DEBIAN-CVE-2018-17336

UDisks 2.8.0 has a format string vulnerability in udiskslog in udiskslogging.c, allowing attackers to obtain sensitive information stack contents, cause a denial of service memory corruption, or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n...

CVE-2018-17336

UDisks 2.8.0 has a format string vulnerability in udiskslog in udiskslogging.c, allowing attackers to obtain sensitive information stack contents, cause a denial of service memory corruption, or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n...

CVE-2018-17336

CVE-2018-17336 affects UDisks 2.8.0 where a format-string vulnerability in udisks_log (udiskslogging.c) can leak stack contents, enable a denial of service via memory corruption, or cause other impacts with malformed filesystem labels (demonstrated by %d/%n). Exploitation is local. Public reports...

CVE-2018-17336

UDisks 2.8.0 has a format string vulnerability in udiskslog in udiskslogging.c, allowing attackers to obtain sensitive information stack contents, cause a denial of service memory corruption, or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n...

CVE-2018-17336

UDisks 2.8.0 has a format string vulnerability in udiskslog in udiskslogging.c, allowing attackers to obtain sensitive information stack contents, cause a denial of service memory corruption, or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n...

UBUNTU-CVE-2018-17336

UDisks 2.8.0 has a format string vulnerability in udiskslog in udiskslogging.c, allowing attackers to obtain sensitive information stack contents, cause a denial of service memory corruption, or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n...

CVE-2018-17336

UDisks 2.8.0 has a format string vulnerability in udiskslog in udiskslogging.c, allowing attackers to obtain sensitive information stack contents, cause a denial of service memory corruption, or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n...

EulerOS Virtualization 2.5.0 : ncurses (EulerOS-SA-2018-1252)

According to the versions of the ncurses packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In ncurses 6.0, there is a stack-based buffer overflow in the fmtentry function. A crafted input will lead to a remote arbitrary...

CVE-2018-16554

The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because of inconsistency between float and double in a sprintf format string during TAGGPSALT handling...

Format string

The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because of inconsistency between float and double in a sprintf format string during TAGGPSALT handling...

DEBIAN-CVE-2018-16554

The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because of inconsistency between float and double in a sprintf format string during TAGGPSALT handling...

CVE-2018-16554

CVE-2018-16554 affects jhead 3.00, where ProcessGpsInfo in gpsinfo.c mishandles a sprintf format string for TAG_GPS_ALT due to float/double mismatch, enabling a remote attacker to cause a denial-of-service or unspecified impact via a crafted JPEG. Public advisories (openSUSE/SUSE patches) show th...

CVE-2018-15749

The Pulse Secure Desktop macOS 5.3RX before 5.3R5 and 9.0R1 has a Format String Vulnerability...

Format string

The Pulse Secure Desktop macOS 5.3RX before 5.3R5 and 9.0R1 has a Format String Vulnerability...

CVE-2018-15749

The Pulse Secure Desktop macOS 5.3RX before 5.3R5 and 9.0R1 has a Format String Vulnerability...

CVE-2018-15749

The Pulse Secure Desktop macOS 5.3RX before 5.3R5 and 9.0R1 has a Format String Vulnerability...

CVE-2018-15749

Pulse Secure Desktop for macOS is affected by CVE-2018-15749. The issue is a format string vulnerability in macOS clients versions 5.3RX prior to 5.3R5 and 9.0R1, enabling a local attacker to trigger information display (information that should not be accessible). Exploitation is local, and the i...

CVE-2018-14799

In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all versions prior to May 2018, the PageWriter device does not sanitize data entered by user. This can lead to buffer overflow or format string vulnerabilities...

CVE-2018-14799

In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all versions prior to May 2018, the PageWriter device does not sanitize data entered by user. This can lead to buffer overflow or format string vulnerabilities...

CVE-2018-14799

CVE-2018-14799 affects Philips PageWriter TC10/TC20/TC30/TC50/TC70 Cardiographs (all versions prior to May 2018). The vulnerability arises from improper input validation / unsanitized user data, enabling potential buffer overflow and format string issues within the device. Impact details in the c...