libpmemobj-cpp bug fix and enhancement update

An update is available for libpmemobj-cpp. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Lin...

ALPINE-CVE-2019-17544

libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character...

PT-2019-5691 · Exiv2 +8 · Exiv2 +8

Name of the Vulnerable Software and Affected Versions: Exiv2 version 0.27.2 Description: The issue is related to a lack of validation in the Exiv2 library, specifically in the crwimage int.cpp module, which can lead to a crash when the getULong function is called from CiffDirectory::readDirectory...

DEBIAN-CVE-2019-14296

canUnpack in pvmlinx.cpp in UPX 3.95 allows remote attackers to cause a denial of service SEGV or buffer overflow, and application crash or possibly have unspecified other impact via a crafted UPX packed file...

AZL-34973 CVE-2019-14274 affecting package mcpp for versions less than 2.7.2-28

MCPP 2.7.2 has a heap-based buffer overflow in the domsg function in support.c...

CVE-2019-2118

In various functions of Parcel.cpp, there are uninitialized or partially initialized stack variables. These could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-8.0 Android-8...

CVE-2019-13147

In Audio File Library aka audiofile 0.3.6, there exists one NULL pointer dereference bug in ulaw2linearbuf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file...

CVE-2019-13147

In Audio File Library aka audiofile 0.3.6, there exists one NULL pointer dereference bug in ulaw2linearbuf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file...

CVE-2019-13147

In Audio File Library aka audiofile 0.3.6, there exists one NULL pointer dereference bug in ulaw2linearbuf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file...

CVE-2019-13147

In Audio File Library aka audiofile 0.3.6, there exists one NULL pointer dereference bug in ulaw2linearbuf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file...

Null pointer dereference

In Audio File Library aka audiofile 0.3.6, there exists one NULL pointer dereference bug in ulaw2linearbuf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file...

CVE-2019-13147

In Audio File Library aka audiofile 0.3.6, there exists one NULL pointer dereference bug in ulaw2linearbuf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file...

PT-2019-2965 · Unknown +4 · Audio File Library +4

Name of the Vulnerable Software and Affected Versions: Audio File Library versions 0.3.6 Description: The issue is related to a NULL pointer dereference bug in the ulaw2linear buf function in G711.cpp within the libmodules.a library. This bug allows an attacker to cause a denial of service via a...

CVE-2019-13147

CVE-2019-13147 affects Audio File Library (audiofile) 0.3.6, via a NULL pointer dereference in ulaw2linear_buf (G711.cpp in libmodules.a) that could cause a denial of service with a crafted file. Connected advisories confirm fixes across distros: Debian 0.3.6-5+deb11u1; openSUSE/SUSE updates (e.g...

CVE-2019-13147

In Audio File Library aka audiofile 0.3.6, there exists one NULL pointer dereference bug in ulaw2linearbuf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file...

yaml-cpp denial of service vulnerability

yaml-cpp is a YAML parser written in C++. A denial of service vulnerability exists in the SingleDocParser::HandleFlowSequence function in yaml-cpp 0.6.2. A remote attacker can cause a denial of service stack consumption and application crash via a specially crafted YAML file...

Unified Automation OPC UA Server CPP Detection (Windows SMB Login)

Detects the installed version of Unified Automation OPC UA Server CPP for Windows. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

Denial Of Service (DoS0

qpid-cpp-mrg is vulnerable to denial of service DoS attacks. The vulnerability exists as the qpidd broker in Apache Qpid 0.30 and earlier allows remote authenticated users to cause a denial of service daemon crash via an AMQP message with 1 an invalid range in a sequence set, 2 content-bearing...

Authorization Bypass

qpid-cpp is vulnerable to authorization bypass attacks. The vulnerability exists as qpid-cpp does not properly verify credentials during the joining of a cluster. This allows remote attackers to obtain access to the messaging functionality and job functionality of a cluster by using a valid...

Buffer Overflow

Amendment This was deemed not a vulnerability. Overview Affected versions of this package are vulnerable to Buffer Overflow. An issue was discovered in singledocparser.cpp in yaml-cpp aka LibYaml-C++ 0.6.2. Stack Exhaustion occurs in YAML::SingleDocParser, and there is a stack consumption problem...