2839 matches found
PT-2020-19361 · Unknown +1 · Libiec61850 +1
Name of the Vulnerable Software and Affected Versions: libIEC61850 versions prior to 1.4.1 Description: The issue arises from a heap-based buffer overflow in the MmsValue decodeMmsData function when parsing the MMS BIT STRING data type. This occurs in the mms/iso mms/server/mms access result.c fi...
ALPINE-CVE-2020-6851
OpenJPEG through 2.3.1 has a heap-based buffer overflow in opjt1clbldecodeprocessor in openjp2/t1.c because of lack of opjj2kupdateimagedimensions validation...
OpenJPEG heap buffer overflow vulnerability (CNVD-2020-02456)
OpenJPEG is a C-based open source JPEG2000 codec . A buffer overflow vulnerability exists in the 'opjt1clbldecodeprocessor' function in the libopenjp2.so file in OpenJPEG 2.3.1 and earlier versions. The vulnerability stems from a networked system or product performing operations in memory without...
GNU LibreDWG Heap Buffer Overflow Vulnerability (CNVD-2020-04068)
LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in copycompressedbytes in decoder2007.c in LibreDWG 0.9.3.2564. An attacker can exploit this vulnerability to cause a buffer overflow or heap overflow, among other things...
GNU LibreDWG Heap Buffer Overflow Vulnerability (CNVD-2020-04064)
LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in readpagesmap in decoder2007.c in GNU LibreDWG 0.9.3.2564. An attacker can exploit this vulnerability to cause a buffer overflow or heap overflow, among other things...
GNU LibreDWG Memory Allocation Failure Vulnerability
LibreDWG is a free C library for reading and writing DWG files. A memory allocation failure vulnerability exists in readsectionsmap in decoder2007.c in LibreDWG 0.9.3.2564. An attacker can exploit this vulnerability to allocate too much memory in readsectionsmap in decoder2007.c...
Heap overflow
GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in readpagesmap in decoder2007.c...
PT-2020-19181 · Gnu +1 · Gnu Libredwg +1
Name of the Vulnerable Software and Affected Versions: GNU LibreDWG version 0.9.3.2564 Description: The issue is related to a heap-based buffer over-read in the bfr read function located in decode.c. Recommendations: For GNU LibreDWG version 0.9.3.2564, consider updating to a newer version that...
PT-2020-19179 · Gnu +1 · Gnu Libredwg +1
Name of the Vulnerable Software and Affected Versions: GNU LibreDWG version 0.9.3.2564 Description: The issue is related to a heap-based buffer over-read in the copy compressed bytes function located in decode r2007.c. Recommendations: For GNU LibreDWG version 0.9.3.2564, consider updating to a...
DEBIAN-CVE-2020-5310
libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc...
ALPINE-CVE-2020-5312
libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow...
ALPINE-CVE-2020-5313
libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow...
DEBIAN-CVE-2020-5311
libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...
DEBIAN-CVE-2020-5312
libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow...
PYSEC-2020-84
libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow...
PYSEC-2020-83
libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow...
UBUNTU-CVE-2020-5311
libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...
Pillow FLI Buffer Overflow Vulnerability
Pillow is a Python based image processing library. A buffer overflow vulnerability exists in the libImaging/FliDecode.c file in Pillow versions prior to 6.2.2. The vulnerability stems from a networked system or product performing operations in memory without properly validating data boundaries,...
Design/Logic Flaw
An issue was discovered in GNU LibreDWG before 0.93. Crafted input will lead to an attempted excessive memory allocation in decode3dsolid in dwg.spec...
GNU LibreDWG Post-Release Reuse Vulnerability
GNU LibreDWG is a GNU Project C library for working with DWG files. A post-release reuse vulnerability exists in the 'resolveobjectrefvector' function in the decode.c file in GNU LibreDWG version 0.92. The vulnerability stems from mismanagement of system resources e.g., memory, disk space, files,...