ROS-20240912-01

A vulnerability in the H5Olayoutencode function in the H5Olayout.c file of the HDF5 library is related to an overflow of the buffer overflow in the heap. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service A vulnerability in the...

CVE-2023-31137 MaraDNS Integer Underflow Vulnerability in DNS Packet Decompression

MaraDNS is open-source software that implements the Domain Name System DNS. In version 3.5.0024 and prior, a remotely exploitable integer underflow vulnerability in the DNS packet decompression function allows an attacker to cause a Denial of Service by triggering an abnormal program termination...

PT-2023-8932 · Maradns +2 · Maradns +2

Name of the Vulnerable Software and Affected Versions: MaraDNS versions 3.5.0024 and prior Description: MaraDNS is open-source software that implements the Domain Name System DNS. A remotely exploitable integer underflow vulnerability in the DNS packet decompression function allows an attacker to...

CVE-2023-22997

In the Linux kernel before 6.1.2, kernel/module/decompress.c misinterprets the modulegetnextpage return value expects it to be NULL in the error case, whereas it is actually an error pointer...

Null pointer dereference

In the Linux kernel before 6.1.2, kernel/module/decompress.c misinterprets the modulegetnextpage return value expects it to be NULL in the error case, whereas it is actually an error pointer...

CVE-2023-22997

In the Linux kernel before 6.1.2, kernel/module/decompress.c misinterprets the modulegetnextpage return value expects it to be NULL in the error case, whereas it is actually an error pointer...

Low: bzip2

Issue Overview: BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. CVE-2019-12900 Affected Packages: bzip2 Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Cor...

BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.

...

CVE-2020-10809

An issue was discovered in HDF5 through 1.12.0. A heap-based buffer overflow exists in the function Decompress located in decompress.c. It can be triggered by sending a crafted file to the gif2h5 binary. It allows an attacker to cause Denial of Service...

Huawei EulerOS: Security Advisory for libXfont (EulerOS-SA-2019-2357)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for clamav (moderate)

openSUSE Security Update: Security update for clamav Announcement ID: openSUSE-SU-2019:2595-1 Rating: moderate References: 1144504 1149458 1151839 Cross-References: CVE-2019-12625 CVE-2019-12900 Affected Products: openSUSE Leap 15.1 An update that solves two vulnerabilities and has one errata is...

CVE-2019-12900

A data integrity error was found in the Linux Kernel's bzip2 functionality when decompressing. This issue occurs when a user decompresses a particular kind of .bz2 files. A local user could get unexpected results or corrupted data as result of decompressing these files...

Out-of-bounds Write

bzip2 is vulnerable to an out-of-bounds write. The vulnerability can be triggered when an attacker passes a maliciously compressed file to the BZ2decompress function in decompress.c, causing the nSelector variable to go out of range and write to an invalid memory space...

CVE-2019-12900

BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...

Out-of-bounds

BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...

CVE-2019-12900

BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...

Design/Logic Flaw

ReadCode in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service invalid write access via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file...

CVE-2018-17436

ReadCode in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service invalid write access via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file...

CVE-2018-17436

CVE-2018-17436 affects ReadCode() in decompress.c of the HDF5 library (up to 1.10.3). A crafted HDF5 file, produced during GIF-to-HDF conversion, can cause a denial of service via invalid write access. Connected advisories (e.g., SUSE-SU-2022:1912-1 and related OSV entries) indicate this CVE was ...

CVE-2018-17436

ReadCode in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service invalid write access via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file...