Medium: ruby20

Issue Overview: A buffer overrun vulnerability was found in Ruby. The issue occurs in a conversion algorithm from a String to a Float that causes process termination due to a segmentation fault, but under limited circumstances. This flaw may cause an illegal memory read. CVE-2022-28739 Affected...

RHEL 7 : rh-ruby27-ruby (RHSA-2022:6856)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:6856 advisory. Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system...

RHEL 7 : rh-ruby30-ruby (RHSA-2022:6855)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:6855 advisory. Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system...

CLSA-2022-1665428667 Fix CVE(s): CVE-2021-32027

SECURITY UPDATE: Buffer overrun from integer overflow - debian/patches/CVE-2021-32027.patch: Prevent integer overflows in array subscripting calculations - CVE-2021-32027...

The vulnerability of the win_redr_ruler() function in the Vim text editor allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the winredrruler function in the Vim text editor is related to the issue of the operation going beyond the buffer boundaries when using an index for negative arrays with a negative width window. Exploiting this vulnerability can allow an attacker to cause a service failure or...

Exploit for CVE-2022-26937

Windows Network File System Crash PoC CVE-2022-26937...

PT-2022-26412 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...

PT-2022-25677 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...

PT-2022-26372 · Tracker Software Products · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...

PT-2022-26379 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...

PT-2022-26421 · Unknown · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. It requires user interaction, such as visiting a malicious page or opening a malicious fil...

PT-2022-26397 · Unknown · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor versions affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or ope...

Autodesk Image Processing 缓冲区错误漏洞

Autodesk Image Processing is an image processing software from the US company Autodesk. A security vulnerability exists in Autodesk Image Processing, which can be exploited by an attacker to execute arbitrary code when the Autodesk Image Processing component writes out of an allocated buffer when...

PT-2022-26374 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...

PT-2022-26396 · Tracker Software Products · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...

PT-2022-25673 · Tracker Software Products · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...

PT-2022-26371 · Tracker Software Products · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...

PT-2022-6686 · Ashlar Vellum · Ashlar-Vellum Graphite

Name of the Vulnerable Software and Affected Versions: Ashlar-Vellum Graphite affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Graphite. User interaction is required to exploit this issue, where th...

The vulnerability of the RTKVHD64.sys driver from the Realtek High-Definition Audio (HDA) sound driver package allows a hacker to cause a service failure.

The vulnerability of the RTKVHD64.sys driver in the Realtek High-Definition Audio HDA sound driver package for Lenovo laptops is related to operations that go beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause system failures...

The vulnerability of the dcraw_common.cpp component in the LibRaw image processing library allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the dcrawcommon.cpp component in the LibRaw image processing library is related to the output of operations that go beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to gain access to confidential data, compromise its integrity, an...