVE-2016-10130: When using the custom certificate callback or when using pygit2 or git2go a attacker could have caused an invalid certificate to be accepted bsc1019037. - CVE-2017-5338: When using the custom...
CVE-2016-5238
The getcmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service out-of-bounds write and QEMU process crash via vectors related to reading from the information transfer buffer in non-DMA mode...
Debian Security Advisory DSA 750-1 (dhcpcd)
The remote host is missing an update to dhcpcd announced via advisory DSA 750-1. infamous42md discovered that dhcpcd, a DHCP client for automatically configuring IPv4 networking, can be tricked into reading past the end of the supplied DHCP buffer which could lead to the daemon crashing. The old...
linux/x86 ifreadfd,buf,512<=2 _exit1 else buf; 29 bytes
linux/x86 ifreadfd,buf,512 I made this as a chunk you can paste in to make modular remote exploits. I use it as a first stage payload when I desire to follow up with a real large payload of goodness. This actually is a bit larger than necessary because of the error checking but in some cases...