CVE-2022-28048

STB v2.27 was discovered to contain an integer shift of invalid size in the component stbijpegdecodeblockprogac...

CVE-2022-28041

stbimage.h v2.27 was discovered to contain an integer overflow via the function stbijpegdecodeblockprogdc. This vulnerability allows attackers to cause a Denial of Service DoS via unspecified vectors...

UBUNTU-CVE-2022-28048

STB v2.27 was discovered to contain an integer shift of invalid size in the component stbijpegdecodeblockprogac...

UBUNTU-CVE-2022-28041

stbimage.h v2.27 was discovered to contain an integer overflow via the function stbijpegdecodeblockprogdc. This vulnerability allows attackers to cause a Denial of Service DoS via unspecified vectors...

UBUNTU-CVE-2022-28042

stbimage.h v2.27 was discovered to contain an heap-based use-after-free via the function stbijpeghuffdecode...

stb 资源管理错误漏洞

stb is a single-file public domain library for C/C ++. A security vulnerability exists in nothings stb version 2.27, which stems from a heap-based post-release reuse issue in the function stbijpeghuffdecode in the file stbimage.h. The vulnerability is caused by a heap-based post-release reuse iss...

stb 安全漏洞

stb is a single-file public domain library for C/C ++. A security vulnerability exists in stb version v2.27, which stems from the inclusion of an integer shift of invalid size in the component stbijpegdecodeblockprogac...

CVE-2022-26507

A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT&T Labs Xmill 0.7. A crafted input file can lead to remote code execution. This is not the same as any of: CVE-2021-21810, CVE-2021-21811, CVE-2021-21812, CVE-2021-21815, CVE-2021-21825, CVE-2021-21826, CVE-2021-21828,...

CVE-2022-26507

A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT&T Labs Xmill 0.7. A crafted input file can lead to remote code execution. This is not the same as any of: CVE-2021-21810, CVE-2021-21811, CVE-2021-21812, CVE-2021-21815, CVE-2021-21825, CVE-2021-21826, CVE-2021-21828,...

CVE-2022-27419

rtl433 21.12 was discovered to contain a stack overflow in the function acurite00275rmdecode at /devices/acurite.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted file...

UBUNTU-CVE-2022-27419

rtl433 21.12 was discovered to contain a stack overflow in the function acurite00275rmdecode at /devices/acurite.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted file...

PT-2022-17563 · Unknown · Go-Codec-Dagpb

Name of the Vulnerable Software and Affected Versions: go-codec-dagpb versions prior to 1.3.1 Description: The dag-pb codec can panic when decoding invalid blocks, due to an assumption that the reported link length is accurate. If the block ends before the reported length, it results in a buffer...

CSZCMS 1.3.0 SSRF / LFI / Remote Code Execution

Title: CSZCMS V1.3.0 - SSRF To LFI To Rce Author: Hejap Zairy Date: 07.04.2022 Vendor: https://sourceforge.net/projects/cszcms/files/install/ Software: https://liquidtelecom.dl.sourceforge.net/project/cszcms/install/CSZCMS-V1.3.0.zip Reference: https://github.com/Matrix07ksa Tested on: Windows,...

PT-2022-3657 · Mutt +10 · Mutt +10

Name of the Vulnerable Software and Affected Versions: Mutt versions 0.94.13 through 2.2.3 Description: The issue is related to a buffer overflow in the mutt decode uuencoded function of the Mutt email client. This can allow a remote attacker to gain unauthorized access to protected information o...

Bandisoft ARK library缓冲区错误漏洞

Bandisoft ARK library is a South Korean company Bandisoft's library to decompress most of the existing compression formats such as ZIP, RAR, ALZ, EGG, etc. in various OS environments such as Windows, macOS, Linux, etc., and to create compressed files in ZIP/7Z format. A security vulnerability...

CVE-2021-39667

In ih264dparsedecodeslice of ih264dparseslice.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10...

NS WooCommerce Watermark <= 2.11.3 - Abuse of Functionality

An unprivileged user could use the functionality of the plugin to load images that hide malware for example from passing malicious domains to hide their trace, by making them pass through the vulnerable domain. Search for a vulnerable domain with the dork:...

CVE-2022-25050

rtl433 21.12 was discovered to contain a stack overflow in the function somfyiohcdecode. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted file...

UBUNTU-CVE-2022-25050

rtl433 21.12 was discovered to contain a stack overflow in the function somfyiohcdecode. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted file...

rtl_433 缓冲区错误漏洞

Rtl433 is a general-purpose data receiver from Benjamin Larsson's personal developer. A program for decoding radio transmissions from devices in the Ism band and other frequencies. A security vulnerability exists in rtl433 version 21.12, which stems from the inclusion of a stack overflow in the...