EulerOS Virtualization 2.9.1 : libarchive (EulerOS-SA-2023-1639)

According to the versions of the libarchive package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In libarchive before 3.6.2, the software does not check for an error after calling calloc function that can return with a NULL...

EulerOS Virtualization 2.9.0 : libarchive (EulerOS-SA-2023-1673)

According to the versions of the libarchive package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In libarchive before 3.6.2, the software does not check for an error after calling calloc function that can return with a NULL...

EulerOS 2.0 SP11 : libarchive (EulerOS-SA-2023-1411)

According to the versions of the libarchive package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In libarchive before 3.6.2, the software does not check for an error after calling calloc function that can return with a NULL pointer if the...

EulerOS 2.0 SP10 : libarchive (EulerOS-SA-2023-1389)

According to the versions of the libarchive package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In libarchive before 3.6.2, the software does not check for an error after calling calloc function that can return with a NULL pointer if the...

EulerOS 2.0 SP10 : libarchive (EulerOS-SA-2023-1361)

According to the versions of the libarchive package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In libarchive before 3.6.2, the software does not check for an error after calling calloc function that can return with a NULL pointer if the...

EulerOS 2.0 SP8 : libarchive (EulerOS-SA-2023-1322)

According to the versions of the libarchive packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In libarchive before 3.6.2, the software does not check for an error after calling calloc function that can return with a NULL pointer if th...

Updated libarchive packages fix security vulnerability

In libarchive 3.6.1, the software does not check for an error after calling calloc function that can return with a NULL pointer if the function fails, which leads to a resultant NULL pointer dereference. CVE-2022-36227...

Libarchive Code Execution Vulnerability

libarchive is a multi-format archive and compression library. libarchive A code execution vulnerability exists in libarchive version 3.6.1, which stems from a failure to check for errors after calling the calloc function, i.e., if the function fails, the calloc function returns a NULL pointer,...

CVE-2022-36227

In libarchive before 3.6.2, the software does not check for an error after calling calloc function that can return with a NULL pointer if the function fails, which leads to a resultant NULL pointer dereference. NOTE: the discoverer cites this CWE-476 remark but third parties dispute the...

Null pointer dereference

In libarchive before 3.6.2, the software does not check for an error after calling calloc function that can return with a NULL pointer if the function fails, which leads to a resultant NULL pointer dereference. NOTE: the discoverer cites this CWE-476 remark but third parties dispute the...

CVE-2022-36227

In libarchive before 3.6.2, the software does not check for an error after calling calloc function that can return with a NULL pointer if the function fails, which leads to a resultant NULL pointer dereference. NOTE: the discoverer cites this CWE-476 remark but third parties dispute the...

CVE-2021-27427

RIOT OS version 2020.01.1 is vulnerable to integer wrap-around in its implementation of calloc function, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

Heap overflow

eCosCentric eCosPro RTOS Versions 2.0.1 through 4.5.3 are vulnerable to integer wraparound in function calloc an implementation of malloc. The unverified memory assignment can lead to arbitrary memory allocation, resulting in a heap-based buffer overflow...

Integer overflow

RIOT OS version 2020.01.1 is vulnerable to integer wrap-around in its implementation of calloc function, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

CVE-2021-27427

The CVE-2021-27427 entry concerns RIOT OS 2020.01.1, where an integer wrap-around in calloc can cause arbitrary memory allocation, leading to a crash or remote code execution. Connected sources corroborate the RIOT OS impact and specify the vulnerability as an integer wrap-around in calloc. The R...

CVE-2021-22684

Tizen RT RTOS version 3.0.GBB is vulnerable to integer wrap-around in functionscalloc and mmzalloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash...

PT-2021-3887 · Blackberry · Blackberry Qnx Os For Medical +2

Name of the Vulnerable Software and Affected Versions: BlackBerry QNX Software Development Platform SDP versions 6.5.0SP1 and earlier BlackBerry QNX OS for Medical versions 1.1 and earlier BlackBerry QNX OS for Safety versions 1.0.1 and earlier Description: The issue is related to an integer...

CVE-2021-31870

An issue was discovered in klibc before 2.0.9. Multiplication in the calloc function may result in an integer overflow and a subsequent heap buffer overflow...

CVE-2021-31870

An issue was discovered in klibc before 2.0.9. Multiplication in the calloc function may result in an integer overflow and a subsequent heap buffer overflow...