CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The crate slice-ring-buffer was developed as a fork of slice-deque to continue maintenance and provide security patches, since the latter has been officially unmaintained RUSTSEC-2020-0158. While slice-ring-buffer has addressed some previously reported memory safety issues inherited from its fork...

7.9AI score

Exploits0References3Affected Software2

Tenable Nessus•added 2023/09/07 12:0 a.m.•24 views

Oracle Linux 8 : curl (ELSA-2020-1792)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1792 advisory. - double free due to subsequent call of realloc CVE-2019-5481 - fix heap buffer overflow in function tftpreceivepacket CVE-2019-5482 Tenable has...

9.8CVSS6.7AI score0.49739EPSS

Exploits1References4

OSV•added 2022/08/04 12:7 p.m.•6 views

SUSE-SU-2022:2673-1 Security update for python-ujson

This update for python-ujson fixes the following issues: - CVE-2022-31116: Fixed improper decoding of escaped surrogate characters bsc1201255. - CVE-2022-31117: Fixed a double free while reallocating a buffer for string decoding bsc1201254...

7.5CVSS6.6AI score0.01828EPSS

Exploits1References5

OSV•added 2020/03/31 10:24 p.m.•6 views

OPENSUSE-SU-2020:0438-1 Security update for ldns

This update for ldns fixes the following issues: - CVE-2017-1000231: Fixed a buffer overflow during token parsing bsc1068711. - CVE-2017-1000232: Fixed a double-free vulnerability in str2host.c bsc1068709. This update was imported from the SUSE:SLE-15:Update update project...

9.8CVSS9.7AI score0.02653EPSS

Exploits1References5

Tenable Nessus•added 2019/11/20 12:0 a.m.•55 views

Debian DLA-1998-1 : python-psutil security update

It was discovered that there were multiple double free vulnerabilities in python-psutil, a Python module providing convenience functions for accessing system process data. This was caused by incorrect reference counting handling within for/while loops that convert system data into said Python...

7.5CVSS7.3AI score0.02676EPSS

Exploits0References3

Debian•added 2019/11/18 6:55 p.m.•100 views

[SECURITY] [DLA 1998-1] python-psutil security update

Package : python-psutil Version : 2.1.1-1+deb8u1 CVE ID : CVE-2019-18874 Debian Bug : 944605 It was discovered that there were multiple double free vulnerabilities in python-psutil, a Python module providing convenience functions for accessing system process data. This was caused by incorrect...

7.5CVSS7.7AI score0.02676EPSS

Exploits0

OSV•added 2019/03/26 1:35 p.m.•23 views

SUSE-SU-2019:0747-1 Security update for gd

This update for gd fixes the following issues: Security issues fixed: - CVE-2019-6977: Fixed a heap-based buffer overflow the GD Graphics Library used in the imagecolormatch function bsc1123361. - CVE-2019-6978: Fixed a double free in the gdImagePtr functions bsc1123522...

9.8CVSS9AI score0.65116EPSS

Exploits7References5

Prion•added 2018/10/01 8:29 a.m.•15 views

Double free

An issue was discovered in AdPlug 2.3.1. There are several double-free vulnerabilities in the CEmuopl class in emuopl.cpp because of a destructor's two OPLDestroy calls, each of which frees TLTABLE, SINTABLE, AMSTABLE, and VIBTABLE...

7.5CVSS9.4AI score0.02301EPSS

Exploits1References3Affected Software2

OSV•added 2018/10/01 8:29 a.m.•14 views

CVE-2018-17825

9.8CVSS9.6AI score

Exploits0References3

CVE•added 2018/10/01 8:0 a.m.•65 views

CVE-2018-17825

CVE-2018-17825 affects AdPlug 2.3.1. The vulnerability is a double-free in the CEmuopl class (emuopl.cpp) caused by a destructor calling OPLDestroy twice, freeing TL_TABLE, SIN_TABLE, AMS_TABLE and VIB_TABLE. Fedora and OpenVAS/Nessus references confirm multiple advisories tying to AdPlug, Audaci...

9.8CVSS9.4AI score0.02301EPSS

Exploits1References3Affected Software1

Debian CVE•added 2018/10/01 8:0 a.m.•20 views

CVE-2018-17825

9.8CVSS8.5AI score0.02301EPSS

Exploits1

Prion•added 2018/04/25 11:29 p.m.•13 views

Double free

Double free vulnerabilities in Advantech WebAccess HMI Designer 2.1.7.32 and prior caused by processing specially crafted .pm3 files may allow remote code execution...

6.8CVSS8AI score0.0211EPSS

Exploits0References2Affected Software1

Cvelist•added 2018/04/25 11:0 p.m.•17 views

CVE-2018-8835

Double free vulnerabilities in Advantech WebAccess HMI Designer 2.1.7.32 and prior caused by processing specially crafted .pm3 files may allow remote code execution...

8.1AI score0.0211EPSS

Exploits0References2

CVE•added 2018/04/25 11:0 p.m.•45 views

CVE-2018-8835

Advantech WebAccess HMI Designer 2.1.7.32 and prior are affected by a double‑free vulnerability in processing specially crafted .pm3 files, which may allow remote code execution. CVE-2018-8835. The issue is caused by improper handling during file processing and is highlighted alongside other vuln...

7.8CVSS8AI score0.0211EPSS

Exploits0References2Affected Software1

Amazon•added 2018/03/07 12:0 a.m.•51 views

Important: GraphicsMagick

Issue Overview: Memory information disclosure in DescribeImage function in magick/describe.c GraphicsMagick is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of th...

9.8CVSS9.1AI score0.13679EPSS

Exploits5

UbuntuCve•added 2017/07/10 3:29 a.m.•33 views

CVE-2017-11139

GraphicsMagick 1.3.26 has double free vulnerabilities in the ReadOneJNGImage function in coders/png.c...

9.8CVSS7.2AI score0.02702EPSS

Exploits0References2

CVE•added 2017/07/10 3:0 a.m.•90 views

CVE-2017-11139

GraphicsMagick 1.3.26 contains a double-free vulnerability in ReadOneJNGImage() (coders/png.c), tracked as CVE-2017-11139. Connected advisories indicate multiple distributions published fixes; e.g., Debian/DSA-4321-1 and Fedora advisories include GraphicsMagick updates to 1.3.28+ to address this ...

9.8CVSS9.5AI score0.02702EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by