83 matches found
dpic 缓冲区错误漏洞
dpic is an implementation of the pic language. A security vulnerability exists in dpic version 2021.01.01, which stems from a buffer overflow vulnerability in thestorestring method of the dpic.y file...
PT-2023-12167 · Dpic +1 · Dpic +1
Name of the Vulnerable Software and Affected Versions: dpic version 2021.01.01 Description: The issue is related to a Heap Use-After-Free in the deletestringbox function located in dpic.y. Recommendations: For dpic version 2021.01.01, as a temporary workaround, consider disabling the...
PT-2023-12166 · Dpic +1 · Dpic +1
Name of the Vulnerable Software and Affected Versions: dpic version 2021.01.01 Description: The issue is a Heap-based Buffer Overflow in the thestorestring function in dpic.y. This occurs due to improper handling of data, leading to a potential overflow. No information is provided about the...
CVE-2021-32420
dpic 2021.01.01 has a Heap-based Buffer Overflow in thestorestring function in dpic.y...
CVE-2021-32422
dpic 2021.01.01 has a Global buffer overflow in theyylex function in main.c and reads out of the bound array...
CVE-2021-32421
CVE-2021-32421 affects dpic; a Heap Use-After-Free in thedeletestringbox() function of dpic.y is reported for dpic 2021.01.01. Connected advisories confirm the same class of issue and identify the root cause as a heap-use-after-free in the same function. Impact is high with availability impact pe...
CVE-2021-32420
CVE-2021-32420 affects dpic 2021.01.01 and is caused by a Heap-based Buffer Overflow in the thestorestring function in dpic.y. The CVE’s NVD entry lists a CVSS v3.1 base score of 7.5 (HIGH) with Network attack vector, Low attack complexity, no privileges or user interaction, and Availability impa...
CVE-2021-32422
CVE-2021-32422 concerns dpic 2021.01.01, which has a Global buffer overflow in the theyylex() function of main.c causing reads past the end of an array. Affects dpic and is reflected across multiple advisories (Red Hat, SUSE, Ubuntu, Debian, OSV, NVD). The CVSSv3.1 base score is 7.5 (HIGH) with n...
CVE-2021-33388
dpic 2021.04.10 has a Heap Buffer Overflow in themakevar function in dpic.y...
CVE-2021-33390
dpic 2021.04.10 has a use-after-free in thedeletestringbox function in dpic.y. A different vulnerablility than CVE-2021-32421...
CVE-2021-32420
dpic 2021.01.01 has a Heap-based Buffer Overflow in thestorestring function in dpic.y...
CVE-2021-32421
dpic 2021.01.01 has a Heap Use-After-Free in thedeletestringbox function in dpic.y...
SUSE CVE-2019-13989
dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat function in main.c...
Mageia: Security Advisory (MGASA-2020-0460)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated dpic package fixes a security vulnerability
dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat function in main.c. CVE-2019-13989...
MGASA-2020-0460 Updated dpic package fixes a security vulnerability
dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat function in main.c. CVE-2019-13989...
CVE-2019-13989
dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat function in main.c...
CVE-2019-13989
dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat function in main.c...
CVE-2019-13989
dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat function in main.c...
UBUNTU-CVE-2019-13989
dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat function in main.c...