40 matches found
Null pointer dereference
In the Linux kernel, the following vulnerability has been resolved: mfd: syscon: Fix null pointer dereference in ofsysconregister kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure...
CVE-2023-52471 ice: Fix some null pointer dereference issues in ice_ptp.c
In the Linux kernel, the following vulnerability has been resolved: ice: Fix some null pointer dereference issues in iceptp.c devmkasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure...
CVE-2023-52471 ice: Fix some null pointer dereference issues in ice_ptp.c
In the Linux kernel, the following vulnerability has been resolved: ice: Fix some null pointer dereference issues in iceptp.c devmkasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure...
CVE-2023-52467 mfd: syscon: Fix null pointer dereference in of_syscon_register()
In the Linux kernel, the following vulnerability has been resolved: mfd: syscon: Fix null pointer dereference in ofsysconregister kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure...
CVE-2023-52467
In the Linux kernel, the following vulnerability has been resolved: mfd: syscon: Fix null pointer dereference in ofsysconregister kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure...
CVE-2023-52465 power: supply: Fix null pointer dereference in smb2_probe
In the Linux kernel, the following vulnerability has been resolved: power: supply: Fix null pointer dereference in smb2probe devmkasprintf and devmkzalloc return a pointer to dynamically allocated memory which can be NULL upon failure...
CVE-2023-52465 power: supply: Fix null pointer dereference in smb2_probe
In the Linux kernel, the following vulnerability has been resolved: power: supply: Fix null pointer dereference in smb2probe devmkasprintf and devmkzalloc return a pointer to dynamically allocated memory which can be NULL upon failure...
CVE-2023-52465
In the Linux kernel, the following vulnerability has been resolved: power: supply: Fix null pointer dereference in smb2probe devmkasprintf and devmkzalloc return a pointer to dynamically allocated memory which can be NULL upon failure...
CVE-2021-45423
A Buffer Overflow vulnerabilityexists in Pev 0.81 via the peexports function from exports.c.. The array offsetstoNames is dynamically allocated on the stack using exp-NumberOfFunctions as its size. However, the loop uses exp-NumberOfNames to iterate over it and set its components value. Therefore...
Buffer overflow
A Buffer Overflow vulnerabilityexists in Pev 0.81 via the peexports function from exports.c.. The array offsetstoNames is dynamically allocated on the stack using exp-NumberOfFunctions as its size. However, the loop uses exp-NumberOfNames to iterate over it and set its components value. Therefore...
GSD-2023-1002353 of: reserved_mem: Have kmemleak ignore dynamically allocated reserved mem
of: reservedmem: Have kmemleak ignore dynamically allocated reserved mem This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.95 by commit...
The vulnerability of the alink attribute in the sailfish-browser application for the “Avora” operating system, which is related to overflowing the dynamically allocated buffer, allows a hacker to cause a service failure.
The vulnerability of the alink attribute in the sailfish-browser application for the “Avroda” operating system is related to a buffer overflow in the dynamically allocated buffer. Exploiting this vulnerability could allow an attacker to cause a service failure...
Buffer Overflows
bsdiff:sid is vulnerable to buffer overflows. Insufficient checks when handling external inputs allows an attacker to bypass the sanity checks in place and write out of a dynamically allocated buffer boundaries...
Using Speakeasy Emulation Framework Programmatically to Unpack Malware
Andrew Davis recently announced the public release of his new Windows emulation framework named Speakeasy. While the introductory blog post focused on using Speakeasy as an automated malware sandbox of sorts, this entry will highlight another powerful use of the framework: automated malware...
Memory corruption
A memory corruption vulnerability is present in bspatch as shipped in Colin Percival’s bsdiff tools version 4.3. Insufficient checks when handling external inputs allows an attacker to bypass the sanity checks in place and write out of a dynamically allocated buffer boundaries...
CVE-2020-14315
A memory corruption vulnerability is present in bspatch as shipped in Colin Percival’s bsdiff tools version 4.3. Insufficient checks when handling external inputs allows an attacker to bypass the sanity checks in place and write out of a dynamically allocated buffer boundaries...
CVE-2019-10484
Use after free issue occurs when command destructors access dynamically allocated response buffer which is already deallocated during previous command teardwon sequence in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice ...
Adobe Acrobat Reader DC 15.016.20045 - Invalid Font '.ttf' Memory Corruption (1)
Exploit for multiple platform in category dos / poc Application: Adobe Acrobat Reader DC Platforms: Windows,OSX Versions: 15.016.20045 and earlier Author: Sébastien Morin and Pier-Luc Maltais of COSIG Website: https://cosig.gouv.qc.ca/en/advisory/ Twitter: @COSIG Date: July 12, 2016 CVE:...
Adobe Acrobat Reader DC 15.016.20045 - Invalid Font '.ttf' Memory Corruption (6)
Exploit for multiple platform in category dos / poc Application: Adobe Acrobat Reader DC Platforms: Windows,OSX Versions: 15.016.20045 and earlier Author: Sébastien Morin of COSIG Website: https://cosig.gouv.qc.ca/en/advisory/ Twitter: @COSIG Date: July 12, 2016 CVE: CVE-2016-4206 COSIG-2016-25 1...
Adobe Flash Player 22.0.0.192 - DefineBitsJPEG2 Memory Corruption
Adobe Flash Player 22.0.0.192 - DefineBitsJPEG2 Memory Corruption Application: Adobe Flash Player Platforms: Windows,OSX Versions: 22.0.0.192 and earlier Author: Sébastien Morin of COSIG Website: https://cosig.gouv.qc.ca/en/advisory/ Twitter: @COSIG Date: July 12, 2016 CVE-2016-4179 COSIG-2016-23...