14 matches found
EUVD-2017-16840
Malware in sbrugna...
EUVD-2015-7428
Malware in sbrugna...
EUVD-2025-4309
Malicious code in bioql PyPI...
EUVD-2023-33526
Malicious code in bioql PyPI...
FreeBSD : cisco -- OpenH264 Decoding Functions Heap Overflow Vulnerability (03ba1cdd-4faf-11f0-af06-00a098b42aeb)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 03ba1cdd-4faf-11f0-af06-00a098b42aeb advisory. Cisco reports: A vulnerability in the decoding functions of OpenH264 codec library could allow a remote...
CVE-2025-27091
OpenH264 is a free license codec library which supports H.264 encoding and decoding. A vulnerability in the decoding functions of OpenH264 codec library could allow a remote, unauthenticated attacker to trigger a heap overflow. This vulnerability is due to a race condition between a Sequence...
CVE-2014-125106
Nanopb before 0.3.1 allows sizet overflows in pbdecbytes and pbdecstring...
PT-2023-35853 · Openjpeg · Openjpeg
Name of the Vulnerable Software and Affected Versions: OpenJPEG affected versions not specified Description: A heap buffer overflow read issue has been identified. The crash occurs in the opj jp2 apply pclr and opj jp2 decode functions, which are part of the...
GO-2023-1557 Denial of service via HAMT decoding panic in github.com/ipfs/go-unixfs
Trying to read malformed HAMT sharded directories can cause panics and virtual memory leaks. If you are reading untrusted user input, an attacker can then trigger a panic. This is caused by bogus "fanout" parameter in the HAMT directory nodes. A workaround is to not feed untrusted user data to th...
GHSA-Q264-W97Q-Q778 Denial of service via HAMT Decoding Panics
Impact Trying to read malformed HAMT sharded directories can cause panics and virtual memory leaks. If you are reading untrusted user input, an attacker can then trigger a panic. This is caused by bogus fanout parameter in the HAMT directory nodes. This include checks returned in ipfs/go-bitfield...
PT-2022-36807 · Git +1 · Libredwg
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow READ 1 crash has been reported. The crash involves the functions bit read B, dwg decode header variables, and decode R13 RNUMBER. ...
Automatically Extracting Obfuscated Strings from Malware using the FireEye Labs Obfuscated String Solver (FLOSS)
Introduction and Motivation Have you ever run strings.exe on a malware executable and its output provided you with IP addresses, file names, registry keys, and other indicators of compromise IOCs? Great! No need to run further analysis or hire expensive experts to determine if a file is malicious...
Scientific Linux Security Update : glib2 on SL5.x i386/x86_64
Diego Petten discovered multiple integer overflows causing heap-based buffer overflows in GLib's Base64 encoding and decoding functions. An attacker could use these flaws to crash an application using GLib's Base64 functions to encode or decode large, untrusted inputs, or, possibly, execute...
SuSE 11 Security Update : glib2 (SAT Patch Number 817)
Large strings could lead to a heap overflow in the base64 encoding and decoding functions. Attackers could potentially exploit that to execute arbitrary code. CVE-2008-4316 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...