1025 matches found
CVE-2017-11692
The function "Token& Scanner::peek" in scanner.cpp in yaml-cpp 0.5.3 and earlier allows remote attackers to cause a denial of service assertion failure and application exit via a '!2' string...
DEBIAN-CVE-2017-11692
The function "Token& Scanner::peek" in scanner.cpp in yaml-cpp 0.5.3 and earlier allows remote attackers to cause a denial of service assertion failure and application exit via a '!2' string...
Code injection
The function "Token& Scanner::peek" in scanner.cpp in yaml-cpp 0.5.3 and earlier allows remote attackers to cause a denial of service assertion failure and application exit via a '!2' string...
UBUNTU-CVE-2017-11692
The function "Token& Scanner::peek" in scanner.cpp in yaml-cpp 0.5.3 and earlier allows remote attackers to cause a denial of service assertion failure and application exit via a '!2' string...
CVE-2017-11692
yaml-cpp vulnerability (CVE-2017-11692) affects version 0.5.3 and earlier. The issue is in Token& Scanner::peek in scanner.cpp, where processing a crafted string like '!2' can trigger a remote denial of service via an assertion failure and application exit. Multiple connected advisories corrobora...
CVE-2017-11692
The function "Token& Scanner::peek" in scanner.cpp in yaml-cpp 0.5.3 and earlier allows remote attackers to cause a denial of service assertion failure and application exit via a '!2' string...
CVE-2017-11342
There is an illegal address access in ast.cpp of LibSass 3.4.5. A crafted input will lead to a remote denial of service attack...
openSUSE Security Update : mysql-connector-cpp / mysql-workbench (openSUSE-2017-671)
This update for mysql-connector-cpp and mysql-workbench fixes the following issues : Mysql-connector-cpp was updated to version 1.1.8 : - See the news files on https://dev.mysql.com/doc/relnotes/connector-cpp/en/ Mysql-workbench was updated to version 6.3.9 : -...
LIM OpenEXR Denial of Service Vulnerability
LIM OpenEXR is an image file format developed by Industrial Light and Magic LIM in the United States for high dynamic range HDR images. A denial of service vulnerability exists in the 'hufDecode' function of the ImfHuf.cpp file in LIM OpenEXR version 2.2.0. An attacker can exploit this...
Remote code execution
A remote code execution vulnerability in id3/ID3.cpp in libstagefright in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within th...
CVE-2017-5950
The SingleDocParser::HandleNode function in yaml-cpp aka LibYaml-C++ 0.5.3 allows remote attackers to cause a denial of service stack consumption and application crash via a crafted YAML file...
Denial Of Service (DoS)
yaml-cpp aka LibYaml is vulnerable to denial of service DoS attacks. The attacks are possible because the SingleDocParser::HandleNode function does not handle YAML files properly, allowing the attackers to trigger stack consumption and application crash using malicious YAML files...
CVE-2017-5950
The SingleDocParser::HandleNode function in yaml-cpp aka LibYaml-C++ 0.5.3 allows remote attackers to cause a denial of service stack consumption and application crash via a crafted YAML file...
CVE-2017-5950
The SingleDocParser::HandleNode function in yaml-cpp aka LibYaml-C++ 0.5.3 allows remote attackers to cause a denial of service stack consumption and application crash via a crafted YAML file...
UBUNTU-CVE-2017-5950
The SingleDocParser::HandleNode function in yaml-cpp aka LibYaml-C++ 0.5.3 allows remote attackers to cause a denial of service stack consumption and application crash via a crafted YAML file...
CVE-2017-5950
The SingleDocParser::HandleNode function in yaml-cpp aka LibYaml-C++ 0.5.3 allows remote attackers to cause a denial of service stack consumption and application crash via a crafted YAML file...
CVE-2017-5950
yaml-cpp (LibYaml-C++) vulnerability CVE-2017-5950 stems from SingleDocParser::HandleNode and affects 0.5.x series (e.g., 0.5.3). A crafted YAML file can cause stack consumption and application crash (DoS). Remediation per connected advisories: rebuild/upgrade to yaml-cpp 0.6.0 or newer (Fedora 2...
CVE-2017-5950
The SingleDocParser::HandleNode function in yaml-cpp aka LibYaml-C++ 0.5.3 allows remote attackers to cause a denial of service stack consumption and application crash via a crafted YAML file...
Audio File Library heap buffer overflow vulnerability (CNVD-2017-03515)
Audio File Library aka audiofile is a processing library for reading and writing audio files. A heap buffer overflow vulnerability in the ulaw2linearbuf function in G711.cpp in version 0.3.6 of Audio File Library aka audiofile allows remote attackers to cause a denial of service crash via a...
AZL-36926 CVE-2017-6834 affecting package audiofile 0.3.6-27
Heap-based buffer overflow in the ulaw2linearbuf function in G711.cpp in Audio File Library aka audiofile 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a denial of service crash via a crafted file...