The vulnerability of the get_huffman_diff() function in the src\x3f\x3futils_patched.cpp component of the LibRaw image processing library allows a attacker to cause a service failure.

The vulnerability of the gethuffmandiff function in the src\x3f\x3futilspatched.cpp component of the LibRaw image processing library is related to reading data beyond the allowed buffer size. Exploiting this vulnerability allows an attacker to cause a service failure...

SUSE: Security Advisory (SUSE-SU-2024:3353-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GLSA-202409-06 : file: Stack Buffer Overread

The remote host is affected by the vulnerability described in GLSA-202409-06 file: Stack Buffer Overread Multiple vulnerabilities have been discovered in file. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly from the...

SUSE-SU-2024:3353-1 Security update for python36

This update for python36 fixes the following issues: - CVE-2024-5642: Fixed invalid value sent to underlying OpenSSL API may cause a buffer overread when NPN is used bsc1227233...

SUSE-SU-2024:3351-1 Security update for python3

This update for python3 fixes the following issues: - CVE-2024-5642: buffer overread when NPN is used and invalid values are sent to the OpenSSL API. bsc1227233...

Oracle Linux 9 : ruby:3.3 (ELSA-2024-6785)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-6785 advisory. - Fix DoS vulnerability in rexml. CVE-2024-39908 CVE-2024-41946 CVE-2024-43398 Resolves: RHEL-57573 Resolves: RHEL-57570 Resolves: RHEL-57578 - Fix REX...

The vulnerability of Adobe Illustrator’s graphic editor lies in the ability to read data beyond the buffer in memory, allowing an intruder to gain unauthorized access to protected information.

The vulnerability of Adobe Illustrator graphic editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Admin Center remote management tool for Windows operating systems allows a perpetrator to disclose sensitive information or cause service failures.

The vulnerability of the Admin Center remote management tool for Windows operating systems relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information or cause service failures...

The vulnerability of the OLE DB driver for SQL Server Windows operating systems arises from reading data beyond the buffer in memory, allowing an attacker to exploit their privileges.

The vulnerability of the OLE DB driver for SQL Server on Windows operating systems relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to increase their privileges remotely...

Amazon Linux 2 : openssl-snapsafe (ALASOPENSSL-SNAPSAFE-2024-006)

The version of openssl-snapsafe installed on the remote host is prior to 1.0.2k-24. It is, therefore, affected by a vulnerability as referenced in the ALAS2OPENSSL-SNAPSAFE-2024-006 advisory. Issue summary: Calling the OpenSSL API function SSLselectnextproto with anempty supported client protocol...

PT-2025-4089 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability, as the...

The vulnerability of Adobe Audition’s audio editor, related to reading data beyond the buffer in memory, allows a hacker to gain access to confidential information.

The vulnerability of Adobe Audition relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to access confidential information...

The vulnerability of the OptFeature() function in the objdetect/src/cascadedetect.hpp component of the computer vision algorithm library OpenCV, which involves reading data beyond the allowed buffer limits, allows a malicious actor to cause a service failure.

The vulnerability of the OptFeature function in the objdetect/src/cascadedetect.hpp component of the computer vision library OpenCV involves reading data beyond the allowable buffer size. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability of the decode_deliver() function in the OFono mobile communication interface, related to the issue of operations going beyond the buffer in memory, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the decodedeliver function in the OFono mobile communication interface is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a remote attacker to access confidential data, compromise its integrity, and cause service...

The vulnerability of the d_expression_1 function in the cp-demangle.c component of the GNU Binutils development environment, which involves reading data beyond the allowable buffer limits, allows a attacker to cause a service failure.

The vulnerability of the dexpression1 function in the cp-demangle.c component of the GNU Binutils development environment is related to reading data beyond the allowable buffer size. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability of the gold/fileread.cc component of the GNU Binutils development environment, which involves reading data beyond the allowed buffer limits, allows a hacker to cause a service failure.

The vulnerability of the gold/fileread.cc component in the GNU Binutils development environment relates to reading data from buffer files beyond their acceptable limits. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

The vulnerability of the predictOrdered() function in the objdetect/src/cascadedetect.hpp component of the computer vision algorithm library OpenCV, which involves reading data beyond the allowed buffer limits. This vulnerability allows attackers to access confidential data and also trigger a service failure.

The vulnerability of the predictOrdered function in the objdetect/src/cascadedetect.hpp component of the computer vision library OpenCV involves reading data beyond the permissible buffer size. Exploiting this vulnerability could allow an attacker to gain access to confidential data, as well as...

The vulnerability in the Google Chrome web browser, related to reading data beyond the allowed buffer size, allows a hacker to gain access to confidential data.

The vulnerability in the Google Chrome web browser relates to reading data from the buffer beyond its allowable limits. Exploiting this vulnerability could allow a malicious actor to gain access to confidential data through a specially created HTML page...

The vulnerability of the `stbi_set_flip_vertically_on_load` component in the C/C++ Libstb library involves reading data beyond the allowable buffer boundaries. This allows attackers to access confidential data and also trigger a denial-of-service attack.

The vulnerability of the stbisetflipverticallyonload component in the C/C++ Libstb library is related to reading data beyond the allowable buffer size. Exploiting this vulnerability can allow an attacker to access confidential data, as well as cause service interruptions through the use of a...

EulerOS 2.0 SP9 : ruby (EulerOS-SA-2024-2406)

According to the versions of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A buffer-overread issue was discovered in StringIO 3.0.1, as distributed in Ruby 3.0.x through 3.0.6 and 3.1.x through 3.1.4. The ungetbyte and unge...