php: Out of bounds read when parsing EXIF information

When PHP EXIF extension is parsing EXIF information from an image, e.g. via exifreaddata function, in PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure o...

php: Information disclosure in exif_read_data()

When PHP EXIF extension is parsing EXIF information from an image, e.g. via exifreaddata function, in PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure o...

DEBIAN-CVE-2020-29129

ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length...

UBUNTU-CVE-2020-29129

ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length...

The vulnerability of the DHCP subsystem of Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM) allows attackers to disclose protected information.

The vulnerability of the DHCP subsystem of Intel Active Management Technology AMT and Intel Standard Manageability ISM exists due to the reading of data beyond the specified buffer. Exploiting this vulnerability can allow a malicious actor to disclose protected information...

libslirp 缓冲区错误漏洞

libslirp is a general-purpose TCP-IP emulator for managing virtual network services in a hypervisor. A buffer overread vulnerability exists in libslirp 4.3.1 and earlier versions of slirp.c. The vulnerability stems from slirp.c attempting to read a certain amount of header data even though the...

libslirp 缓冲区错误漏洞

libslirp is a general-purpose TCP-IP emulator for managing virtual network services in a hypervisor. A buffer over-read vulnerability exists in ncsi.c in libslirp 4.3.1 and earlier versions, which stems from ncsi.c attempting to read a certain amount of header data despite having exceeded the tot...

PT-2020-6961 · Libslirp +9 · Libslirp +9

Name of the Vulnerable Software and Affected Versions: libslirp versions 4.3.1 and earlier Description: The issue is related to a buffer over-read in the slirp.c component of the libslirp TCP-IP emulator. This occurs because the component attempts to read a certain amount of header data, even if ...

Linux kernel buffer over-read vulnerability

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A buffer over-read vulnerability exists in the fbcon code in Linux kernel versions prior to 5.8.15. A local attacker...

Linux kernel 缓冲区错误漏洞

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A buffer over-read vulnerability exists in the fbcon code in Linux kernel versions prior to 5.8.15. A local attacker...

The vulnerability of the Adobe Illustrator graphic editor, related to reading data beyond the buffer in memory, allows a hacker to execute arbitrary code.

The vulnerability of Adobe Illustrator’s graphic editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

The vulnerability of the Adobe Illustrator graphic editor, related to reading data beyond the buffer in memory, allows a hacker to execute arbitrary code.

The vulnerability of Adobe Illustrator’s graphic editor lies in the reading of data beyond the buffer boundaries in memory when processing created PDF files. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

The vulnerability of the Adobe Animate software for creating multimedia and computer animations lies in its ability to read data beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Adobe Animate program for creating multimedia and computer animations is related to reading data outside the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

UBUNTU-CVE-2020-28241

libmaxminddb before 1.4.3 has a heap-based buffer over-read in dumpentrydatalist in maxminddb.c...

The vulnerability of the mfr_print() function in the tcpdump utility for capturing and analyzing network traffic allows a hacker to induce a service failure.

The vulnerability of the mfrprint function in the tcpdump network traffic capture and analysis utility is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability of the rsvp_obj_print() function in the tcpdump network traffic capture and analysis tool allows a hacker to induce a service failure.

The vulnerability of the rsvpobjprint function print-rsvp.c in the packet capture and analysis tool tcpdump is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability of the bgp_capabilities_print() function in the packet capture and analysis tool tcpdump allows a hacker to cause a service failure.

The vulnerability of the bgpcapabilitiesprint function print-bgp.c in the network traffic capture and analysis tool tcpdump is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability of the ikev1_n_print() function in the tcpdump network traffic capture and analysis tool allows a hacker to induce a service failure.

The vulnerability of the ikev1nprint function print-isakmp.c, a utility for capturing and analyzing network traffic using tcpdump, is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability of the dccp_printOption() function in the tcpdump utility for capturing and analyzing network traffic allows a hacker to induce a service failure.

The vulnerability of the dccpprintOption function print-dccp.c in the packet capture and analysis tool tcpdump is related to buffer-over-read operations in memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

expat: heap-based buffer over-read via crafted XML input

In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XMLGetCurrentLineNumber or XMLGetCurrentColumnNumber then resulted in a heap-based buffer over-read...