146 matches found
CVE-2023-34150 Apache Any23: Possible excessive allocation of resources reading input.
UNSUPPORTED WHEN ASSIGNED Use of TikaEncodingDetector in Apache Any23 can cause excessive memory usage...
Out-of-Bounds
Overview Affected versions of this package are vulnerable to Out-of-Bounds. An issue was discovered in PoDoFo 0.9.6. There is an attempted excessive memory allocation in PoDoFo::podofocalloc in base/PdfMemoryManagement.cpp when called from PoDoFo::PdfPredictorDecoder::PdfPredictorDecoder in...
Memory corruption
An issue was discovered in Bento4 1.5.1-627. There is an attempt at excessive memory allocation in the AP4DataBuffer class when called from AP4HvccAtom::Create in Core/Ap4HvccAtom.cpp...
Memory corruption
An issue was discovered in Bento4 1.5.1-627. AP4Sample::ReadData in Core/Ap4Sample.cpp allows attackers to trigger an attempted excessive memory allocation, related to AP4DataBuffer::SetDataSize and AP4DataBuffer::ReallocateBuffer in Core/Ap4DataBuffer.cpp...
Vulnerability in OpenSSL - Excessive allocation of memory in tls_get_message_header()
A TLS message includes 3 bytes for its length in the header for the message. This would allow for messages up to 16Mb in length. Messages of this length are excessive and OpenSSL includes a check to ensure that a peer is sending reasonably sized messages in order to avoid too much memory being...
SUSE-SU-2016:1233-1 Security update for openssl
This update for openssl fixes the following issues: - CVE-2016-2108: Memory corruption in the ASN.1 encoder bsc977617 - CVE-2016-2107: Padding oracle in AES-NI CBC MAC check bsc977616 - CVE-2016-2105: EVPEncodeUpdate overflow bsc977614 - CVE-2016-2106: EVPEncryptUpdate overflow bsc977615 -...