Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.9 views

PT-2026-51064

Name of the Vulnerable Software and Affected Versions Oj versions prior to 3.17.2 Description Oj.dump is subject to a stack-based buffer overflow when a large :indent value is provided. The fill indent function in dump.h utilizes memset to fill a buffer without validating the size of the indent...

8.7CVSS6.2AI score0.00257EPSS
Exploits0References4
RubySec
RubySec
added 2026/06/19 12:0 a.m.5 views

Oj - Stack Buffer Overflow in Oj.dump via Large Indent

Summary Oj.dump is vulnerable to a stack-based buffer overflow when a large :indent value is provided by the developer. fillindent in dump.h calls memsetindentstr, ' ', sizetopts-indent without validating the size. When opts-indent is set to INTMAX 2,147,483,647, the sizet cast preserves the larg...

6.3CVSS6.3AI score0.00257EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.5 views

kernel: tipc: fix the msg->req tlv len check in tipc_nl_compat_name_table_dump_header

A flaw was found in the tipc module in the Linux kernel. An uninitialized value issue can be triggered due to a missing type cast when comparing the length of data with the size of an object. This issue can potentially cause system instability and result in a denial of service...

5.5CVSS6.6AI score0.00166EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/04/21 12:0 a.m.4 views

gpac 代码问题漏洞

GPAC is a multimedia framework for rich media and distributed under the LGPL license. A null pointer dereference vulnerability exists in the nhmldumpsendheader function in writenhml.c in GPAC 20200801 and earlier. An attacker could exploit this vulnerability to cause a denial of service...

5.5CVSS5.7AI score0.00716EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2017/07/20 12:0 a.m.7 views

The vulnerability of the ReadXWDImage function in the console-based image editing tool ImageMagick allows a hacker to trigger a memory exhaustion condition.

The vulnerability of the ReadXWDImage function in the console-based image editing tool ImageMagick is related to resource management errors. Exploiting this vulnerability can allow an attacker, operating remotely, to cause memory exhaustion by manipulating the length the number of color table...

7.1CVSS7.1AI score0.01432EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder