Lucene search
K

25 matches found

UbuntuCve
UbuntuCve
added 2024/10/09 5:15 a.m.15 views

CVE-2024-32608

HDF5 library through 1.14.3 has memory corruption in H5Aclose resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

9.8CVSS6.9AI score0.00673EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/06/07 8:15 p.m.24 views

CVE-2023-33865

RenderDoc before 1.27 allows local privilege escalation via a symlink attack. It relies on the /tmp/RenderDoc directory regardless of ownership...

7.8CVSS7.3AI score0.00891EPSS
Exploits3References9
UbuntuCve
UbuntuCve
added 2022/06/02 2:15 p.m.47 views

CVE-2022-31783

Liblouis 3.21.0 has an out-of-bounds write in compileRule in compileTranslationTable.c, as demonstrated by loutrace...

5.5CVSS6.8AI score0.0107EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2021/07/20 7:15 a.m.24 views

CVE-2020-36428

matio aka MAT File I/O Library 1.5.18 through 1.5.21 has a heap-based buffer overflow in ReadInt32DataDouble called from ReadInt32Data and MatVarRead4...

8.8CVSS6.8AI score0.01385EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2021/06/10 11:15 p.m.25 views

CVE-2020-23322

There is an Assertion in 'contextp-token.type == LEXERRIGHTBRACE || contextp-token.type == LEXERASSIGN || contextp-token.type == LEXERCOMMA' in parserparseobjectinitializer in JerryScript 2.2.0...

7.5CVSS7.1AI score0.01083EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2021/04/11 4:15 p.m.25 views

CVE-2021-30485

An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxmlinternaldtd, while parsing a crafted XML file, performs incorrect memory handling, leading to a NULL pointer dereference while running strcmp on a NULL pointer...

6.5CVSS6.6AI score0.01212EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2020/03/18 10:15 p.m.23 views

CVE-2020-10674

PerlSpeak through 2.01 allows attackers to execute arbitrary OS commands, as demonstrated by use of system and 2-argument open...

9.8CVSS7.5AI score0.01281EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2020/03/06 8:15 p.m.49 views

CVE-2019-20503

usrsctp before 2019-12-20 has out-of-bounds reads in sctploadaddressesfrominit...

6.5CVSS6.9AI score0.03155EPSS
Exploits1References7
UbuntuCve
UbuntuCve
added 2019/09/08 3:15 a.m.21 views

CVE-2019-16092

Symonics libmysofa 0.7 has a NULL pointer dereference in getHrtf in hrtf/reader.c...

9.8CVSS6.8AI score0.0153EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2019/09/08 3:15 a.m.21 views

CVE-2019-16095

Symonics libmysofa 0.7 has an invalid read in getDimension in hrtf/reader.c...

7.5CVSS6.8AI score0.01347EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2018/08/05 6:29 p.m.16 views

CVE-2018-14952

The mail message display page in SquirrelMail through 1.4.22 has XSS via a "maction xlink:href=" attack...

6.1CVSS6.7AI score0.01426EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2018/03/12 4:29 a.m.23 views

CVE-2017-18226

The Gentoo net-im/jabberd2 package through 2.6.1 sets the ownership of /var/run/jabber to the jabber account, which might allow local users to kill arbitrary processes by leveraging access to this account for PID file modification before a root script executes a "kill -TERM cat...

5.5CVSS6.5AI score0.00253EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/04/09 12:0 a.m.19 views

CVE-2017-7613

elflint.c in elfutils 0.168 does not validate the number of sections and the number of segments, which allows remote attackers to cause a denial of service memory consumption via a crafted ELF file...

5.5CVSS6.4AI score0.01698EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2017/02/15 12:0 a.m.23 views

CVE-2016-8693

Double free vulnerability in the memclose function in jasstream.c in JasPer before 1.900.10 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted BMP image to the imginfo command...

7.8CVSS7.5AI score0.03419EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2017/01/06 12:0 a.m.30 views

CVE-2016-2337

Type confusion exists in canceleval Ruby's TclTkIp class method. Attacker passing different type of object than String as "retval" argument can cause arbitrary code execution...

9.8CVSS7.2AI score0.06204EPSS
Exploits2References3
UbuntuCve
UbuntuCve
added 2016/12/23 5:59 a.m.20 views

CVE-2016-7450

The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...

7.8CVSS7.1AI score0.01159EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/08/25 12:0 a.m.22 views

CVE-2016-6823

Integer overflow in the BMP coder in ImageMagick before 7.0.2-10 allows remote attackers to cause a denial of service crash via crafted height and width values, which triggers an out-of-bounds write...

7.5CVSS6.9AI score0.04845EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/01/22 12:0 a.m.23 views

CVE-2016-2037

The cpiosafernamesuffix function in util.c in cpio 2.11 allows remote attackers to cause a denial of service out-of-bounds write via a crafted cpio file...

6.5CVSS6.8AI score0.05484EPSS
Exploits0References3
Debian
Debian
added 2015/11/29 10:45 p.m.58 views

[SECURITY] [DLA 355-1] libxml2 security update

Package : libxml2 Version : 2.7.8.dfsg-2+squeeze15 CVE ID : CVE-2015-8241 CVE-2015-8317 Debian Bug : 806384 CVE-2015-8241 Buffer overread with XML parser in xmlNextChar CVE-2015-8317 - issues in the xmlParseXMLDecl function: If we fail conversing the current input stream while processing the...

6.8CVSS8AI score0.05907EPSS
Exploits2
UbuntuCve
UbuntuCve
added 2015/06/11 2:59 p.m.26 views

CVE-2015-4469

The chmdreadheaders function in chmd.c in libmspack before 0.5 does not validate name lengths, which allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted CHM file...

4.3CVSS7.2AI score0.01456EPSS
Exploits1References6
Rows per page
Query Builder