Libde265 Security Vulnerability

Libde265 is a German h.265 video codec. A security vulnerability exists in Libde265 version v1.0.12, which originates from the inclusion of multiple buffer overflows via the numtilecolumns and numtilerow parameters in the picparameterset::dump function...

CVE-2023-43887

Libde265 v1.0.12 was discovered to contain multiple buffer overflows via the numtilecolumns and numtilerow parameters in the function picparameterset::dump...

CVE-2023-43887

CVE-2023-43887 affects Libde265, with v1.0.12 containing multiple buffer overflows in pic_parameter_set::dump triggered by num_tile_columns and num_tile_row. Connected sources corroborate broader libde265 issues and note related CVEs (27102, 27103, 47471, 49465, 49467, 49468). Public details spec...

CVE-2023-43887

Libde265 v1.0.12 was discovered to contain multiple buffer overflows via the numtilecolumns and numtilerow parameters in the function picparameterset::dump...

[SECURITY] [DLA 3651-1] postgresql-11 security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3651-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort November 14, 2023 https://wiki.debian.org/LTS -...

Buffer Overflows

vlc is vulnerable to Buffer Overflows. An integer underflow vulnerability allows an attacker to exploit a flaw in the way that VLC handles packet lengths to cause a buffer overflow. The attacker could then use the vulnerability to execute arbitrary code on a vulnerable system, steal data, or...

Rocky Linux 8 : p11-kit (RLSA-2021:1609)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:1609 advisory. - An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit...

Rocky Linux 8 : raptor2 (RLSA-2021:1842)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:1842 advisory. - raptorxmlwriterstartelementcommon in raptorxmlwriter.c in Raptor RDF Syntax Library 2.0.15 miscalculates the maximum nspace declarations for the XML...

Buffer Overflows

libmemcached.so is vulnerable to Buffer Overflows. An attacker could exploit this vulnerability by tricking a user into visiting a malicious website or opening a malicious file. The website or file would contain a specially crafted multiget request that would be forwarded to a vulnerable Memcache...

sdl2_sound -- multiple vulnerabilities

GitHub Security Lab reports: stbimage.h and stbvorbis libraries contain several memory access violations of different severity Wild address read in stbigifloadnext GHSL-2023-145. Multi-byte read heap buffer overflow in stbiverticalflip GHSL-2023-146. Disclosure of uninitialized memory in...

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM : WeeChat vulnerabilities (USN-5258-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5258-1 advisory. Stuart Nevans Locke discovered that WeeChat's relay plugin insecurely handled malformed websocket frames. A remote attacker in...

CVE-2023-4257

Unchecked user input length in /subsys/net/l2/wifi/wifishell.c can cause buffer overflows...

CVE-2023-4257 Unchecked user input length in the Zephyr WiFi shell module

Unchecked user input length in /subsys/net/l2/wifi/wifishell.c can cause buffer overflows...

CVE-2023-4257 Unchecked user input length in the Zephyr WiFi shell module

Unchecked user input length in /subsys/net/l2/wifi/wifishell.c can cause buffer overflows...

SUSE: Security Advisory (SUSE-SU-2023:4065-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10 zero-day vulnerabilities in industrial cell router could lead to code execution, buffer overflows

Cisco Talos recently disclosed 11 vulnerabilities, 10 of which are zero-days without a patch in an industrial cellular router. Attackers could exploit these vulnerabilities in the Yifan YF325 to carry out a variety of attacks, in some cases gaining the ability to execute arbitrary shell commands ...

Debian: Security Advisory (DLA-3606-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3606-1] freerdp2 security update

Debian LTS Advisory DLA-3606-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost October 07, 2023 https://wiki.debian.org/LTS Package : freerdp2 Version : 2.3.0+dfsg1-2+deb10u3 CVE ID : CVE-2020-4030 CVE-2020-4031 CVE-2020-4032 CVE-2020-4033 CVE-2020-11017 CVE-2020-110...

CVE-2023-5184

Two potential signed to unsigned conversion errors and buffer overflow vulnerabilities at the following locations in the Zephyr IPM drivers...

Updated firefox/thunderbird packages fix security vulnerability

Use-after-free in workers. CVE-2023-3600 File Extension Spoofing using the Text Direction Override Character. CVE-2023-3417 Offscreen Canvas could have bypassed cross-origin restrictions. CVE-2023-4045 Incorrect value used during WASM compilation. CVE-2023-4046 Potential permissions request bypas...