CVE-2020-14104

A RACE CONDITION on XQBACKUP causes a decompression path error on Xiaomi router AX3600 with ROM version =1.0.50...

Race condition

A RACE CONDITION on XQBACKUP causes a decompression path error on Xiaomi router AX3600 with ROM version =1.0.50...

CVE-2020-14104

CVE-2020-14104 concerns a race condition in the XQBACKUP component of the Xiaomi router AX3600 running ROM 1.0.50, causing a decompression path error. The issue is documented across multiple sources as affecting the AX3600 with ROM 1.0.50, and it originates from a race condition in XQBACKUP. The ...

CVE-2020-14104

A RACE CONDITION on XQBACKUP causes a decompression path error on Xiaomi router AX3600 with ROM version =1.0.50...

Xiaomi Xiaomi router AX3600 竞争条件问题漏洞

Xiaomi router AX3600 is a router from China-based Xiaomi. A security vulnerability exists in the Xiaomi router AX3600 ROM version 1.0.50, which originates from a decompression path error...

DEBIAN-CVE-2021-20296

A flaw was found in OpenEXR in versions before 3.0.0-beta. A crafted input file supplied by an attacker, that is processed by the Dwa decompression functionality of OpenEXR's IlmImf library, could cause a NULL pointer dereference. The highest threat from this vulnerability is to system availabili...

AZL-44505 CVE-2021-20296 affecting package OpenEXR 2.3.0-6

A flaw was found in OpenEXR in versions before 3.0.0-beta. A crafted input file supplied by an attacker, that is processed by the Dwa decompression functionality of OpenEXR's IlmImf library, could cause a NULL pointer dereference. The highest threat from this vulnerability is to system availabili...

Null pointer dereference

A flaw was found in OpenEXR in versions before 3.0.0-beta. A crafted input file supplied by an attacker, that is processed by the Dwa decompression functionality of OpenEXR's IlmImf library, could cause a NULL pointer dereference. The highest threat from this vulnerability is to system availabili...

UBUNTU-CVE-2021-20296

A flaw was found in OpenEXR in versions before 3.0.0-beta. A crafted input file supplied by an attacker, that is processed by the Dwa decompression functionality of OpenEXR's IlmImf library, could cause a NULL pointer dereference. The highest threat from this vulnerability is to system availabili...

LIM OpenEXR 代码问题漏洞

OpenEXR is an open-standard, high dynamic range image format that is widely used in computer graphics to store image data, but can also store some data needed for post-synthesis processing. A null pointer dereference vulnerability exists in the Dwa decompression function of the IlmImf library in...

CVE-2021-20296

OpenEXR (IlmImf) before 3.0.0-beta is affected by CVE-2021-20296 due to a crafted input file in the Dwa decompression path that can trigger a NULL pointer dereference, primarily impacting availability. Affected versions are OpenEXR prior to 3.0.0-beta; exploitation would involve processing a mali...

decompress_gunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huft_build result pointer with a resultant invalid free or segmentation fault via malformed gzip data.

...

CVE-2021-20216

A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when decompression fails unexpectedly may lead to a denial of service. The highest threat from this vulnerability is to system availability...

ALPINE-CVE-2021-20216

A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when decompression fails unexpectedly may lead to a denial of service. The highest threat from this vulnerability is to system availability...

DEBIAN-CVE-2021-20216

A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when decompression fails unexpectedly may lead to a denial of service. The highest threat from this vulnerability is to system availability...

CVE-2021-20216

A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when decompression fails unexpectedly may lead to a denial of service. The highest threat from this vulnerability is to system availability...

Vulnerability of the jbig2_huffman_get function in the libjbig2dec.a decompression library for JBIG2 image compression format. This vulnerability allows an attacker to cause a service failure.

The vulnerability of the jbig2huffmanget function in the libjbig2dec.a decompression library for JBIG2 image compression formats is related to an improper pointer dereferencing. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

Fedora: Security Advisory for upx (FEDORA-2021-acfb7be76e)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 34 Update: upx-3.96-8.fc34

UPX is a free, portable, extendable, high-performance executable packer for several different executable formats. It achieves an excellent compression ratio and offers very fast decompression. Your executables suffer no memory overhead or other drawbacks...

[SECURITY] Fedora 34 Update: suricata-6.0.2-1.fc34

The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...