AZL-35073 CVE-2023-2977 affecting package opensc for versions less than 0.22.0-3

A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardoshaveverifyrcpackage. The attacker can supply a smart card package with malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for 2 tags, where remaining lengt...

An issue was discovered in Qt 5.x before 5.15.14 6.x before 6.2.9 and 6.3.x through 6.5.x before 6.5.1. QDnsLookup has a buffer over-read via a crafted reply from a DNS server.

...

The vulnerability of the Horner Automation Cscape EnvisionRV remote control access software and the Cscape software, related to reading data beyond the buffer in memory, allows a attacker to execute arbitrary code.

The vulnerability of the Horner Automation Cscape EnvisionRV remote control access software and the Cscape software lies in reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code by having the user open a specially...

The vulnerability of the Horner Automation Cscape EnvisionRV remote control access software and the Cscape software, related to reading beyond the buffer in memory, allows a attacker to execute arbitrary code.

The vulnerability of the Horner Automation Cscape EnvisionRV remote control access software and the Cscape software lies in reading data beyond the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by having the user open a specially created FNP file...

The vulnerability of the IOSurface component in MacOS operating systems allows attackers to disclose protected information.

The vulnerability of the IOSurface component in MacOS operating systems relates to reading data beyond the buffer boundaries within IOSurface. Exploiting this vulnerability can allow an attacker to disclose protected information...

The vulnerability of the Horner Automation Cscape EnvisionRV remote control access software and the Cscape software arises from reading beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Horner Automation Cscape EnvisionRV remote control access software and the Cscape software arises from reading beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by having the user open a specially created CS...

The vulnerability of the Horner Automation Cscape EnvisionRV remote control access software and the Cscape software arises from reading beyond the buffer in the FontManager system’s control module. This allows an attacker to execute arbitrary code.

The vulnerability of the Horner Automation Cscape EnvisionRV remote control access software and the Cscape software arises from reading data beyond the buffer boundaries in the FontManager system’s memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by having the us...

The vulnerability in the RLBox Expat browser driver for Firefox and Firefox ESR allows a malicious actor to trigger an unexpected termination of the application.

The vulnerability of the RLBox Expat browser drivers for Firefox and Firefox ESR involves reading data beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to cause an unexpected termination of the application through a specially created website...

SUSE CVE-2023-33285

An issue was discovered in Qt 5.x before 5.15.14, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. QDnsLookup has a buffer over-read via a crafted reply from a DNS server...

CVE-2023-33285

An issue was discovered in Qt 5.x before 5.15.14, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. QDnsLookup has a buffer over-read via a crafted reply from a DNS server...

DEBIAN-CVE-2023-33285

An issue was discovered in Qt 5.x before 5.15.14, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. QDnsLookup has a buffer over-read via a crafted reply from a DNS server...

AZL-26943 CVE-2023-33285 affecting package qt5-qtbase for versions less than 5.12.11-9

An issue was discovered in Qt 5.x before 5.15.14, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. QDnsLookup has a buffer over-read via a crafted reply from a DNS server...

Qt 缓冲区错误漏洞

Qt is a cross-platform C++ application development framework from the Norwegian company Qt. It is widely used to develop GUI programs, in which case it is also known as the widget toolkit. It can also be used to develop non-GUI programs, such as console tools and servers. A security vulnerability...

The vulnerability of the bgpd software module for implementing network routing on Unix-like systems allows a hacker to cause service interruptions.

The vulnerability of the bgpd software module for implementing routing on Unix-like systems is related to the issue where an operation is executed outside the buffer in memory when processing BGP OPEN messages with a length of one octet or word. Exploiting this vulnerability allows a remote...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to execute arbitrary code.

The vulnerability of the Core component of the Oracle VM VirtualBox virtualization software relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter, related to reading beyond the buffer limit in memory, allows a hacker to execute arbitrary code.

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter, related to reading beyond the buffer limit in memory, allows a hacker to execute arbitrary code.

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter, related to reading beyond the buffer limit in memory, allows a hacker to execute arbitrary code.

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter, related to reading beyond the allowed buffer data limits, allows attackers to access confidential data.

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter lies in the reading of data beyond the allowed buffer size. Exploiting this vulnerability can allow an attacker to access confidential data...

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter, related to reading beyond the allowed buffer data limits, allows attackers to access confidential data.

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter lies in the reading of data beyond the allowed buffer size. Exploiting this vulnerability can allow an attacker to access confidential data...