Heap-use-after-free in function buflist_altfpos in vim

Description Heap-use-after-free in function buflistaltfpos at buffer.c:3703 Proof of Concept ./vim -u NONE -i NONE -n -m -X -Z -e -s -S ./pochuaf -c :qa! ==1404==ERROR: AddressSanitizer: heap-use-after-free on address 0x625000011940 at pc 0x0000004a4dbe bp 0x7ffc6204d090 sp 0x7ffc6204d080 READ of...

Use After Free

vim is vulnerable to use after free. The vulnerability exists in dobufferext function of buffer.c due to dummy buffer ends up in a window which allows a remote attacker to potentially exploit heap corruption via malicious input...

PT-2022-7599 · Vim +6 · Vim +6

Name of the Vulnerable Software and Affected Versions: vim versions prior to 9.0.0789 Description: The issue is related to a Use After Free vulnerability in the buffer.c component of the Vim text editor. This vulnerability allows an attacker to access confidential data, compromise data integrity,...

CVE-2018-5742

While backporting a feature for a newer branch of BIND9, RedHat introduced a path leading to an assertion failure in buffer.c:420. Affects RedHat versions bind-9.9.4-65.el7 - bind-9.9.4-72.el7. No ISC releases are affected. Other packages from other distributions who made the same error may also ...

CVE-2018-5742

While backporting a feature for a newer branch of BIND9, RedHat introduced a path leading to an assertion failure in buffer.c:420. Affects RedHat versions bind-9.9.4-65.el7 - bind-9.9.4-72.el7. No ISC releases are affected. Other packages from other distributions who made the same error may also ...

CVE-2018-5742

While backporting a feature for a newer branch of BIND9, RedHat introduced a path leading to an assertion failure in buffer.c:420. Affects RedHat versions bind-9.9.4-65.el7 - bind-9.9.4-72.el7. No ISC releases are affected. Other packages from other distributions who made the same error may also ...

CVE-2018-5742

While backporting a feature for a newer branch of BIND9, RedHat introduced a path leading to an assertion failure in buffer.c:420. Affects RedHat versions bind-9.9.4-65.el7 - bind-9.9.4-72.el7. No ISC releases are affected. Other packages from other distributions who made the same error may also ...

CVE-2018-5742 An oversight while backporting a feature leads to an assertion failure in buffer.c:420

While backporting a feature for a newer branch of BIND9, RedHat introduced a path leading to an assertion failure in buffer.c:420. Affects RedHat versions bind-9.9.4-65.el7 - bind-9.9.4-72.el7. No ISC releases are affected. Other packages from other distributions who made the same error may also ...

CVE-2018-5742

CVE-2018-5742 describes an assertion failure in BIND9 caused by a backport-related path in buffer.c:420, leading to a crash (denial of service). Affected are Red Hat family packages: bind-9.9.4-65.el7 through 9.9.4-72.el7, with no ISC releases affected; other distributions that replicated the err...

Denial Of Service (DoS)

bind is vulnerable to denial of service DoS attacks. The vulnerability exists as buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service assertion failur...

Remote Code Execution (RCE)

libevent.so is vulnerable to remote code execution RCE. The application contains multiple integer overflows in the evbufferadd, evbufferexpand and buffereventwrite functions in buffer.c that can lead to the application crashing or arbitrary code being executed...

Libmobi Information Disclosure Vulnerability (CNVD-2018-10873)

Libmobi is a C-based language for processing Kindle MOBI format e-book document library . A security vulnerability exists in the 'bufferaddraw' function of the buffer.c file in Libmobi version 0.3. A remote attacker can exploit this vulnerability to disclose information heap-based buffer...

ISC DHCP 4.1.0 to 4.1-ESV-R15 / 4.2.0 to 4.2.8 / 4.3.0 to 4.3.6 DoS vulnerability

The DHCP server version installed on the remote host is 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, or 4.3.0 to 4.3.6. It is, therefore, vulnerable to a denial of service condition with in the omapiconnectionwriter function of the omapip/buffer.c script due to improper handling of an empty message. A...

AIX bind Advisory : bind_advisory13.asc (IV89828) (IV89829) (IV89830) (IV89831) (IV90056)

The version of bind installed on the remote AIX host is affected by the following vulnerabilities : - A denial of service vulnerability exists due to an error in the lightweight resolver lwres protocol implementation when resolving a query name that, when combined with a search list entry, exceed...

Linux 3.16.0-28 Integer Overflow

Title: Linux kernel 3.16.0-28 - Integer overflow + Credits / Discovery: Nassim Asrir + Author Email: [email protected] || https://www.linkedin.com/in/nassim-asrir-b73a57122/ + Author Company: Henceforth + CVE: CVE-2017-7286 Vendor: =============== https://www.kernel.org/ Vulnerability Type:...

EulerOS 2.0 SP1 : bind (EulerOS-SA-2016-1052)

According to the versions of the bind packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - ISC BIND 9.x before 9.9.9-P2, 9.10.x before 9.10.4-P2, and 9.11.x before 9.11.0b2, when lwresd or the named lwres option is enabled, allows remote...

ISC BIND 'buffer.c' Assertion Failure Denial of Service Vulnerability - Linux

ISC BIND is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; ifdescription...

ISC BIND 'buffer.c' Assertion Failure Denial of Service Vulnerability - Windows

ISC BIND is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; ifdescription...

AIX 6.1 TL 9 : bind (IV89828) (deprecated)

https://vulners.com/cve/CVE-2016-2776 https://vulners.com/cve/CVE-2016-2776 ISC BIND is vulnerable to a denial of service, caused by an assertion failure in buffer.c while a nameserver is building responses to a specifically constructed request. By sending a specially crafted DNS packet, a remote...

BIND 9 ‘buffer. c’denial of service vulnerability

No description provided by source. import socket import struct TARGET = '192.168.200.10', 53 QA = 1 QTSIG = 250 DNSMESSAGEHEADERLEN = 12 def buildbindnukequestion="\x06google\x03com\x00", udpsize=512: queryA = "\x8f\x65\x00\x00\x00\x01\x00\x00\x00\x00\x00\x01" + question + int16QA + "\x00\x01"...