CVE-2018-20194

CVE-2018-20194 affects FAAD2 (FAAD2 2.8.8) via a stack-based buffer underflow in the third instance of calculate_gain() in libfaad/sbr_hfadj.c. A crafted input can cause denial of service or other unspecified impact by mishandling G_max

systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option handling

It was discovered that systemd-network does not correctly keep track of a buffer size when constructing DHCPv6 packets. This flaw may lead to an integer underflow that can be used to produce an heap-based buffer overflow. A malicious host on the same network segment as the victim's one may...

PT-2018-3068 · Freeware +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.8.8 Description: The issue is related to a stack-based buffer underflow in the calculate gain function, specifically in the third instance of this function in libfaad/sbr hfadj.c. This underfl...

Updated iniparser packages fix security vulnerability

A flaw was found in iniparser version prior to 4.1. A stack buffer underflow in the function iniparserload in iniparser.c file which can be triggered by parsing a file that containing a zero-byte. This vulnerability may allow an attacker to cause a Denial of Service DoS...

MGASA-2018-0440 Updated iniparser packages fix security vulnerability

A flaw was found in iniparser version prior to 4.1. A stack buffer underflow in the function iniparserload in iniparser.c file which can be triggered by parsing a file that containing a zero-byte. This vulnerability may allow an attacker to cause a Denial of Service DoS...

openvswitch/expr_parse_target: Stack-buffer-underflow in lex_parse_hex_integer

Project: https://github.com/openvswitch/ovs.git Detailed report: https://oss-fuzz.com/testcase?key=5699613135208448 Project: openvswitch Fuzzer: aflopenvswitchexprparsetarget Fuzz target binary: exprparsetarget Job Type: aflasanopenvswitch Platform Id: linux Crash Type: Stack-buffer-underflow REA...

ffmpeg/ffmpeg_AV_CODEC_ID_ILBC_fuzzer: Stack-buffer-underflow in vector_multiplication

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5638941487661056 Project: ffmpeg Fuzzer: aflffmpegAVCODECIDILBCfuzzer Fuzz target binary: ffmpegAVCODECIDILBCfuzzer Job Type: aflasanffmpeg Platform Id: linux Crash Type: Stack-buffer-underflow WRITE 2...

EulerOS Virtualization 2.5.0 : glibc (EulerOS-SA-2018-1239)

According to the version of the glibc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - In glibc 2.26 and earlier there is confusion in the usage of getcwd by realpath which can be used to write before the destination...

EulerOS Virtualization 2.5.0 : ruby (EulerOS-SA-2018-1248)

According to the versions of the ruby packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The lazyinitialize function in lib/resolv.rb in Ruby through 2.4.3 uses Kernelopen, which might allow Command Injection attacks, as...

mupdf/pdf_fuzzer: Stack-buffer-underflow in ps_index

Project: git://git.ghostscript.com/mupdf.git Detailed report: https://oss-fuzz.com/testcase?key=6241403096006656 Project: mupdf Fuzzer: aflmupdfpdffuzzer Fuzz target binary: pdffuzzer Job Type: aflasanmupdf Platform Id: linux Crash Type: Stack-buffer-underflow READ 8 Crash Address: 0x7fde52864418...

Security Bulletin: IBM BladeCenter Advanced Management Module (AMM) is affected by vulnerabilities in GNU C Library

Summary IBM BladeCenter Advanced Management Module AMM has addressed the following vulnerabilities in GNU C Library. Vulnerability Details CVEID: CVE-2018-6551 DESCRIPTION: GNU glibc could allow a remote attacker to execute arbitrary code on the system, caused by an integer overflow in the malloc...

Buffer Underflow

mercurial is vulnerable to buffer underflows. The application does not validate the pointer position when reading a patch fragment, allowing a malicious user to cause a buffer underflow by passing a patch file to the application, causing the application to crash or arbitrary code to be executed...

mupdf/mupdf_pdf_fuzzer: Stack-buffer-underflow in ps_index

Detailed report: https://oss-fuzz.com/testcase?key=5246375359938560 Project: mupdf Fuzzer: aflmupdfpdffuzzer Fuzz target binary: pdffuzzer Job Type: aflasanmupdf Platform Id: linux Crash Type: Stack-buffer-underflow READ 8 Crash Address: 0x7ff1ddc79818 Crash State: psindex psrun evalpostscriptfun...

Security Bulletin: Vulnerabilities in OpenSSL affect IBM Systems Director (CVE-2016-2108,CVE-2016-2109,CVE-2016-2176)

Summary OpenSSL vulnerabilities were disclosed on May 3, 2016 by the OpenSSL Project. OpenSSL is used by IBM Systems Director. IBM Systems Director has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2016-2108 DESCRIPTION: OpenSSL could allow a remote attacker to execute arbitrary...

Security Bulletin: Multiple Mozilla Firefox vulnerability issues in IBM SONAS.

Summary There are security vulnerabilities in versions of Mozilla Firefox that are shipped with versions 1.5.1.0 to 1.5.2.4 of IBM SONAS Vulnerability Details IBM SONAS is shipped with Mozilla Firefox. There are vulnerabilities in certain versions of Mozilla Firefox shipped in certain versions of...

Security Bulletin: Multiple Mozilla Firefox vulnerability issues in IBM Storwize V7000 Unified.

Summary There are security vulnerabilities in versions of Mozilla Firefox that are shipped with versions 1.5.1.0 to 1.5.2.4 of IBM Storwize V7000 Unified. Vulnerability Details IBM Storwize V7000 Unified is shipped with Mozilla Firefox. There are vulnerabilities in certain versions of Mozilla...

Security Bulletin: Multiple Vulnerabilities in OpenSSL affect IBM MQ Appliance

Summary OpenSSL vulnerabilities were disclosed on May 3, 2016 by the OpenSSL Project. OpenSSL is used by IBM MQ Appliance. IBM MQ Appliance has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2016-2108 DESCRIPTION: OpenSSL could allow a remote attacker to execute arbitrary code on...

glibc - realpath() Privilege Escalation Exploit

Exploit for linux platform in category local exploits This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "glibc 'realpath' Privilege Escalation", 'Description' = %q This module attempts to gain roo...

glibc - 'realpath()' Privilege Escalation (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "glibc 'realpath' Privilege Escalation", 'Description' = %q This module attempts to gain root privileges on Linux systems by abusing a vulnerabili...

glibc 'realpath()' Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "glibc 'realpath' Privilege Escalation", 'Description' = %q This module attempts to gain root privileges on Linux systems by abusing a vulnerabili...