UBUNTU-CVE-2019-10050

A buffer over-read issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the decode-mpls.c function DecodeMPLS is composed only of a packet of source address and destination address plus the correct type field and the right number for shim, an attacker can manipulate the control...

CVE-2017-12839

A heap-based buffer over-read in the getbits function in src/libmpg123/getbits.h in mpg123 through 1.25.5 allows remote attackers to cause a possible denial-of-service out-of-bounds read or possibly have unspecified other impact via a crafted mp3 file...

Ubuntu: Security Advisory (USN-3971-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OracleVM 3.4 : Unbreakable / etc (OVMSA-2019-0015)

The remote OracleVM system is missing necessary patches to address critical security updates : - x86/apic: Make archsetuphwirq NUMA node aware Henry Willard Orabug: 29534769 - KEYS: encrypted: fix buffer overread in validmasterdesc Eric Biggers Orabug: 29591025 CVE-2017-13305 - scsi: target: remo...

DEBIAN-CVE-2019-11766

dhcp6.c in dhcpcd before 6.11.7 and 7.x before 7.2.2 has a buffer over-read in the D6OPTIONPDEXCLUDE feature...

UBUNTU-CVE-2019-11766

dhcp6.c in dhcpcd before 6.11.7 and 7.x before 7.2.2 has a buffer over-read in the D6OPTIONPDEXCLUDE feature...

PT-2019-4118 · Roy Marples +1 · Dhcpcd +1

Name of the Vulnerable Software and Affected Versions: dhcpcd versions 6.11.7 and earlier, 7.x before 7.2.2 Description: The issue is related to a buffer over-read in the D6 OPTION PD EXCLUDE feature of the dhcp6.c component in the dhcpcd DHCP server. This can be exploited by a remote attacker to...

UBUNTU-CVE-2019-11036

When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.29, 7.2.x below 7.2.18 and 7.3.x below 7.3.5 can be caused to read past allocated buffer in exifprocessIFDTAG function. This may lead to information disclosure or crash...

Denial Of Service (DoS)

Apache httpd is vulnerable to denial of serviceDoS attacks. A remote user could send a specially crafted sequence of request headers to trigger a buffer overread error in apfindtoken and cause a segmentation fault which leads application to a crash...

Denial Of Service (DoS)

Apache httpd is vulnerable to denial of serviceDoS attacks. This occurs in modmime when sending a specially crafted Content-Type response header which leads to buffer overread , resulting in a potentially exploitable crash...

Denial Of Service (DoS)

krb5 is vulnerable to denial of service DoS. The vulnerability exists through a buffer overread issue when injected with invalid tokens into the GSSAPI application session...

DEBIAN-CVE-2019-10131

An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.c. A local attacker may use this flaw to read beyond the end of the buffer or to crash the program...

UBUNTU-CVE-2019-10131

An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.c. A local attacker may use this flaw to read beyond the end of the buffer or to crash the program...

ALPINE-CVE-2019-11598

In ImageMagick 7.0.8-40 Q16, there is a heap-based buffer over-read in the function WritePNMImage of coders/pnm.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file. This is related to SetGrayscaleImage in MagickCore/quantize.c...

ALPINE-CVE-2019-11597

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WriteTIFFImage of coders/tiff.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file...

DEBIAN-CVE-2019-11597

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WriteTIFFImage of coders/tiff.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file...

Buffer Over-read

Overview mqtt-packet is an Encoder and Decoder for MQTT. Affected versions of this package are vulnerable to Buffer Over-read. An attacker could trigger an out of range read on a buffer which throws a RangeError. MQTT Brokers using this module could be forced to crash by sending a specifically...

The vulnerability of the `check_group` function in the elflint.c library of the ELF file modification and analysis utility Elfutils, related to the occurrence of operations outside the buffer’s boundaries, allows a malicious actor to trigger a service failure.

The vulnerability of the checkgroup function in the elflint.c library of the ELF file modification and analysis utility Elfutils relates to the execution of a read operation beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to cause a service failure through...

The vulnerability of the RDP client rdesktop, related to reading beyond the buffer boundary, allows an attacker to cause a service failure.

The vulnerability of the RDP client rdesktop secure.c relates to reading data beyond the buffer boundary. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

The vulnerability of the PHP interpreter’s read function, related to reading beyond the boundaries of memory buffers, allows attackers to cause service failures, violate data confidentiality, and compromise the integrity of protected data.

The vulnerability of the PHP language interpreter’s read function is related to the rereading of buffers based on queues. Exploiting this vulnerability can allow attackers to cause service failures, violate the confidentiality and integrity of protected data by reading memory allocated to specifi...