php: Heap-based buffer over-read in PHAR reading functions

An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse the...

php: Buffer over-read in exif_process_IFD_TAG() leading to information disclosure

When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.29, 7.2.x below 7.2.18 and 7.3.x below 7.3.5 can be caused to read past allocated buffer in exifprocessIFDTAG function. This may lead to information disclosure or crash...

expat: heap-based buffer over-read via crafted XML input

In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XMLGetCurrentLineNumber or XMLGetCurrentColumnNumber then resulted in a heap-based buffer over-read...

The vulnerability of the viewsrv.dll library in the webvrpcs software of the Advantech WebAccess monitoring system allows a hacker to read data beyond the buffer in memory.

The vulnerability of the viewsrv.dll library in the webvrpcs software of the Advantech WebAccess remote monitoring system is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to read data beyond the buffer in memory...

The vulnerability of the function function jas_image_depalettize (libjasper/base/jas_image.c) in the JasPer library allows a attacker to compromise the integrity and confidentiality of data, or cause service interruptions.

The vulnerability of the function function jasimagedepalettize libjasper/base/jasimage.c in the JasPer library is due to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to compromise data integrity and confidentiality, or cause service...

The vulnerability of the fts5HashEntrySort function in the sqlite3.c file of the SQLite database management system allows a hacker to disclose protected information.

The vulnerability of the fts5HashEntrySort function in the sqlite3.c file of the SQLite database management system is related to a read operation that goes beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to disclose sensitive information that is protected by thi...

The vulnerability of the tftp_receive_packet() function in the libcurl library, related to the issue of outputting operations beyond the buffer in memory, allows a attacker to cause a service failure or execute arbitrary code.

The vulnerability of the tftpreceivepacket function in the libcurl library is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure or execute arbitrary code...

expat: heap-based buffer over-read via crafted XML input

In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XMLGetCurrentLineNumber or XMLGetCurrentColumnNumber then resulted in a heap-based buffer over-read...

The vulnerability of the Windows Jet Database Engine component allows a perpetrator to execute arbitrary code.

The vulnerability of the Windows Jet Database Engine component in the operating system is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted file...

DEBIAN-CVE-2019-18359

A buffer over-read was discovered in ReadMP3APETag in apetag.c in MP3Gain 1.6.2. The vulnerability causes an application crash, which leads to remote denial of service...

CVE-2019-18359

A buffer over-read was discovered in ReadMP3APETag in apetag.c in MP3Gain 1.6.2. The vulnerability causes an application crash, which leads to remote denial of service...

USN-4162-2: Linux kernel (Azure) vulnerabilities

USN-4162-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux kernel for Microsoft Azure Cloud systems for Ubuntu 14.04 ESM. It was discovered that the RSI 91x Wi-Fi driver in the Linux kernel did not did not handle detach...

USN-4162-1: Linux kernel vulnerabilities

It was discovered that the RSI 91x Wi-Fi driver in the Linux kernel did not did not handle detach operations correctly, leading to a use-after-free vulnerability. A physically proximate attacker could use this to cause a denial of service system crash or possibly execute arbitrary code...

Security Bulletin: Vulnerability in IBM HTTP Server affects Netezza Performance Portal

Summary IBM HTTP Server is used by IBM Netezza Performance Portal. IBM Netezza Performance Portal has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2017-7679 DESCRIPTION: Apache HTTPD could allow a remote attacker to obtain sensitive information, caused by a buffer overread in...

USN-4157-1: Linux kernel vulnerabilities

Wen Huang discovered that the Marvell Wi-Fi device driver in the Linux kernel did not properly perform bounds checking, leading to a heap overflow. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2019-14814, CVE-2019-14815,...

Ubuntu 19.04 : Linux kernel vulnerabilities (USN-4157-1)

Wen Huang discovered that the Marvell Wi-Fi device driver in the Linux kernel did not properly perform bounds checking, leading to a heap overflow. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2019-14814, CVE-2019-14815,...

MGASA-2019-0297 Updated libpcap and tcpdump packages fix security vulnerabilities

Updated libpcap and tcpdump packages fix security vulnerabilities: The libpcap packages have been updated to versions 1.9.1 and tcpdump to 4.9.3, respectively, fixing several buffer overread and overflow issues...

Updated libpcap and tcpdump packages fix security vulnerabilities

Updated libpcap and tcpdump packages fix security vulnerabilities: The libpcap packages have been updated to versions 1.9.1 and tcpdump to 4.9.3, respectively, fixing several buffer overread and overflow issues...

The vulnerability of the NSS library used by Thunderbird email client and browsers Firefox and Firefox ESR allows a malicious actor to gain unauthorized access to information.

The vulnerability of the NSS library for Thunderbird email clients, as well as browsers Firefox and Firefox ESR, relates to reading beyond the buffer during the import of the closed curve25519 key in the PKCS 8 format with leading bytes of 0x00. Exploiting this vulnerability can allow an attacker...

The vulnerability of the HTTP/2 web server implementation of Apache HTTP Server, related to reading beyond the buffer in memory, allows attackers to cause service failures.

The vulnerability of the HTTP/2 web server implementation in Apache HTTP Server is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to cause a service failure...