iccDEV 代码问题漏洞

iccDEV is an open source color configuration code library from the International Color Consortium ICC. A code issue vulnerability exists in iccDEV 2.3.1 and earlier versions, which stems from an integer overflow and underflow in the CIccXmlArrayType::ParseTextCountNum function, which could lead t...

SUSE CVE-2025-40291

In the Linux kernel, the following vulnerability has been resolved: iouring: fix regbuf vector size truncation There is a report of ioestimatebvecsize truncating the calculated number of segments that leads to corruption issues. Check it doesn't overflow "int"s used later. Rough but simple, can b...

EUVD-2019-11951

Malware in sbrugna...

EUVD-2018-3960

Malware in sbrugna...

EUVD-2020-24912

Malware in sbrugna...

EUVD-2021-2268

Malware in sbrugna...

EUVD-2018-5591

Malware in sbrugna...

In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concat_ws() SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string (e.g., 2MB or more), an integer overflow occurs in calculating the size of the result buffer, and thus malloc may not allocate enough memory.

...

Linux Distros Unpatched Vulnerability : CVE-2020-12135

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bson before 0.8 incorrectly uses int rather than sizet for many variables, parameters, and return values. In particular, the bsonensurespace parameter bytesNeed...

EulerOS 2.0 SP9 : xmlrpc-c (EulerOS-SA-2025-1067)

According to the versions of the xmlrpc-c package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XMLParseBuffer.CVE-2024-45490 An issue was...

PT-2024-26463 · FFmpeg +2 · Ffmpeg +2

Name of the Vulnerable Software and Affected Versions: FFmpeg version n6.1.1 Description: A potential security issue exists in FFmpeg due to insufficient validation of certain parameters when parsing Speex codec extradata. This could lead to integer overflow conditions, resulting in undefined...

The arithmetic operator can overflow

Lines of code Vulnerability details Impact It is possible to cause an integer overflow or underflow in the arithmetic operation. Description An overflow/underflow happens when an arithmetic operation reaches the maximum or minimum size of a type. For instance if a number is stored in the uint8...

PT-2019-6378 · Curl +1 · Curl +1

Name of the Vulnerable Software and Affected Versions: curl version 7.65.2 Description: The issue is related to an integer overflow vulnerability in the tool operate.c file of curl, which can occur when a large value is specified as the retry delay. This may cause a denial of service to associate...

PHP 4.3 - socket_iovec_alloc() Integer Overflow

PHP 4.3 - socketiovecalloc Integer Overflow source: https://www.securityfocus.com/bid/7187/info A vulnerability has been reported in PHP versions 4.3.1 and earlier. The problem occurs in the socketiovecalloc and may allow an attacker to corrupt memory. Specifically, the affected function fails to...