The vulnerability of the sendto function in the software tool for interacting with servers via curl allows a hacker to trigger a service failure or redirect traffic.

The vulnerability of the sendto function in the curl programming interface relates to reading beyond the buffer limit when using the TFTP protocol. Exploiting this vulnerability allows a malicious actor to cause service failures or redirect traffic through a specially crafted URL address...

The vulnerability of the ims_pcu_get_cdc_union_desc function (drivers/input/misc/ims-pcu.c) in the Linux kernel allows a attacker to cause a service failure or exert other effects.

The vulnerability of the imspcugetcdcuniondesc function drivers/input/misc/ims-pcu.c in the Linux kernel arises from a read operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker acting locally to cause service failures or other effects...

PT-2018-17095 · R +1 · Haven R Package +2

Name of the Vulnerable Software and Affected Versions: haven R package affected versions not specified libreadstat.a in WizardMac ReadStat version 0.1.1 Description: The issue is related to multiple problems in the underlying ReadStat library of the haven R package, including an infinite loop...

The vulnerability of the aiff_read_chanmap function in the libsndfile library, which allows an attacker to compromise confidentiality, integrity, and accessibility of data.

The vulnerability of the aiffreadchanmap function in the aaiff.c file of the libsndfile library relates to accessing beyond the buffer memory boundaries. Exploiting this vulnerability could allow an attacker, operating remotely, to compromise the confidentiality, integrity, and accessibility of...

The vulnerability of the xmlDictComputeFastKey function (dict.c) in the libxml2 library allows a attacker to cause a service failure.

The vulnerability of the xmlDictComputeFastKey function in the dict.c file of the libxml2 library arises from a read operation that occurs outside the buffer, within dynamic memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability of the CInArchive::ReadFileItem method (Archive/Udf/UdfIn.cpp) in the p7zip archive tool allows a attacker to cause a service failure or execute arbitrary code.

The vulnerability of the CInArchive::ReadFileItem method Archive/Udf/UdfIn.cpp in the p7zip archive tool is caused by the occurrence of read operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures or execute arbitrary...

UBUNTU-CVE-2017-9712

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, if userspace provides a too-large IE length in wlanhddcfg80211setie, a buffer over-read occurs...

Debian DSA-4080-1 : php7.0 - security update

Several vulnerabilities were found in PHP, a widely-used open source general purpose scripting language : - CVE-2017-11144 Denial of service in openssl extension due to incorrect return value check of OpenSSL sealing function - CVE-2017-11145 Out-of-bounds read in wddxdeserialize - CVE-2017-11628...

[SECURITY] [DSA 4080-1] php7.0 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4080-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 08, 2018 https://www.debian.org/security/faq -...

DEBIAN-CVE-2018-5248

In ImageMagick 7.0.7-17 Q16, there is a heap-based buffer over-read in coders/sixel.c in the ReadSIXELImage function, related to the sixeldecode function...

UBUNTU-CVE-2018-5248

In ImageMagick 7.0.7-17 Q16, there is a heap-based buffer over-read in coders/sixel.c in the ReadSIXELImage function, related to the sixeldecode function...

MGASA-2018-0007 Updated apache packages fix security vulnerability

modsessioncrypto was encrypting its data/cookie using the configured ciphers with possibly either CBC or ECB modes of operation AES256-CBC by default, hence no selectable or builtin authenticated encryption. This made it vulnerable to padding oracle attacks, particularly with CBC CVE-2016-0736...

DEBIAN-CVE-2017-18009

In OpenCV 3.3.1, a heap-based buffer over-read exists in the function cv::HdrDecoder::checkSignature in modules/imgcodecs/src/grfmthdr.cpp...

UBUNTU-CVE-2017-17942

In LibTIFF 4.0.9, there is a heap-based buffer over-read in the function PackBitsEncode in tifpackbits.c...

DEBIAN-CVE-2017-17880

In ImageMagick 7.0.7-16 Q16 x8664 2017-12-21, there is a stack-based buffer over-read in WriteWEBPImage in coders/webp.c, related to a WEBPDECODERABIVERSION check...

CVE-2017-17880

In ImageMagick 7.0.7-16 Q16 x8664 2017-12-21, there is a stack-based buffer over-read in WriteWEBPImage in coders/webp.c, related to a WEBPDECODERABIVERSION check...

UBUNTU-CVE-2017-17912

In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based buffer over-read in ReadNewsProfile in coders/tiff.c, in which LocaleNCompare reads heap data beyond the allocated region...

CVE-2017-17879

In ImageMagick 7.0.7-16 Q16 x8664 2017-12-21, there is a heap-based buffer over-read in ReadOneMNGImage in coders/png.c, related to length calculation and caused by an off-by-one error...

UBUNTU-CVE-2017-17913

In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a stack-based buffer over-read in WriteWEBPImage in coders/webp.c, related to an incompatibility with libwebp versions, 0.5.0 and later, that use a different structure type...

DEBIAN-CVE-2017-17812

In Netwide Assembler NASM 2.14rc0, there is a heap-based buffer over-read in the function detoken in asm/preproc.c that will cause a remote denial of service attack...