sudo: Heap-Based Buffer Overread

Background sudo allows a system administrator to give users the ability to run commands as other users. Description In certain password input handling, sudo incorrectly assumes the password input is at least nine bytes in size, leading to a heap buffer overread. Impact In the worst case, the heap...

GLSA-202211-08 : sudo: Heap-Based Buffer Overread

The remote host is affected by the vulnerability described in GLSA-202211-08 sudo: Heap-Based Buffer Overread - Sudo 1.8.0 through 1.9.12, with the crypt password backend, contains a plugins/sudoers/auth/passwd.c array-out-of-bounds error that can result in a heap-based buffer over-read. This can...

The vulnerability of the FT_Request_Size function in the FreeType library, which allows a hacker to trigger a service failure

The vulnerability of the FTRequestSize function in the FreeType library relates to reading data from buffers beyond their acceptable limits. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

CVE-2022-41916

...

zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field

A security vulnerability was found in zlib. The flaw triggered a heap-based buffer in inflate in the inflate.c function via a large gzip header extra field. This flaw is only applicable in the call inflateGetHeader...

httpd: mod_lua: Information disclosure with websockets

A flaw was found in the modlua module of httpd. The data returned by the wsread function may point past the end of the storage allocated for the buffer, resulting in information disclosure...

PT-2022-17455 · Qualcomm · Snapdragon Wearables +5

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon versions affected versions not specified Description: The issue is related to information disclosure in video due to a buffer over-read while parsing avi files. This affects various Qualcomm Snapdragon products, including...

PT-2022-21754 · Qualcomm · Snapdragon

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to a transient Denial of Service DOS caused by a buffer over-read in the WLAN firmware. This occurs while the firmware is processing the PPE threshold. The...

PT-2022-21753 · Qualcomm · Snapdragon Mobile +3

Name of the Vulnerable Software and Affected Versions: Snapdragon Compute affected versions not specified Snapdragon Connectivity affected versions not specified Snapdragon Mobile affected versions not specified Snapdragon Wired Infrastructure and Networking affected versions not specified...

The vulnerability of the vector graphics editor CorelDRAW Graphics Suite (formerly CorelDRAW) lies in the ability to read data beyond the buffer boundaries in memory, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the CorelDRAW Graphics Suite formerly CorelDRAW graphic editor relates to the reading of data beyond the buffer boundaries in memory during the syntax analysis of GIF files. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

USN-5723-1 vim vulnerabilities

It was discovered that Vim could be made to crash when searching specially crafted patterns. An attacker could possibly use this to crash Vim and cause denial of service. CVE-2022-1674 It was discovered that there existed a NULL pointer dereference in Vim. An attacker could possibly use this to...

DEBIAN-CVE-2022-31630

In PHP versions prior to 7.4.33, 8.0.25 and 8.1.12, when using imageloadfont function in gd extension, it is possible to supply a specially crafted font file, such as if the loaded font is used with imagechar function, the read outside allocated buffer will be used. This can lead to crashes or...

The vulnerability of the vector graphics editor CorelDRAW Graphics Suite (formerly CorelDRAW) lies in the ability to read data beyond the buffer boundaries in memory, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the CorelDRAW Graphics Suite formerly CorelDRAW graphic editor relates to reading data beyond the buffer boundaries in memory during the syntactic parsing of BMP files. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information by...

The vulnerability of the find_name() function in the Cairo graphics library allows a hacker to trigger a service failure.

The vulnerability of the findname function in the Cairo graphics library is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability of the decode_png() function in the TorchVision computer vision system, which allows a intruder to trigger a service failure

The vulnerability of the decodepng function in the TorchVision computer vision system lies in the handling of PNG format files, where data is read beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

Updated mbedtls packages fix security vulnerability

An unauthenticated remote host could send an invalid ClientHello message in which the declared length of the cookie extends past the end of the message. A DTLS server with MBEDTLSSSLDTLSCLIENTPORTREUSE enabled would read past the end of the message up to the declared length of the cookie. This...

MGASA-2022-0415 Updated mbedtls packages fix security vulnerability

An unauthenticated remote host could send an invalid ClientHello message in which the declared length of the cookie extends past the end of the message. A DTLS server with MBEDTLSSSLDTLSCLIENTPORTREUSE enabled would read past the end of the message up to the declared length of the cookie. This...

httpd: mod_lua: Information disclosure with websockets

A flaw was found in the modlua module of httpd. The data returned by the wsread function may point past the end of the storage allocated for the buffer, resulting in information disclosure...

DEBIAN-CVE-2022-42905

In wolfSSL before 5.5.2, if callback functions are enabled via the WOLFSSLCALLBACKS flag, then a malicious TLS 1.3 client or network attacker can trigger a buffer over-read on the heap of 5 bytes. WOLFSSLCALLBACKS is only intended for debugging...

wolfSSL 缓冲区错误漏洞

wolfSSL CyaSSL is a small, portable embedded SSL programming library for embedded systems developers from wolfSSL, Inc. A security vulnerability exists in wolfSSL versions prior to 5.5.2. An attacker exploited the vulnerability to trigger a buffer over-read...