CVE-2012-2676

CVE-2012-2676 affects the Hoard memory allocator (pre-3.9) and concerns two integer overflow paths in the malloc and calloc implementations. When a large size value is requested, the overflow can cause the allocator to allocate less memory than expected, enabling context‑dependent attackers to pe...

CVE-2012-2675

The vulnerability CVE-2012-2675 affects nedmalloc (nedmalloc.c) up to version 1.10 beta2, where two integer overflow paths in CallMalloc (malloc) and nedpcalloc (calloc) can cause allocation sizing to be smaller than requested. This can enable context-dependent attackers to perform memory-related...

CVE-2012-2676

Multiple integer overflows in the 1 malloc and 2 calloc functions in Hoard before 3.9 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows on implementing code via a large size value, which causes less memory to be allocated than expected...

USN-1231-1: PHP Vulnerabilities

Mateusz Kocielski, Marek Kroemeke and Filip Palian discovered that a stack-based buffer overflow existed in the socketconnect function's handling of long pathnames for AFUNIX sockets. A remote attacker might be able to exploit this to execute arbitrary code; however, the default compiler options...

CVE-2011-3182

PHP before 5.3.7 does not properly check the return values of the malloc, calloc, and realloc library functions, which allows context-dependent attackers to cause a denial of service NULL pointer dereference and application crash or trigger a buffer overflow by leveraging the ability to provide a...

FreeBSD Kernel mountnfs() Exploit

No description provided by source. / mountnfsex.c -- Patroklos Argyroudis, argp at domain census-labs.com Local kernel exploit for FreeBSD 8.0, 7.3 and 7.2. Discovered and exploited by Patroklos argp Argyroudis. The vulnerability is in mountnfs which is reachable by the mount2 and nmount2 system...

DEBIAN-CVE-2010-0542

The WriteProlog function in texttops.c in texttops in the Text Filter subsystem in CUPS before 1.4.4 does not check the return values of certain calloc calls, which allows remote attackers to cause a denial of service NULL pointer dereference or heap memory corruption or possibly execute arbitrar...

Null pointer dereference

The WriteProlog function in texttops.c in texttops in the Text Filter subsystem in CUPS before 1.4.4 does not check the return values of certain calloc calls, which allows remote attackers to cause a denial of service NULL pointer dereference or heap memory corruption or possibly execute arbitrar...

CUPS: texttops unchecked memory allocation failure leading to NULL pointer dereference

The WriteProlog function in texttops.c in texttops in the Text Filter subsystem in CUPS before 1.4.4 does not check the return values of certain calloc calls, which allows remote attackers to cause a denial of service NULL pointer dereference or heap memory corruption or possibly execute arbitrar...

xine-lib STTS QuickTime原子整数溢出漏洞

BUGTRAQ ID: 34384 xine是一款免费的媒体播放器，支持多种格式。 Xine-lib在解析Quicktime电影文件的畸形STTS原子时存在整数溢出漏洞，本地或远程攻击者可以利用这个漏洞以使用xine库应用程序的权限执行任意代码。以下是/src/demuxers/demuxqt.c中的有漏洞代码段： ... 840 static qterror parsetrakatom qttrak trak, 841 unsigned char trakatom ... 1535 else if currentatom == STTSATOM 1536 1537 / there...

Debian Security Advisory DSA 146-1 (dietlibc)

The remote host is missing an update to dietlibc announced via advisory DSA 146-1. OpenVAS Vulnerability Test $Id: deb1461.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 146-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

HP-UX PHCO_28425 : HP-UX calloc(3C), Local Denial of Service (DoS) (HPSBUX00310 SSRT2341 rev.2)

s700800 11.00 libc cumulative patch : calloc miscalculates the memory requirements. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHCO28425. The text itself is copyright C Hewlett-Packard Development Company,...