270 matches found
Null Pointer Dereference
PHP is vulnerable to null pointer deference vulnerability. The vulnerability exists in the phpwddxpopelement function in ext/wddx/wddx.c in PHP. Remote attackers could cause a denial of service via an inapplicable class name in a wddxPacket XML document, leading to mishandling in a wddxdeserializ...
Shopware createInstanceFromNamedArguments PHP Object Instantiation RCE
This module exploits a php object instantiation vulnerability that can lead to RCE in Shopware. An authenticated backend user could exploit the vulnerability. The vulnerability exists in the createInstanceFromNamedArguments function, where the code insufficiently performs whitelist check which ca...
. NET advanced code audit of the first ten classes ObjectStateFormatter deserialize vulnerability-vulnerability warning-the black bar safety net
0x00 Preface ObjectStateFormatter generally used for serialization and deserialization of the state object graph, such as the commonly used ViewState is through this class to do the serialization, is located in the namespace System. Web. The UI, the advantage is that on the basis of the type stor...
skia/image_filter_deserialize: Crash in bits_to_runs
Project: https://skia.googlesource.com/skia.git Detailed report: https://oss-fuzz.com/testcase?key=5202075178237952 Project: skia Fuzzer: libFuzzerskiaimagefilterdeserialize Fuzz target binary: imagefilterdeserialize Job Type: libfuzzerasanskia Platform Id: linux Crash Type: UNKNOWN READ Crash...
SUSE-SU-2019:0054-2 Security update for systemd
This update for systemd fixes the following issues: Fix security vulnerabilities CVE-2018-16864 and CVE-2018-16865 bsc1120323: Both issues were memory corruptions via attacker-controlled alloca which could have been used to gain root privileges by a local attacker. Fix security vulnerability...
CoAPthon DoS due to Exceptions
The Serialize.deserialize method in CoAPthon 3.1, 4.0.0, 4.0.1, and 4.0.2 mishandles certain exceptions, leading to a denial of service in applications that use this library e.g., the standard CoAP server, CoAP client, CoAP reverse proxy, example collect CoAP server and client when they receive...
CoAPthon Serialize.deserialize() method denial of service vulnerability
CoAPthon is an RFC compliant python library for the CoAP protocol. A denial of service vulnerability exists in the Serialize.deserialize method in CoAPthon 3 version 1.0 and version 1.0.1. An attacker can exploit the vulnerability to cause applications using this library e.g., standard coap serve...
PYSEC-2019-165
The Serialize.deserialize method in CoAPthon 3.1, 4.0.0, 4.0.1, and 4.0.2 mishandles certain exceptions, leading to a denial of service in applications that use this library e.g., the standard CoAP server, CoAP client, CoAP reverse proxy, example collect CoAP server and client when they receive...
PYSEC-2019-166
The Serialize.deserialize method in CoAPthon3 1.0 and 1.0.1 mishandles certain exceptions, leading to a denial of service in applications that use this library e.g., the standard CoAP server, CoAP client, example collect CoAP server and client when they receive crafted CoAP messages...
PYSEC-2019-166
The Serialize.deserialize method in CoAPthon3 1.0 and 1.0.1 mishandles certain exceptions, leading to a denial of service in applications that use this library e.g., the standard CoAP server, CoAP client, example collect CoAP server and client when they receive crafted CoAP messages...
. NET advanced code audit(the first lesson)XmlSerializer deserialization vulnerability-vulnerability warning-the black bar safety net
在.NET in the framework of the XmlSerializer class is a great tool, it is a highly structured XML data is mapped to . NET objects. The XmlSerializer class in the program through a single API call to perform the XML document and the object conversion between. The conversion mapping rules in the . N...
SUSE-SU-2019:0054-1 Security update for systemd
This update for systemd fixes the following issues: Fix security vulnerabilities CVE-2018-16864 and CVE-2018-16865 bsc1120323: Both issues were memory corruptions via attacker-controlled alloca which could have been used to gain root privileges by a local attacker. Fix security vulnerability...
SUSE SLED12 / SLES12 Security Update : systemd (SUSE-SU-2018:3767-2)
This update for systemd fixes the following issues : Security issues fixed : CVE-2018-15688: A buffer overflow vulnerability in the dhcp6 client of systemd allowed a malicious dhcp6 server to overwrite heap memory in systemd-networkd. bsc1113632 CVE-2018-15686: A vulnerability in unitdeserialize ...
USN-3816-2 systemd vulnerability
USN-3816-1 fixed several vulnerabilities in systemd. However, the fix for CVE-2018-6954 was not sufficient. This update provides the remaining fixes. We apologize for the inconvenience. Original advisory details: Jann Horn discovered that unitdeserialize incorrectly handled status messages above ...
PYSEC-2018-74
Versions of Superset prior to 0.23 used an unsafe load method from the pickle library to deserialize data leading to possible remote code execution. Note Superset 0.23 was released prior to any Superset release under the Apache Software Foundation...
skia/image_filter_deserialize: Crash in SkTInternalLList<TriangulationVertex>::addToTail
Project: https://skia.googlesource.com/skia.git Detailed report: https://oss-fuzz.com/testcase?key=5674426696204288 Project: skia Fuzzer: libFuzzerskiaimagefilterdeserialize Fuzz target binary: imagefilterdeserialize Job Type: libfuzzerubsanskia Platform Id: linux Crash Type: UNKNOWN READ Crash...
UBUNTU-CVE-2018-17234
Memory leak in the H5Ochunkdeserialize function in H5Ocache.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service memory consumption via a crafted HDF5 file...
HDF5 Memory Leak Vulnerability
HDF5 is a free suite of tools for managing the storage of different types of data that can be managed, manipulated, viewed, analyzed, and generated in portable formats. A memory leak vulnerability exists in the 'H5Ochunkdeserialize' function of the H5Ocache.c file in HDF5 1.10.3 and earlier...
Vanilla: Vanilla Forums ImportController index file_exists Unserialize Remote Code Execution Vulnerability
Summary: An authenticated admin user can inject an serialized payload into a phar archive and trigger read access to it via an unprotected fileexists. An attacker can leverage this to deserialize untrusted data and gain remote code execution. Notes: - You need to have an admin account to run this...
PT-2018-3948 · Hdf +4 · Hdf5 +4
Name of the Vulnerable Software and Affected Versions: HDF5 versions through 1.10.3 Description: The issue is related to a memory leak in the H5O chunk deserialize function in the H5Ocache.c component of the HDF5 library. This allows attackers to cause a denial of service by consuming memory via ...