CVE-2022-41846

An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the function AP4DataBuffer::ReallocateBuffer in Core/Ap4DataBuffer.cpp...

CVE-2022-31282

Bento4 MP4Dump v1.2 was discovered to contain a segmentation violation via an unknown address at /Source/C++/Core/Ap4DataBuffer.cpp:175...

Generation of Error Message Containing Sensitive Information in Elasticsearch

A memory disclosure vulnerability was identified in Elasticsearch 7.10.0 to 7.13.3 error reporting. A user with the ability to submit arbitrary queries to Elasticsearch could submit a malformed query that would result in an error message returned containing previously used portions of a data...

GHSA-Q394-H7F5-7F44 Generation of Error Message Containing Sensitive Information in Elasticsearch

A memory disclosure vulnerability was identified in Elasticsearch 7.10.0 to 7.13.3 error reporting. A user with the ability to submit arbitrary queries to Elasticsearch could submit a malformed query that would result in an error message returned containing previously used portions of a data...

DEBIAN-CVE-2020-18899

An uncontrolled memory allocation in DataBufdatasubBox.length-sizeofbox function of Exiv2 0.27 allows attackers to cause a denial of service DOS via a crafted input...

UBUNTU-CVE-2020-18899

An uncontrolled memory allocation in DataBufdatasubBox.length-sizeofbox function of Exiv2 0.27 allows attackers to cause a denial of service DOS via a crafted input...

PYSEC-2021-879

An uncontrolled memory allocation in DataBufdatasubBox.length-sizeofbox function of Exiv2 0.27 allows attackers to cause a denial of service DOS via a crafted input...

The vulnerability of the Tab Group component in Google Chrome and Microsoft Edge allows a hacker to execute arbitrary code.

The vulnerability of Tab Group components in Google Chrome and Microsoft Edge stems from the operation of processing unreliable HTML content within the data buffer, which allows operations to be performed beyond the allowed limits. Exploiting this vulnerability can enable a remote attacker to...

CVE-2021-22145

A memory disclosure vulnerability was identified in Elasticsearch 7.10.0 to 7.13.3 error reporting. A user with the ability to submit arbitrary queries to Elasticsearch could submit a malformed query that would result in an error message returned containing previously used portions of a data...

CVE-2021-22145

A memory disclosure vulnerability was identified in Elasticsearch 7.10.0 to 7.13.3 error reporting. A user with the ability to submit arbitrary queries to Elasticsearch could submit a malformed query that would result in an error message returned containing previously used portions of a data...

Design/Logic Flaw

A memory disclosure vulnerability was identified in Elasticsearch 7.10.0 to 7.13.3 error reporting. A user with the ability to submit arbitrary queries to Elasticsearch could submit a malformed query that would result in an error message returned containing previously used portions of a data...

CVE-2021-22145

A memory disclosure vulnerability was identified in Elasticsearch 7.10.0 to 7.13.3 error reporting. A user with the ability to submit arbitrary queries to Elasticsearch could submit a malformed query that would result in an error message returned containing previously used portions of a data...

CVE-2021-22145

CVE-2021-22145 affects Elasticsearch 7.10.0–7.13.3 in its error reporting, allowing memory disclosure where an attacker submitting malformed queries could cause error messages to include previously used data buffer contents (e.g., documents or authentication details). The issue is documented acro...

The vulnerability of the Blink display module in Google Chrome browsers allows a hacker to gain access to confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of Google Chrome’s Blink rendering module is related to the execution of operations within the data buffer’s allowable limits. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the `finish_stab` function in the `stabs.c` file of the Binutils development tools, related to the operation of pushing values out of the data buffer’s acceptable range, allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability in the finishstab function of the stabs.c file in the Binutils development tools set relates to the execution of operations within acceptable buffer data limits. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, an...

The vulnerability of the Mozilla Firefox browser, related to the execution of operations beyond the allowed data buffer limits, allows attackers to execute arbitrary code.

The vulnerability of the Mozilla Firefox browser is related to the execution of operations beyond the allowed data buffer limits. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Mozilla Firefox browser, related to the execution of operations beyond the allowed data buffer limits, allows attackers to execute arbitrary code.

The vulnerability of the Mozilla Firefox browser is related to the execution of operations beyond the allowed data buffer limits. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Mozilla Firefox browser, related to the execution of operations beyond the allowed data buffer limits, allows attackers to execute arbitrary code.

The vulnerability of the Mozilla Firefox browser is related to the execution of operations beyond the allowed data buffer limits. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of Firefox browser relates to the issue of allowing operations to exceed the permissible data buffer limits. This allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Firefox browser is related to the execution of operations that exceed the allowable data buffer limits. Exploiting this vulnerability can allow a remote attacker to access confidential data, compromise its integrity, and cause service interruptions...

CVE-2020-11168

u'Null-pointer dereference can occur while accessing data buffer beyond its size that leads to access the buffer beyond its range' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in...