PT-2024-14521 · Unknown · Paddlepaddle

Name of the Vulnerable Software and Affected Versions: PaddlePaddle versions prior to 2.6.0 Description: The issue is a command injection in the convert shape compare function, allowing the execution of arbitrary commands on the operating system. Recommendations: For versions prior to 2.6.0, upda...

PT-2023-35648 · Git +1 · Libavc

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap buffer overflow issue is reported, with a crash type indicating a WRITE operation. The crash state involves functions such as ih264d format conver...

PT-2023-35611 · Git +1 · Libavc

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap buffer overflow issue was identified, potentially causing a crash. The crash occurs in the ih264d format convert and ih264d decode picture thread...

PT-2023-35609 · Git +1 · Libavc

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow WRITE crash has been reported. The crash involves the following functions: ih264d format convert, isvcd video decode, and isvcd ap...

kernel: selinux: enable use of both GFP_KERNEL and GFP_ATOMIC in convert_context()

In the Linux kernel, the following vulnerability has been resolved: selinux: enable use of both GFPKERNEL and GFPATOMIC in convertcontext The following warning was triggered on a hardware environment: SELinux: Converting 162 SID table entries... BUG: sleeping function called from invalid context ...

kernel: ipv4: prevent potential spectre v1 gadget in ip_metrics_convert()

A vulnerability was found in the Linux kernel's ipmetricsconvert function, where improper handling of user input can potentially leak kernel memory via side channels. This issue is caused by the use of @type, a user-controlled input, which is an array within this function. If a CPU speculatively...

kernel: ipv4: prevent potential spectre v1 gadget in ip_metrics_convert()

A vulnerability was found in the Linux kernel's ipmetricsconvert function, where improper handling of user input can potentially leak kernel memory via side channels. This issue is caused by the use of @type, a user-controlled input, which is an array within this function. If a CPU speculatively...

kernel: selinux: enable use of both GFP_KERNEL and GFP_ATOMIC in convert_context()

In the Linux kernel, the following vulnerability has been resolved: selinux: enable use of both GFPKERNEL and GFPATOMIC in convertcontext The following warning was triggered on a hardware environment: SELinux: Converting 162 SID table entries... BUG: sleeping function called from invalid context ...

Double Free

Overview Affected versions of this package are vulnerable to Double Free in the stbiloadgifmain function, an attacker can cause a memory leak or a double-free error by manipulating the delays output value. This is only exploitable if stbiloadgifmain returns a null value and stbiconvertformat is...

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM : GEGL vulnerability (USN-5251-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5251-1 advisory. It was discovered that GEGL incorrectly filtered and escaped file path input data when using the C system function for execution of the...

mextractor (>=1.0.0 <=1.2.1), sticker-convert (>=2.0.4 <=2.1.5) +1 more potentially affected by unknown CVE via webp (>=0.1.8 <=0.2.0)

webp PYPI version =0.1.8, =1.0.0, =2.0.4, =0.1.0, =0.1.2 Source cves: unknown CVE Source advisory: OSV:GHSA-F9PM-4G9P-6VM3...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the stbiconvertformat function. An attacker can cause a denial of service by using a crafted pic file. Remediation There is no fixed version for stb. References - PoC Credit: peccc...

stb code issue vulnerability

stb is a single-file public domain library for C/C ++. A code issue vulnerability exists in stb version 2.28, which stems from a null pointer dereference issue in the function stbiconvertformat. An attacker could exploit this vulnerability to cause a Denial of Service DoS via a specially crafted...

Heap overflow

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer write overflow in Utf816Read::convert. This issue may lead to arbitrary code execution. As of time of publication, no known patches are available in existing versions of Notepad++...

CVE-2023-40031 Notepad++ vulnerable to heap buffer write overflow in Utf8_16_Read::convert

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer write overflow in Utf816Read::convert. This issue may lead to arbitrary code execution. As of time of publication, no known patches are available in existing versions of Notepad++...

CVE-2023-40031

Notepad++ versions

Notepad++ 安全漏洞

Notepad++ is an open source plain text editor by Don Ho, an individual developer in Taiwan, China. A security vulnerability exists in Notepad++, which stems from a heap buffer write overflow vulnerability in the Utf816Read::convert function...

The vulnerability of the “convert” command in the console-based graphic editor ImageMagick, which allows a hacker to trigger a service failure.

The vulnerability of the ImageMagick console-based graphic editor’s “convert” command is related to the improper release of memory before deleting the last link. Exploiting this vulnerability can allow an attacker to cause a service failure using a specially created file...

Out-of-bounds

In convertSubgraphFromHAL of ShimConverter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

ScienceLogic SL1 Command Execution Vulnerability

ScienceLogic SL1 is an application from ScienceLogic, Inc. Connect your real estate together to automate multidirectional data flow and workflow. A command execution vulnerability exists in ScienceLogic SL1 11.1.2 and earlier versions, which stems from the Download and Convert Reports feature...