15 matches found
Astra Linux - уязвимость в vim
Access to memory location before the start of the buffer in the GitHub repository for vim/vim prior to version 8.2...
MAL-2025-147493 Malicious code in rollup-buffer-superagent-start (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c94961fce5ea04ac8cfdfb74d49339851ca055ba99c0a733abafa399d2879bf4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
CVE-2025-59729
When parsing the header for a DHAV file, there's an integer underflow in offset calculation that leads to reading the duration from before the start of the allocated buffer. If we load a DHAV file that is larger than MAXDURATIONBUFFERSIZE bytes 0x100000 for example 0x101000 bytes, then at 0 we ha...
PT-2025-40875
Name of the Vulnerable Software and Affected Versions versions prior to 8.0 Description An integer underflow occurs in the offset calculation during DHAV file header parsing, potentially leading to reading the duration from before the start of the allocated buffer. Specifically, when processing a...
CVE-2023-53331
In the Linux kernel, the following vulnerability has been resolved: pstore/ram: Check start of empty przs during init After commit 30696378f68a "pstore/ram: Do not treat empty buffers as valid", initialization would assume a prz was valid after seeing that the buffersize is zero regardless of the...
DEBIAN-CVE-2023-53331
In the Linux kernel, the following vulnerability has been resolved: pstore/ram: Check start of empty przs during init After commit 30696378f68a "pstore/ram: Do not treat empty buffers as valid", initialization would assume a prz was valid after seeing that the buffersize is zero regardless of the...
SUSE CVE-2017-17083
In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the NetBIOS dissector could crash. This was addressed in epan/dissectors/packet-netbios.c by ensuring that write operations are bounded by the beginning of a buffer...
SUSE CVE-2022-0351
Access of Memory Location Before Start of Buffer in GitHub repository vim/vim prior to 8.2...
SUSE CVE-2022-0522
Access of Memory Location Before Start of Buffer in NPM radare2.js prior to 5.6.2...
The vulnerability of the Vim text editor lies in its access to memory cells before the buffer starts, allowing an attacker to cause a service failure or execute arbitrary code.
The vulnerability of the Vim text editor relates to access to memory cells prior to the buffer’s start. Exploiting this vulnerability can allow an attacker to cause a service failure or execute arbitrary code...
OESA-2022-1514 vim security update
Vim is an advanced text editor that seeks to provide the power of the de-facto Unix editor 'Vi', with a more complete feature set. Vim is a highly configurable text editor built to enable efficient text editing. It is an improved version of the vi editor distributed with most UNIX systems. Securi...
UBUNTU-CVE-2022-0522
Access of Memory Location Before Start of Buffer in NPM radare2.js prior to 5.6.2...
DEBIAN-CVE-2022-0351
Access of Memory Location Before Start of Buffer in GitHub repository vim/vim prior to 8.2...
UBUNTU-CVE-2022-0351
Access of Memory Location Before Start of Buffer in GitHub repository vim/vim prior to 8.2...
ALPINE-CVE-2017-17083
In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the NetBIOS dissector could crash. This was addressed in epan/dissectors/packet-netbios.c by ensuring that write operations are bounded by the beginning of a buffer...