5832 matches found
UBUNTU-CVE-2019-17594
There is a heap-based buffer over-read in the ncfindentry function in tinfo/comphash.c in the terminfo library in ncurses before 6.1-20191012...
DEBIAN-CVE-2019-17544
libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character...
ALPINE-CVE-2019-17544
libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character...
UBUNTU-CVE-2019-17544
libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character...
PT-2019-5180 · Ncurses +8 · Ncurses +8
Name of the Vulnerable Software and Affected Versions: ncurses versions prior to 6.1-20191012 Description: The issue is related to a heap-based buffer over-read in the nc find entry function, located in the tinfo/comp hash.c file of the terminfo library in ncurses. This could potentially allow an...
AZL-7266 CVE-2019-17455 affecting package libntlm for versions less than 1.6-1
Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for a crafted NTLM request...
UBUNTU-CVE-2019-17455
Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for a crafted NTLM request...
DEBIAN-CVE-2019-17401
libyal liblnk 20191006 has a heap-based buffer over-read in the networksharenameoffset20 code block of liblnklocationinformationreaddata in liblnklocationinformation.c, a different issue than CVE-2019-17264. NOTE: the vendor has disputed this as described in the GitHub issue...
DEBIAN-CVE-2019-17266
libsoup from versions 2.65.1 until 2.68.1 have a heap-based buffer over-read because soupntlmparsechallenge in soup-auth-ntlm.c does not properly check an NTLM message's length before proceeding with a memcpy...
DEBIAN-CVE-2019-17264
In libyal liblnk before 20191006, liblnklocationinformationreaddata in liblnklocationinformation.c has a heap-based buffer over-read because an incorrect variable name is used for a certain offset. NOTE: the vendor has disputed this as described in the GitHub issue...
UBUNTU-CVE-2019-17263
DISPUTED In libyal libfwsi before 20191006, libfwsiextensionblockcopyfrombytestream in libfwsiextensionblock.c has a heap-based buffer over-read because rejection of an unsupported size only considers values less than 6, even though values of 6 and 7 are also unsupported. NOTE: the vendor has...
UBUNTU-CVE-2019-17266
libsoup from versions 2.65.1 until 2.68.1 have a heap-based buffer over-read because soupntlmparsechallenge in soup-auth-ntlm.c does not properly check an NTLM message's length before proceeding with a memcpy...
PT-2019-15051 · Libyal +1 · Liblnk +1
Name of the Vulnerable Software and Affected Versions: libyal liblnk versions prior to 20191006 Description: The issue is related to a heap-based buffer over-read in the liblnk location information read data function, located in liblnk location information.c, due to the use of an incorrect variab...
PT-2019-4774 · Gnome +2 · Libsoup +2
Name of the Vulnerable Software and Affected Versions: libsoup versions 2.65.1 through 2.68.1 Description: The issue is caused by a heap-based buffer over-read in the soup ntlm parse challenge function, located in soup-auth-ntlm.c, which fails to properly check the length of an NTLM message befor...
CVE-2019-13331
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.5.0.20723. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...
ALPINE-CVE-2018-14470
The Babel parser in tcpdump before 4.9.3 has a buffer over-read in print-babel.c:babelprintv2...
ALPINE-CVE-2018-14881
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgpcapabilitiesprint BGPCAPCODERESTART...
ALPINE-CVE-2018-16230
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgpattrprint MPREACHNLRI...
ALPINE-CVE-2018-14882
The ICMPv6 parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp6.c...
DEBIAN-CVE-2018-16229
The DCCP parser in tcpdump before 4.9.3 has a buffer over-read in print-dccp.c:dccpprintoption...