3 matches found
PT-2022-16056 · Guarddog · Guarddog
Name of the Vulnerable Software and Affected Versions: GuardDog versions prior to v0.1.8 Description: GuardDog is a CLI tool to identify malicious PyPI packages. The issue arises when extracting files using shutil.unpack archive from a potentially malicious tarball without validating that the...
OpenJPEG Buffer Overflow Vulnerability (CNVD-2018-06600)
OpenJPEG is a C-based open source JPEG 2000 codec . A buffer overflow vulnerability exists in the mj2/opjmj2extract.c file in OpenJPEG version 2.3.0, which stems from the program failing to adequately perform length detection. An attacker could exploit this vulnerability to cause a denial of...
Mandrake Linux Security Advisory : clamav (MDKSA-2006:138)
Damian Put discovered a boundary error in the UPX extraction module in ClamAV which is used to unpack PE Windows executables. This could be abused to cause a Denial of Service issue and potentially allow for the execution of arbitrary code with the permissions of the user running clamscan or clam...