16973 matches found
CVE-2022-35469
OTFCC v0.10.4 was discovered to contain a segmentation violation via /x8664-linux-gnu/libc.so.6+0xbb384...
Input validation
OTFCC v0.10.4 was discovered to contain a segmentation violation via /x8664-linux-gnu/libc.so.6+0xbb384...
CVE-2022-35469
OTFCC v0.10.4 was discovered to contain a segmentation violation via /x8664-linux-gnu/libc.so.6+0xbb384...
CVE-2022-35469
OTFCC v0.10.4 was discovered to contain a segmentation violation via /x8664-linux-gnu/libc.so.6+0xbb384...
The th_read() function doesn’t free a variable t->th_buf.gnu_longlink after allocating memory which may cause a memory leak.
...
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname causing an out-of-bounds read.
...
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink causing an out-of-bounds read.
...
GLSA-202208-24 : GNU C Library: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202208-24 GNU C Library: Multiple Vulnerabilities - The wordexp function in the GNU C Library aka glibc through 2.33 may crash or read arbitrary memory in parseparam in posix/wordexp.c when called with an untrusted, crafted patter...
GNU Binutils: Multiple Vulnerabilities
Background The GNU Binutils are a collection of tools to create, modify and analyse binary files. Many of the files use BFD, the Binary File Descriptor library, to do low-level manipulation. Description Multiple vulnerabilities have been discovered in GNU Binutils. Please review the CVE identifie...
Fedora: Security Advisory for golang (FEDORA-2022-1f829990f0)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for libnbd (SUSE-SU-2022:2754-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
DEBIAN-CVE-2021-33643
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc0 for a variable gnulonglink, causing an out-of-bounds read...
AZL-10542 CVE-2021-33643 affecting package libtar for versions less than 1.2.20-10
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc0 for a variable gnulonglink, causing an out-of-bounds read...
AZL-10544 CVE-2021-33645 affecting package libtar for versions less than 1.2.20-10
The thread function doesn’t free a variable t-thbuf.gnulonglink after allocating memory, which may cause a memory leak...
AZL-34949 CVE-2021-33646 affecting package libtar for versions less than 1.2.20-11
The thread function doesn’t free a variable t-thbuf.gnulongname after allocating memory, which may cause a memory leak...
DEBIAN-CVE-2021-33644
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc0 for a variable gnulongname, causing an out-of-bounds read...
DEBIAN-CVE-2021-33646
The thread function doesn’t free a variable t-thbuf.gnulongname after allocating memory, which may cause a memory leak...
DEBIAN-CVE-2021-33645
The thread function doesn’t free a variable t-thbuf.gnulonglink after allocating memory, which may cause a memory leak...
UBUNTU-CVE-2021-33644
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc0 for a variable gnulongname, causing an out-of-bounds read...
UBUNTU-CVE-2021-33645
The thread function doesn’t free a variable t-thbuf.gnulonglink after allocating memory, which may cause a memory leak...