CVE-2023-1195

CVE-2023-1195 is a Linux kernel use-after-free in reconn_set_ipaddr_from_hostname (fs/cifs/connect.c) where server->hostname is not cleared, enabling a denial-of-service condition via invalid pointer use. Connected advisories (e.g., RHSA entries, MiracleLinux AXSA banners) reference this CVE a...

CVE-2023-1195

A use-after-free flaw was found in reconnsetipaddrfromhostname in fs/cifs/connect.c in the Linux kernel. The issue occurs when it forgets to set the free pointer server-hostname to NULL, leading to an invalid pointer request...

K46552732: Wget vulnerability CVE-2017-13089

Security Advisory Description The http.c:skipshortbody function is called in some circumstances, such as when processing redirects. When the response is sent chunked in wget before 1.19.2, the chunk parser uses strtol to read each chunk's length, but doesn't check that the chunk length is a...

Denial Of Service (DoS)

admesh is vulnerable to denial of service. An attacker can crash the application through the heap-based buffer over-read in stlupdateconnectsremove1 in connect.c...

Out-of-bounds read in admesh

ADMesh through 0.98.4 has a heap-based buffer over-read in stlupdateconnectsremove1 called from stlremovedegenerate in connect.c in libadmesh.a...

CVE-2018-25033

ADMesh through 0.98.4 has a heap-based buffer over-read in stlupdateconnectsremove1 called from stlremovedegenerate in connect.c in libadmesh.a...

DEBIAN-CVE-2018-25033

ADMesh through 0.98.4 has a heap-based buffer over-read in stlupdateconnectsremove1 called from stlremovedegenerate in connect.c in libadmesh.a...

CVE-2018-25033

ADMesh through 0.98.4 has a heap-based buffer over-read in stlupdateconnectsremove1 called from stlremovedegenerate in connect.c in libadmesh.a...

Heap overflow

ADMesh through 0.98.4 has a heap-based buffer over-read in stlupdateconnectsremove1 called from stlremovedegenerate in connect.c in libadmesh.a...

CVE-2018-25033

ADMesh through 0.98.4 has a heap-based buffer over-read in stlupdateconnectsremove1 called from stlremovedegenerate in connect.c in libadmesh.a...

ADMesh 缓冲区错误漏洞

ADMesh is a program for working with triangular solid meshes. A security vulnerability exists in ADMesh version 0.98.4 and earlier, which stems from a heap-based out-of-bounds read in stlupdateconnectsremove1 called from stlremovedegenerate in connect.c in libadmesh.a. The vulnerability is caused...

PT-2022-8045 · Admesh +2 · Admesh +2

Name of the Vulnerable Software and Affected Versions: ADMesh versions 0.98.4 and earlier Description: The issue is a heap-based buffer over-read in the stl update connects remove 1 function, which is called from stl remove degenerate, located in connect.c in libadmesh.a. This function is part of...

EulerOS 2.0 SP5 : git (EulerOS-SA-2021-2929)

According to the versions of the git packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - gitconnectgit in connect.c in Git before 2.30.1 allows a repository path to contain a newline character, which may result in unexpected...

git_connect_git in connect.c in Git before 2.30.1 allows a repository path to contain a newline character which may result in unexpected cross-protocol requests as demonstrated by the git://localhost:1234/%0d%0a%0d%0aGET%20/%20HTTP/1.1 substring.

...

CVE-2017-13089

The http.c:skipshortbody function is called in some circumstances, such as when processing redirects. When the response is sent chunked in wget before 1.19.2, the chunk parser uses strtol to read each chunk's length, but doesn't check that the chunk length is a non-negative number. The code then...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2011-2037)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-2037 advisory. - netdrv be2net: Merge fixes for CVE-2011-3347 Joe Jin Tenable has extracted the preceding description block directly from the Oracle Linux securit...

CVE-2011-1585

Technical details for CVE-2011-1585 are not publicly provided in the supplied connected documents. Monitor for updates from vendor advisories or security bulletins to obtain affected products, impact, and fixes.

Linux Kernel CIFSTCon()函数远程溢出漏洞

BUGTRAQ ID: 34453 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的fs/cifs/connect.c文件中的CIFSTCon函数存在缓冲区溢出漏洞。如果用户受骗连接到了恶意的服务器且服务器向客户端返回了特制的Tree Connect响应的话，就可以出发这个溢出，导致执行任意代码。以下是有漏洞的代码段： 3441 int 3442 CIFSTConunsigned int xid, struct cifsSesInfo ses, 3443 const char tree, struct cifsTconInfo tcon,...