5 matches found
PT-2026-51064
Name of the Vulnerable Software and Affected Versions Oj versions prior to 3.17.2 Description Oj.dump is subject to a stack-based buffer overflow when a large :indent value is provided. The fill indent function in dump.h utilizes memset to fill a buffer without validating the size of the indent...
Oj - Stack Buffer Overflow in Oj.dump via Large Indent
Summary Oj.dump is vulnerable to a stack-based buffer overflow when a large :indent value is provided by the developer. fillindent in dump.h calls memsetindentstr, ' ', sizetopts-indent without validating the size. When opts-indent is set to INTMAX 2,147,483,647, the sizet cast preserves the larg...
kernel: tipc: fix the msg->req tlv len check in tipc_nl_compat_name_table_dump_header
A flaw was found in the tipc module in the Linux kernel. An uninitialized value issue can be triggered due to a missing type cast when comparing the length of data with the size of an object. This issue can potentially cause system instability and result in a denial of service...
gpac 代码问题漏洞
GPAC is a multimedia framework for rich media and distributed under the LGPL license. A null pointer dereference vulnerability exists in the nhmldumpsendheader function in writenhml.c in GPAC 20200801 and earlier. An attacker could exploit this vulnerability to cause a denial of service...
The vulnerability of the ReadXWDImage function in the console-based image editing tool ImageMagick allows a hacker to trigger a memory exhaustion condition.
The vulnerability of the ReadXWDImage function in the console-based image editing tool ImageMagick is related to resource management errors. Exploiting this vulnerability can allow an attacker, operating remotely, to cause memory exhaustion by manipulating the length the number of color table...