23 matches found
SAIL 安全漏洞
SAIL is an open-source image decoding library developed by SAIL. SAIL has a security vulnerability, which stems from inconsistencies in pixel format parsing and byte swapping code within the XWD encoder/decoder. This vulnerability may lead to out-of-bound memory access...
EUVD-2007-6393
Malware in sbrugna...
EUVD-2014-1448
Malware in sbrugna...
CVE-2023-52750
In the Linux kernel, the following vulnerability has been resolved: arm64: Restrict CPUBIGENDIAN to GNU as or LLVM IAS 15.x or newer Prior to LLVM 15.0.0, LLVM's integrated assembler would incorrectly byte-swap NOP when compiling for big-endian, and the resulting series of bytes happened to match...
CVE-2023-52750
The CVE-2023-52750 entry concerns the Linux kernel on arm64 where CPU_BIG_ENDIAN must be restricted to using a trusted assembler (GNU as or LLVM IAS 15.x or newer). Before LLVM 15, LLVM’s integrated assembler could byte-swap NOPs for big-endian targets, causing a sequence of bytes that matched th...
SUSE CVE-2007-6427
The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a different vulnerability than CVE-2007-4990...
SUSE SLES11 Security Update : xorg-x11-server (SUSE-SU-2017:1741-1)
This update for xorg-x11-server fixes the following issues: Security issues : - CVE-2017-2624: Prevent timing attack against MIT cookie. bsc1025029, CVE-2017-2624 Non security issues : - Use arc4random to generate cookies. bsc1025084 - XDrawArc performance improvement bsc1019649 - Fix byte swappi...
CVE-2014-1370
The byte-swapping implementation in copyfile in Apple OS X before 10.9.4 allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds memory access and application crash via a crafted AppleDouble file in a ZIP archive...
Out-of-bounds
Apple QuickTime before 7.7.5 does not properly perform a byte-swapping operation, which allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds memory access and application crash via a crafted ttfo element in a movie file...
CVE-2014-1250
CVE-2014-1250 affects Apple QuickTime prior to 7.7.5. The issue is described as an out-of-bounds memory access caused by improper byte-swapping in the ttfo element of a movie file, enabling remote code execution or a crash. The connected sources corroborate QuickTime-related vulnerabilities and l...
CVE-2014-1250
Apple QuickTime before 7.7.5 does not properly perform a byte-swapping operation, which allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds memory access and application crash via a crafted ttfo element in a movie file...
Quicktime (for Windows) < 7.7.5 Multiple Vulnerabilities (deprecated)
Binary data 8139.prm...
Apple Quicktime 7.7.5 Multiple Vulnerabilities
Binary data 8140.prm...
QuickTime < 7.7.5 Multiple Vulnerabilities (Windows)
The version of QuickTime installed on the remote Windows host is earlier than 7.7.5. It is, therefore, reportedly affected by the following vulnerabilities : - Out-of-bounds byte swapping issues exist in the handling of QuickTime image descriptions and 'ttfo' elements. CVE-2013-1032, CVE-2014-125...
Design/Logic Flaw
The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a different vulnerability than CVE-2007-4990...
CVE-2007-6427
The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a different vulnerability than CVE-2007-4990...
CVE-2007-6427
The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a different vulnerability than CVE-2007-4990...
DEBIAN-CVE-2007-6427
The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a different vulnerability than CVE-2007-4990...
CVE-2007-6427
The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a different vulnerability than CVE-2007-4990...
CVE-2007-6427
The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a different vulnerability than CVE-2007-4990...