Nanopb 缓冲区错误漏洞

Nanopb is a protocol buffer implementation for microprocessors from the individual developers of Nanopb. A security vulnerability exists in Nanopb versions prior to 0.3.1, which stems from an overflow in pbdecbytes and pbdecstring...

PT-2023-10174 · Nanopb · Nanopb

Name of the Vulnerable Software and Affected Versions: Nanopb versions prior to 0.3.1 Description: The issue allows size t overflows in pb dec bytes and pb dec string. Recommendations: For versions prior to 0.3.1, update to version 0.3.1 or later to resolve the issue...

CVE-2023-25434

libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesBytes at /libtiff/tools/tiffcrop.c:3215...

DEBIAN-CVE-2023-25434

libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesBytes at /libtiff/tools/tiffcrop.c:3215...

LibTIFF 安全漏洞

LibTIFF is a library for reading and writing TIFF Tagged Image File Format files. The library contains some command line tools for working with TIFF files. A security vulnerability exists in LibTIFF version 4.5.0, which originates from the extractContigSamplesBytes function return via...

Ouroboros is Unsound

Summary Ouroboros has a soundness problem, but a fix has been implemented in 0.16.0. More details: In 0.15.0, Ouroboros works internally by creating a struct where all uses of 'this are replaced by 'static. However, a recent addition to Miri checks that references passed to functions are valid...

The vulnerabilities of the MP4BytesProperty and MP4StringProperty classes in the library for creating, modifying, and reading MP4 files, mp4v2, allow attackers to cause service interruptions.

The vulnerability of the MP4BytesProperty and MP4StringProperty classes in the library for creating, modifying, and reading MP4 files, mp4v2, is related to the issue where operations are performed outside of the buffer during the processing of variable count values. Exploiting this vulnerability...

CVE-2023-25752

When accessing throttled streams, the count of available bytes needed to be checked in the calling function to be within bounds. This may have lead future code to be incorrect and vulnerable. This vulnerability affects Firefox 111, Firefox ESR 102.9, and Thunderbird 102.9...

UBUNTU-CVE-2023-33717

mp4v2 v2.1.3 was discovered to contain a memory leak when a method calling MP4File::ReadBytes had allocated memory but did not catch exceptions thrown by ReadBytes...

Marketplace may call onERC721Received() and create a lien during buyNftFromMarket(), creating divergence

Lines of code Vulnerability details Impact The contract supports a "push-based" NFT supply, where the price and rate are embedded in the data bytes. This way, the lender doesn't need to additionally approve the NFT but can just transfer it directly to the contract. However, since the contract als...

PT-2023-3434 · Mp4V2 · Mp4V2

Name of the Vulnerable Software and Affected Versions: mp4v2 version 2.1.3 Description: The issue is related to a memory leak in the mp4v2 library when a method calling MP4File::ReadBytes allocates memory but does not catch exceptions thrown by ReadBytes. This can lead to a denial of service...

CLSA-2023-1685378325 curl: Fix of 2 CVEs

CVE-2022-43552: smb/telnet: do not free the protocol struct in done - CVE-2022-35252: cookie: reject cookies with "control bytes"...

CLSA-2023-1685378052 curl: Fix of 2 CVEs

CVE-2022-43552: smb/telnet: do not free the protocol struct in done - CVE-2022-35252: cookie: reject cookies with "control bytes"...

UBUNTU-CVE-2023-33720

mp4v2 v2.1.2 was discovered to contain a memory leak via the class MP4BytesProperty...

PT-2023-24456 · Mp4V2 · Mp4V2

Name of the Vulnerable Software and Affected Versions: mp4v2 version 2.1.2 Description: A memory leak was discovered in mp4v2 via the class MP4BytesProperty. Recommendations: For mp4v2 version 2.1.2, consider restricting access to the MP4BytesProperty class until a patch is available. At the...

PT-2023-3046 · Mp4V2 · Mp4V2

Name of the Vulnerable Software and Affected Versions: mp4v2 version 2.1.3 Description: The issue is related to a memory leak via the MP4StringProperty class in the mp4v2 library, which can be exploited by a remote attacker to cause a denial of service. The vulnerability is also associated with t...

PostgresNIO processes unencrypted bytes from man-in-the-middle

Impact Any user of PostgresNIO connecting to servers with TLS enabled is vulnerable to a man-in-the-middle attacker injecting false responses to the client's first few queries, despite the use of TLS certificate verification and encryption. The remaining text in this section is quoted verbatim fr...

IPFS Boxo 安全漏洞

IPFS Boxo is a library for building IPFS applications and implementations from IPFS, Inc. A security vulnerability exists in Boxo version 0.4.0, 0.5.0. An attacker exploiting this vulnerability is able to allocate arbitrarily many bytes in a Bitswap server...

PostgresNIO processes unencrypted bytes from man-in-the-middle

Any user of PostgresNIO connecting to servers with TLS enabled is vulnerable to a man-in-the-middle attacker injecting false responses to the client's first few queries, despite the use of TLS certificate verification and encryption. The remaining text in this section is quoted verbatim from...

REcollapse Is A Helper Tool For Black-Box Regex Fuzzing To Bypass Validations And Discover Normalizations In Web Applications

REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications. It can also be helpful to bypass WAFs and weak vulnerability mitigations. For more information, take a look at the REcollapse blog post. The goal of this tool is to...