Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There are security vulnerabilities in the Linux kernel, particularly related to improper handling of integer operations and out-of-bounds access during read and write...

EUVD-2013-5016

Malware in sbrugna...

EUVD-2010-3253

Malware in sbrugna...

EUVD-2011-0513

Malware in sbrugna...

Adobe InDesign Desktop Digital Error Vulnerability

Adobe InDesign Desktop is desktop publishing software developed by Adobe, mainly used for the typography of print and digital publications, including books, magazines, newspapers, posters, e-books and so on. Adobe InDesign Desktop suffers from a numeric error vulnerability that stems from imprope...

Adobe InDesign Desktop 数字错误漏洞

Adobe InDesign Desktop is desktop publishing software developed by Adobe, mainly used for the typography of print and digital publications, including books, magazines, newspapers, posters, e-books and so on. Adobe InDesign Desktop suffers from a numeric error vulnerability that stems from imprope...

CVE-2013-5176

The kernel in Apple Mac OS X before 10.9 does not properly handle integer values during unspecified tty device operations, which allows local users to cause a denial of service system hang by triggering a truncation error...

php: Use after free due to php_filter_float() failing for ints

A flaw was found in PHP. The vulnerability occurs due to the malformed phpfilterfloat function and leads to a use-after-free vulnerability. This flaw allows an attacker to inject a malicious file, leading to a crash or a Segmentation fault...

CVE-2024-55565

CVE-2024-55565 affects the Nano ID library. The issue is that nanoid mishandles non-integer values. The fixed versions noted are 5.0.9 and 3.3.8. There are no provided exploit details beyond this description. Affected scope includes Nano ID users relying on default generation behavior that could ...

CVE-2024-55565

nanoid aka Nano ID before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version...

Invalid Error Reverts in Some Cases

Lines of code Vulnerability details Description: While reviewing the code, I noticed that there is a potential issue with the error revert conditions in the getPointGivenXandUtility and getPointGivenYandUtility functions. The error handling mechanism in these functions might not be functioning as...

freerdp: heap buffer overflow in urbdrc channel

An out-of-bounds read vulnerability exists due to a boundary condition within the urbdrc channel. Attempting an integer addition on narrow types leads to the allocation of a buffer too small to hold the data written. A malicious server can trick a FreeRDP based client to read out-of-bound data an...

SUSE CVE-2012-0769

Adobe Flash Player before 10.3.183.16 and 11.x before 11.1.102.63 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.7 on Android 2.x and 3.x; and before 11.1.115.7 on Android 4.x does not properly handle integers, which allows attackers to obtain sensitive information via unspecified...

SUSE CVE-2015-2190

epan/proto.c in Wireshark 1.12.x before 1.12.4 does not properly handle integer data types greater than 32 bits in size, which allows remote attackers to cause a denial of service assertion failure and application exit via a crafted packet that is improperly handled by the LLDP dissector...

SUSE CVE-2016-5355

wiretap/toshiba.c in the Toshiba file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service application crash via a crafted file...

Mercurial mishandles integer addition and subtraction

mpatch.c in Mercurial before 4.6.1 mishandles integer addition and subtraction, aka OVE-20180430-0002...

The vulnerability of the compiler of the protobuf serialization library allows a hacker to execute arbitrary code.

The vulnerability of the protobuf serialization library compiler is related to an error in the processing of integer variables. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Impress module in the OpenOffice office package allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Impress module in the OpenOffice office package is related to incorrect handling of integer values. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the mms_ReceiveCommand function (modules/access/mms/mmstu.c) in the VideoLAN VLC media player software allows a hacker to execute arbitrary code.

The vulnerability of the mmsReceiveCommand function in the VideoLAN VLC media player’s modules/access/mms/mmstu.c file is related to integer handling errors. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

Denial Of Service (DoS)

libjasper.so is vulnerable to denial of service DoS. Failure to properly handle an integer sent via a request to the JPC bitstream code allows an attacker to crash the application...