14 matches found
NanoMQ 资源管理错误漏洞
NanoMQ is a lightweight and fast MQTT Broker for IoT edge platforms open-sourced by EMQ USA. A resource management error vulnerability exists in NanoMQ versions prior to 0.24.2, which stems from a data contention issue with the subscription information list that could lead to a reuse crash after...
Kitware VTK 安全漏洞
Kitware VTK is a 3D image generation software from Kitware open source. A security vulnerability exists in Kitware VTK version 9.5.0, which stems from heap-release reuse when processing GLTF files, and could lead to accessing freed string members...
live555 Security Breach
Live555 is a cross-platform C++ open source project that provides a solution for streaming media, which implements support for standard streaming media transport protocols such as RTP/RTCP, RTSP, SIP, etc. A security vulnerability exists in live555 version number 2023.05.10, which stems from a...
WhatsApp Competitive Conditions Issue Vulnerability
WhatsApp is a suite of mobile applications from the American company WhatsApp that use the Internet to send text messages. The application uses contact information in a smartphone to find contacts using the software to send text, images, etc. A security vulnerability exists in WhatsApp that stems...
WhatsApp Competitive Conditions Issue Vulnerability
WhatsApp is a suite of mobile applications from the American company WhatsApp that use the Internet to send text messages. The application uses contact information in a smartphone to find contacts using the software to transmit text, images, etc. WhatsApp suffers from a security vulnerability tha...
Google Chrome 资源管理错误漏洞
Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome that stems from the presence of heap reuse after heap release...
tifig 资源管理错误漏洞
tifig is a Monostream open source fast HEIF image converter for thumbnails. A security vulnerability exists in tifig version v0.2.2, which stems from a heap-release reuse of its temInfoEntry function...
OpenSC 资源管理错误漏洞
OpenSC is an open source smart card tool and middleware. A resource management error vulnerability exists in scpkcs15freetokeninfo prior to OpenSC version 0.22.0, which stems from a heap multiple release issue found in scpkcs15freetokeninfo...
HDF5 Denial of Service Vulnerability (CNVD-2022-07232)
HDF5 is a suite of tools for managing and storing different types of data from HDF, Inc. The product supports managing, manipulating, viewing and analyzing data, and generating files in portable formats.A security vulnerability exists in HDF5 v1.13.1-1, which stems from a heap-release-after-reuse...
FFmpeg 资源管理错误漏洞
FFmpeg is a set of open source computer programs that can be used to record, convert, and stream digital audio and video under the LGPL or GPL license. avfreep function in libavutil/mem.c in FFmpeg version 4.2 is vulnerable to a heap-release post-reuse vulnerability. An attacker can exploit this...
FFmpeg 资源管理错误漏洞
FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video, and convert them to streams under the LGPL or GPL license. mpegmuxwritepacket function in libavformat/mpegenc.c in FFmpeg version 4.2 suffers from a heap-release post-reuse vulnerability...
ImageMagick memory misreference vulnerability (CNVD-2018-12311)
ImageMagick is a software for creating, editing, and compositing images that can read, convert, and write images in many formats. A memory misreference vulnerability exists in the ReadMATImage function in coders/mat.c in ImageMagick 7.0.7-36 Q16. An attacker can exploit this vulnerability with th...
Mozilla Firefox Mesa堆释放后重用漏洞
BUGTRAQ ID: 57197 CVECAN ID: CVE-2013-0763 Firefox是一款非常流行的开源WEB浏览器。SeaMonkey是开源的Web浏览器、邮件和新闻组客户端、IRC会话客户端和HTML编辑器。Thunderbird是一个邮件客户端,支持IMAP、POP邮件协议以及HTML邮件格式。 Mozilla Firefox 18, ESR 17.0.1的Mesa内存在重置WebGL画布时会触发堆释放后重用漏洞,可导致远程代码执行。 0 Mozilla Firefox 18.0 Mozilla Firefox ESR 17.0.1 Mozilla Firefox...
Mozilla Firefox gfxTextRun::ShrinkToLigatureBoundaries堆释放后重用漏洞
BUGTRAQ ID: 57198 CVECAN ID: CVE-2013-0771 Firefox是一款非常流行的开源WEB浏览器。SeaMonkey是开源的Web浏览器、邮件和新闻组客户端、IRC会话客户端和HTML编辑器。Thunderbird是一个邮件客户端,支持IMAP、POP邮件协议以及HTML邮件格式。 Mozilla Firefox 18, ESR 17.0.1的gfxTextRun::ShrinkToLigatureBoundaries内存在堆释放后重用漏洞,可导致远程代码执行。 0 Mozilla Firefox 18.0 Mozilla Firefox ESR...