The vulnerability of Adobe Acrobat and Acrobat Reader PDF viewer/editor programs, related to reading beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of Adobe Acrobat and Acrobat Reader PDF viewer/editor programs relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code in the context of the current user, using a specially created file...

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter, related to reading beyond the buffer boundary in memory, allows a hacker to execute arbitrary code.

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by opening a specially created malicious file...

The vulnerability of the Adobe Framemaker desktop publishing system, related to reading data beyond the buffer in memory, allows attackers to disclose protected information.

The vulnerability of the Adobe Framemaker desktop publishing system relates to reading data beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to disclose protected information...

The vulnerability of the 3D model texturing program Adobe Substance 3D Designer, related to reading data beyond the buffer in memory, allows a hacker to bypass the ASLR protection mechanism.

The vulnerability of the 3D model texturing program Adobe Substance 3D Designer relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to bypass the ASLR protection mechanism by using a specially created file...

SUSE CVE-2024-34459

An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can result in a buffer over-read in xmlHTMLPrintFileContext in xmllint.c...

The vulnerability of the scmi_domain_reset() function in the drivers/firmware/arm_scmi/reset.c kernel of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the scmidomainreset function in the drivers/firmware/armscmi/reset.c kernel of the Linux operating system is related to accessing memory beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

The vulnerability of the sof_ipc3_fw_parse_ext_man() function in the sound/soc/sof/ipc3-loader.c kernel of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the sofipc3fwparseextman function in the sound/soc/sof/ipc3-loader.c file of the Linux kernel is related to reading beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to cause a service failure...

AZL-42027 CVE-2024-34459 affecting package libxml2 for versions less than 2.11.5-3

An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can result in a buffer over-read in xmlHTMLPrintFileContext in xmllint.c...

ALPINE-CVE-2024-34459

An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can result in a buffer over-read in xmlHTMLPrintFileContext in xmllint.c...

UBUNTU-CVE-2024-34459

An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can result in a buffer over-read in xmlHTMLPrintFileContext in xmllint.c...

AZL-40645 CVE-2024-32613 affecting package hdf5 for versions less than 1.14.4-1

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HLfldeserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612...

DEBIAN-CVE-2024-32617

HDF5 Library through 1.14.3 contains a heap-based buffer over-read caused by the unsafe use of strdup in H5MMxstrdup in H5MM.c called from H5Genttolink in H5Glink.c...

AZL-40556 CVE-2024-32605 affecting package hdf5 for versions less than 1.14.4.3-1

HDF5 Library through 1.14.3 has a heap-based buffer over-read in H5VMmemcpyvv in H5VM.c called from H5Dcompactreadvv in H5Dcompact.c...

UBUNTU-CVE-2024-32620

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5Faddrdecodelen in H5Fint.c, resulting in the corruption of the instruction pointer...

ALPINE-CVE-2024-27280

A buffer-overread issue was discovered in StringIO 3.0.1, as distributed in Ruby 3.0.x through 3.0.6 and 3.1.x through 3.1.4. The ungetbyte and ungetc methods on a StringIO can read past the end of a string, and a subsequent call to StringIO.gets may return the memory value. 3.0.3 is the main fix...

CVE-2024-27280

A buffer-overread issue was discovered in StringIO 3.0.1, as distributed in Ruby 3.0.x through 3.0.6 and 3.1.x through 3.1.4. The ungetbyte and ungetc methods on a StringIO can read past the end of a string, and a subsequent call to StringIO.gets may return the memory value. 3.0.3 is the main fix...

CVE-2024-27280

A buffer-overread issue was discovered in StringIO 3.0.1, as distributed in Ruby 3.0.x through 3.0.6 and 3.1.x through 3.1.4. The ungetbyte and ungetc methods on a StringIO can read past the end of a string, and a subsequent call to StringIO.gets may return the memory value. 3.0.3 is the main fix...

CVE-2024-27280

A buffer-overread issue was discovered in StringIO 3.0.1, as distributed in Ruby 3.0.x through 3.0.6 and 3.1.x through 3.1.4. The ungetbyte and ungetc methods on a StringIO can read past the end of a string, and a subsequent call to StringIO.gets may return the memory value. 3.0.3 is the main fix...

UBUNTU-CVE-2024-27280

A buffer-overread issue was discovered in StringIO 3.0.1, as distributed in Ruby 3.0.x through 3.0.6 and 3.1.x through 3.1.4. The ungetbyte and ungetc methods on a StringIO can read past the end of a string, and a subsequent call to StringIO.gets may return the memory value. 3.0.3 is the main fix...

SUSE CVE-2024-32613

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HLfldeserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612...