ROS-20260401-73-0008

A vulnerability in the pngimagereadcomposite function of the libpng library is related to reading data outside of buffer boundaries in memory. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality and availability of protected information using a specially...

SUSE SLED15: libpng16-16 / libpng16-16-32bit / libpng16-compat-devel / etc (SUSE-SU-2025:4494-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4494-1 advisory. - CVE-2025-65018: Fixed heap buffer overflow in pngcombinerow triggered via pngimagefinishread...

The vulnerability described in the structure of wwan_rtnl_link_ops{} within the drivers/net/wwan/wwan_core.c file of the Linux kernel allows a attacker to compromise the confidentiality and accessibility of protected information.

The vulnerability described in the structure of wwanrtnllinkops within the drivers/net/wwan/wwancore.c file of the Linux kernel relates to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility of protected...

The vulnerability of the comphy_gbePhyInit() function in the drivers/phy/marvell/phy-mvebu-a3700-comphy.c driver for the Linux operating system’s PHY kernel allows a hacker to cause a service failure.

The vulnerability of the comphygbePhyInit function in the drivers/phy/marvell/phy-mvebu-a3700-comphy.c driver for the Linux kernel’s PHY layer is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...

SUSE CVE-2024-9029

A flaw was found in the freeimage library. Processing a crafted image can cause a buffer over-read of 1 byte in the readiptcprofile function in the Source/Metadata/IPTC.cpp file because the size of the profile is not being sanitized, causing a crash in the application linked to the library,...

The vulnerability of the `read_symbol_stabsdebugging_info` function in the `rddbg.c` component of the GNU Binutils development environment allows an attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the readsymbolstabsdebugginginfo function in the rddbg.c component of the GNU Binutils development environment is related to reading data beyond the permissible buffer size. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its...

SUSE CVE-2011-1959

The snoopread function in wiretap/snoop.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 does not properly handle certain virtualizable buffers, which allows remote attackers to cause a denial of service application crash via a large length value in a snoop file that triggers a stack-bas...

SUSE CVE-2016-6288

The phpurlparseex function in ext/standard/url.c in PHP before 5.5.38 allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via vectors involving the smartstr data type...

UBUNTU-CVE-2019-17529

An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer over-read in AP4CencSampleEncryption::DoInspectFields in Core/Ap4CommonEncryption.cpp when called from AP4Atom::Inspect in Core/Ap4Atom.cpp...

ALPINE-CVE-2018-14466

The Rx parser in tcpdump before 4.9.3 has a buffer over-read in print-rx.c:rxcachefind and rxcacheinsert...

The vulnerability of the ip_cmsg_recvchecksum function (net/ipv4/ip_sockglue.c) in the Linux operating system’s kernel allows a attacker to cause a service failure.

The vulnerability of the ipcmsgrecvchecksum function in the Linux kernel’s net/ipv4/ipsockglue.c file arises from a read operation that exceeds the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to trigger a service failure by using a specially crafted system cal...

DEBIAN-CVE-2017-16229

In the Ox gem 2.8.1 for Ruby, the process crashes with a stack-based buffer over-read in the readfromstr function in saxbuf.c when a crafted input is supplied to saxparse...

OpenSSL Multiple Vulnerabilities (Nov 2017) - Windows

OpenSSL is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openssl:openssl"; ifdescription...

DEBIAN-CVE-2016-9802

In BlueZ 5.42, a buffer over-read was identified in "l2cappacket" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash...