SUSE CVE-2010-4713

Integer signedness error in gwia.exe in GroupWise Internet Agent GWIA in Novell GroupWise before 8.02HP allows remote attackers to execute arbitrary code via a signed integer value in the Content-Type header...

CVE-2021-31227

An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in the code that parses the HTTP POST request, due to an incorrect signed integer comparison. This vulnerability requires the attacker to send a malformed HTTP packet with a negative Content-Length,...

EUVD-2005-0483

Malware in sbrugna...

EUVD-2007-3949

Malware in sbrugna...

EUVD-2014-1186

Malware in sbrugna...

CVE-2023-52979

...

CVE-2019-7310

In Poppler 0.73.0, a heap-based buffer over-read due to an integer signedness error in the XRef::getEntry function in XRef.cc allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted PDF document, as demonstrated by pdftocairo...

CVE-2017-9186

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:326:17...

Mozilla Thunderbird < 24.1.1 NSS and NSPR Multiple Vulnerabilities

The installed version of Thunderbird is earlier than 24.1.1 and is, therefore, potentially affected the following vulnerabilities: - An error exists related to handling input greater than half the maximum size of the 'PRUint32' value. CVE-2013-1741 - An error exists in the 'NullCipher' function i...

kernel: possible kernel oops from user MSS

The dotcpsetsockopt function in net/ipv4/tcp.c in the Linux kernel before 2.6.37-rc2 does not properly restrict TCPMAXSEG aka MSS values, which allows local users to cause a denial of service OOPS via a setsockopt call that specifies a small value, leading to a divide-by-zero error or incorrect u...

kernel: possible kernel oops from user MSS

The dotcpsetsockopt function in net/ipv4/tcp.c in the Linux kernel before 2.6.37-rc2 does not properly restrict TCPMAXSEG aka MSS values, which allows local users to cause a denial of service OOPS via a setsockopt call that specifies a small value, leading to a divide-by-zero error or incorrect u...

openoffice.org security and bug fix update

3.2.1-19.3.0.1.el60.5 - Replaced RedHat colors with Oracle colors, OOOVENDOR with Oracle Corp., and the filename redhat.soc with oracle.soc in specfile bug10911 1:3.2.1-19.6.5 - Related: rhbz671087 set right file permissions 1:3.2.1-19.6.4 - Resolves: rhbz671087 file locks are not created with...

CVE-2009-0385

Integer signedness error in the fourxmreadheader function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote attackers to execute arbitrary code via a malformed 4X movie file with a large currenttrack value, which triggers a NULL pointer dereference...

PT-2008-3794 · Apple · Iphone +2

Name of the Vulnerable Software and Affected Versions: Safari versions prior to 2.0 on Apple iPhone Safari versions prior to 2.0 on iPod touch Description: The issue is related to an integer signedness error that can be triggered via JavaScript array indices, leading to an out-of-bounds access...

CVE-2007-1889

Integer signedness error in the zendmmallocint function in the Zend Memory Manager in PHP 5.2.0 allows remote attackers to execute arbitrary code via a large emalloc request, related to an incorrect signed long cast, as demonstrated via the HTTP SOAP client in PHP, and via a call to msgreceive wi...

gaim -- MSN Remote DoS vulnerability

The GAIM team reports: Remote attackers can cause a denial of service crash via a malformed MSN message that leads to a memory allocation of a large size, possibly due to an integer signedness error...

CVE-2005-1934

GAIM (the multi-protocol instant messaging client) is affected. CVE-2005-1934 arises from processing a malformed MSN message that triggers an overly large memory allocation, likely due to an integer signedness error, causing the application to crash (denial of service). Multiple connected advisor...

CVE-2004-0228

Integer signedness error in the cpufreq proc handler cpufreqprocctl in Linux kernel 2.6 allows local users to gain privileges...

CVE-2002-2188

OpenBSD before 3.2 allows local users to cause a denial of service kernel crash via a call to getrlimit2 with invalid arguments, possibly due to an integer signedness error...