4742 matches found
Important: libvncserver security update
LibVNCServer is a C library that enables you to implement VNC server functionality into own programs. Security Fixes: libvncserver: websocket decoding buffer overflow CVE-2017-18922 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...
CentOS: Security Advisory for libvncserver (CESA-2020:3281)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Denial Of Service (DoS)
imagemagick is vulnerable to denial of service DoS. The vulnerability exists in ImageMagick 7.0.9-27 through 7.0.10-17 has a heap-based buffer over-read in BlobToStringInfo in MagickCore/string.c during TIFF image decoding...
AZL-6388 CVE-2020-15106 affecting package etcd for versions less than 3.5.0-3
In etcd before versions 3.3.23 and 3.4.10, a large slice causes panic in decodeRecord method. The size of a record is stored in the length field of a WAL file and no additional validation is done on this data. Therefore, it is possible to forge an extremely large frame size that can unintentional...
python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2
An out-of-bounds read/write flaw was found in python-pillow, in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable. This flaw allows an attacker to crash the application or potentially execute code on the system. The highest...
python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2
An out-of-bounds read/write flaw was found in python-pillow, in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable. This flaw allows an attacker to crash the application or potentially execute code on the system. The highest...
Ubuntu 16.04 LTS / 18.04 LTS : Squid vulnerabilities (USN-4446-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4446-1 advisory. Jeriko One discovered that Squid incorrectly handled caching certain requests. A remote attacker could possibly use this issue to perform...
libvncserver: websocket decoding buffer overflow
A flaw was found in libvncserver. A heap-based buffer overflow within the websocket decoding functionality is possible, which can lead to exploitation by a malicious attacker to overwrite a function pointer. The highest threat from this vulnerability is to data confidentiality and integrity as we...
USN-4446-1 squid3 vulnerabilities
Jeriko One discovered that Squid incorrectly handled caching certain requests. A remote attacker could possibly use this issue to perform cache-injection attacks or gain access to reverse proxy features such as ESI. CVE-2019-12520 Jeriko One and Kristoffer Danielsson discovered that Squid...
ImageMagick 7.0.9-27 < 7.0.10-17 Heap-buffer-overflow in BlobToStringInfo
The remote Windows host has a version of ImageMagick installed that is 7.0.9-27 prior to 7.0.10-17 It is, therefore, affected by a heap-based buffer over-read vulnerability due to a flaw in BlobToStringInfo in MagickCore/string.c during TIFF image decoding. C Tenable, Inc. include'compat.inc'; if...
python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2
An out-of-bounds read/write flaw was found in python-pillow, in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable. This flaw allows an attacker to crash the application or potentially execute code on the system. The highest...
OSV-2020-1444 Heap-buffer-overflow in void mc_chroma<unsigned short>
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22678 Crash type: Heap-buffer-overflow READ 2 Crash state: void mcchroma generateinterpredictionsamples decodepredictionunit...
SUSE-SU-2020:2057-1 Security update for python-Pillow
This update for python-Pillow fixes the following issues: - Add 0019-FLI-overflow-error-fix-and-testcase.patch Fixes CVE-2016-0775, bsc965582 - Add 0020-Fix-OOB-reads-in-FLI-decoding.patch Fixes CVE-2020-10177, bsc1173413 - Add 0021-Fix-bounds-overflow-in-JPEG-2000-decoding.patch Fixes...
USN-4431-1 ffmpeg vulnerabilities
It was discovered that FFmpeg incorrectly verified empty audio packets or HEVC data. An attacker could possibly use this issue to cause a denial of service via a crafted file. This issue only affected Ubuntu 16.04 LTS, as it was already fixed in Ubuntu 18.04 LTS. For more information see:...
OSV-2020-960 Use-of-uninitialized-value in prvTidyDecodeUTF8BytesToChar
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=12656 Crash type: Use-of-uninitialized-value Crash state: prvTidyDecodeUTF8BytesToChar prvTidyGetUTF8 PPrintText...
SUSE-SU-2019:2891-2 Security update for python-ecdsa
This update for python-ecdsa to version 0.13.3 fixes the following issues: Security issues fixed: - CVE-2019-14853: Fixed unexpected exceptions during signature decoding bsc1153165. - CVE-2019-14859: Fixed a signature malleability caused by insufficient checks of DER encoding bsc1154217...
CVE-2020-11538
An out-of-bounds read/write flaw was found in python-pillow, in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable. This flaw allows an attacker to crash the application or potentially execute code on the system. The highest...
OSV-2020-373 UNKNOWN READ in url_decode
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=14501 Crash type: UNKNOWN READ Crash state: urldecode parsekeyvalues fuzzparsehttprequest...
DEBIAN-CVE-2020-10378
In libImaging/PcxDecode.c in Pillow before 7.1.0, an out-of-bounds read can occur when reading PCX files where state-shuffle is instructed to read beyond state-buffer...
PYSEC-2020-80
In libImaging/SgiRleDecode.c in Pillow through 7.0.0, a number of out-of-bounds reads exist in the parsing of SGI image files, a different issue than CVE-2020-5311...