5832 matches found
PT-2019-6322 · Exiv2 +1 · Exiv2 +1
Name of the Vulnerable Software and Affected Versions: Exiv2 version 0.27.99.0 Description: The issue is related to a heap-based buffer over-read in the Exiv2::PngImage::readMetadata function, located in the pngimage.cpp component of the Exiv2 library. This can be exploited by attackers using a...
DEBIAN-CVE-2019-13503
mqparsehttp in mongoose.c in Mongoose 6.15 has a heap-based buffer over-read...
CVE-2019-13503
mqparsehttp in mongoose.c in Mongoose 6.15 has a heap-based buffer over-read...
PT-2019-13372 · Cesanta · Mongoose
Name of the Vulnerable Software and Affected Versions: Mongoose version 6.15 Description: The issue is related to a heap-based buffer over-read in the mq parse http function in mongoose.c. Recommendations: For Mongoose version 6.15, at the moment, there is no information about a newer version tha...
ALPINE-CVE-2019-13303
ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read in MagickCore/composite.c in CompositeImage...
DEBIAN-CVE-2019-13297
ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage because a height of zero is mishandled...
UBUNTU-CVE-2019-13295
ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage because a width of zero is mishandled...
UBUNTU-CVE-2019-13312
blockcmp in libavcodec/zmbvenc.c in FFmpeg 4.1.3 has a heap-based buffer over-read...
CVE-2019-13286
In Xpdf 4.01.01, there is a heap-based buffer over-read in the function JBIG2Stream::readTextRegionSeg located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure...
CVE-2019-13291
In Xpdf 4.01.01, there is a heap-based buffer over-read in the function DCTStream::readScan located at Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It might allow an attacker to cause Information Disclosure...
UBUNTU-CVE-2019-13291
In Xpdf 4.01.01, there is a heap-based buffer over-read in the function DCTStream::readScan located at Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It might allow an attacker to cause Information Disclosure...
CVE-2019-13282
In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in SampledFunction::transform in Function.cc when using a large index for samples. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause...
PT-2019-13236 · Xpdf · Xpdf
Name of the Vulnerable Software and Affected Versions: Xpdf version 4.01.01 Description: A heap-based buffer over-read issue can be triggered in the SampledFunction::transform function when using a large index for samples, potentially allowing an attacker to cause Denial of Service or an...
The vulnerability in the implementation of 3D-acceleration functions for hypervisors such as VMware ESXi, VMware Fusion, and Vmware Workstation allows attackers to exploit it to disclose sensitive information or cause system failures during maintenance.
The vulnerability of the 3D-acceleration function implementation in VMware ESXi, VMware Fusion, and Vmware Workstation relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information or cause system failur...
The vulnerability of VMware ESXi, VMware Fusion, and Vmware Workstation virtualization platforms arises from reading data beyond the buffer in memory, allowing attackers to exploit this to disclose protected information.
The vulnerability of VMware ESXi, VMware Fusion, and Vmware Workstation virtualization platforms is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...
USN-4039-1 CImg vulnerabilities
It was discovered that allocation failures could occur in CImg when loading crafted bmp images. An attacker could possibly use this issue to cause a denial of service. CVE-2018-7587 It was discovered that a heap-based buffer over-read existed in CImg when loading crafted bmp images. An attacker...
UBUNTU-CVE-2019-12972
An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. There is a heap-based buffer over-read in bfddoprnt in bfd.c because elfobjectp in elfcode.h mishandles an eshstrndx section of type SHTGROUP by omitting a trailing '\0' character...
DEBIAN-CVE-2019-12957
In Xpdf 4.01.01, a buffer over-read could be triggered in FoFiType1C::convertToType1 in fofi/FoFiType1C.cc when the index number is larger than the charset array bounds. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It allows an attacker to use a crafted...
UBUNTU-CVE-2019-12957
In Xpdf 4.01.01, a buffer over-read could be triggered in FoFiType1C::convertToType1 in fofi/FoFiType1C.cc when the index number is larger than the charset array bounds. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It allows an attacker to use a crafted...
UBUNTU-CVE-2019-12958
In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in FoFiType1C::convertToType0 in fofi/FoFiType1C.cc when it is trying to access the second privateDicts array element, because the privateDicts array has only one element allocated...