Juniper Networks Junos OS Evolved 安全漏洞

Juniper Networks Junos OS Evolved is an upgraded version of Junos OS from Juniper Networks. Vulnerabilities existed in versions prior to Junos OS Evolved on the PTX Series 22.4R3-S9-EVO, 23.2R2-S6-EVO, 23.4R2-S7-EVO, 24.2R2-S4-EVO, 24.4R2-S2-EVO, and versions like 25.2R1-S2-EVO and 25.2R2-EVO...

CVE-2012-4355

TCPIPSStory.dll in Sielco Sistemi Winlog Pro SCADA before 2.07.18 and Winlog Lite SCADA before 2.07.18 allows remote attackers to execute arbitrary code via a port-46824 TCP packet with a crafted negative integer after the opcode, triggering incorrect function-pointer processing that can lead to ...

CVE-2023-52856

CVE-2023-52856 relates to the Linux kernel drm/bridge lt8912b path. The lt8912b driver’s lt8912_bridge_detach() called drm_connector_unregister() and drm_connector_cleanup(), but these are only for connectors registered via drm_connector_register(); the driver’s destroy hook is drm_connector_clea...

Stack overflow

A stack-based buffer overflow vulnerability in /bin/webs binary in Edimax BR6478AC V2 firmware veraion v1.23 allows attackers to overwrite other values located on the stack due to an incorrect use of the strcpy function...

INCORRECT FUNCTION CALLS

Lines of code Vulnerability details Impact In Vault.sol, WithdrawProxy.sol and PublicVault.sol, name is making an incorrect external call to return its output variable. Apparently, it is calling ERC20asset.symbol instead of ERC20asset.name. Devoid of an accurate name description, this could lead ...

Incorrect _isAuthorized function logic

Lines of code Vulnerability details Summary The isAuthorized function in the CrossChainExecutorOptimism contract compares the message sender address to the address of the crossDomainMessenger contract, but it should be comparing the xDomainMessageSender value returned by the crossDomainMessenger...

CVE-2022-32990

A vulnerability was found in GIMP when loading a specially crafted XCF file. Due to an incorrect function return value, GIMP may access memory outside its address space, resulting in a denial of service. Mitigation Do not load untrusted XCF files...

OSV-2022-394 Incorrect-function-pointer-type in cv::split

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47190 Crash type: Incorrect-function-pointer-type Crash state: cv::split cv::split TestSplitAndMerge...

Controller.setStrategy tries to withdraw JPEG token with incorrect function strategy.withdraw(address), leading to certain revert and renders setStrategy unuseable

Lines of code Vulnerability details Impact Whenever STRATEGISTs want to switch from currently used strategy to another one, they are required to call the Controller.setStrategy function. This function is responsible for first withdrawing CRV and JPEG tokens from strategy contract into vault, then...

OSV-2022-188 Incorrect-function-pointer-type in cv::split

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44937 Crash type: Incorrect-function-pointer-type Crash state: cv::split cv::split TestSplitAndMerge...

CVE-2021-33622

Sylabs Singularity 3.5.x and 3.6.x, and SingularityPRO before 3.5-8, has an Incorrect Check of a Function's Return Value...

grok:grk_decompress_fuzzer: Incorrect-function-pointer-type in grk_read_header

Detailed Report: https://oss-fuzz.com/testcase?key=6269912481005568 Project: grok Fuzzing Engine: libFuzzer Fuzz Target: grkdecompressfuzzer Job Type: libfuzzerubsangrok Platform Id: linux Crash Type: Incorrect-function-pointer-type Crash Address: Crash State: grkreadheader grkdecompressfuzzer.cp...

grok:grk_decompress_fuzzer: Incorrect-function-pointer-type in grk_read_header

Detailed Report: https://oss-fuzz.com/testcase?key=5709008204988416 Project: grok Fuzzing Engine: libFuzzer Fuzz Target: grkdecompressfuzzer Job Type: libfuzzerubsangrok Platform Id: linux Crash Type: Incorrect-function-pointer-type Crash Address: Crash State: grkreadheader grkdecompressfuzzer.cp...

Information Disclosure

kernel-rt is vulnerable to information disclosure. The vulnerability exists as the report API in the crypto user configuration API uses an incorrect C library function for copying strings...

grpc/api_fuzzer: Incorrect-function-pointer-type in grpc_core::AresDnsResolver::StartResolvingLocked

Project: https://github.com/grpc/grpc.git Detailed report: https://oss-fuzz.com/testcase?key=5752853455437824 Project: grpc Fuzzer: libFuzzergrpcapifuzzer Fuzz target binary: apifuzzer Job Type: libfuzzerubsangrpc Platform Id: linux Crash Type: Incorrect-function-pointer-type Crash Address: Crash...

yara/rules_fuzzer: Incorrect-function-pointer-type in _start

Project: https://github.com/VirusTotal/yara.git Detailed report: https://oss-fuzz.com/testcase?key=4674537548414976 Project: yara Fuzzer: libFuzzeryararulesfuzzer Fuzz target binary: rulesfuzzer Job Type: libfuzzerubsanyara Platform Id: linux Crash Type: Incorrect-function-pointer-type Crash...

boringssl: Incorrect-function-pointer-type in bssl::ext_npn_parse_serverhello

Project: https://boringssl.googlesource.com/boringssl Detailed report: https://oss-fuzz.com/testcase?key=6121765925289984 Project: boringssl Fuzzer: libFuzzerboringsslclient Fuzz target binary: client Job Type: libfuzzerubsanboringssl Platform Id: linux Crash Type: Incorrect-function-pointer-type...

boringssl: Incorrect-function-pointer-type in bssl::ssl_negotiate_alpn

Project: https://boringssl.googlesource.com/boringssl Detailed report: https://oss-fuzz.com/testcase?key=6088352019251200 Project: boringssl Fuzzer: libFuzzerboringsslserver Fuzz target binary: server Job Type: libfuzzerubsanboringssl Platform Id: linux Crash Type: Incorrect-function-pointer-type...

gdal: Incorrect-function-pointer-type in OGRCurve::CastToLineString

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5600546717171712 Project: gdal Fuzzer: libFuzzergdalogrfuzzer Fuzz target binary: ogrfuzzer Job Type: libfuzzerubsangdal Platform Id: linux Crash Type: Incorrect-function-pointer-type Crash Address: Cras...

SUSE: Security Advisory for kernel (SUSE-SU-2014:1138-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...