Denial Of Service (DoS)

github.com/ethereum/go-ethereum is vulnerable to denial of service DoS attacks. The library contains an integer signedness error in an array index, allowing a malicious user to pass a packet with a -1 query.Skip value to crash the application...

Integer overflow

The GetBlockHeadersMsg handler in the LES protocol implementation in Go Ethereum aka geth before 1.8.11 may lead to an access violation because of an integer signedness error for the array index, which allows attackers to launch a Denial of Service attack by sending a packet with a -1 query.Skip...

Oracle Linux 6 : kernel (ELSA-2018-1854)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-1854 advisory. - powerpc 64s: Add support for a store forwarding barrier at kernel entry/exit Mauricio Oliveira 1581053 CVE-2018-3639 - x86 specctrl: Fix late microco...

SUSE-SU-2018:0806-1 Security update for php53

This update for php53 fixes several issues. These security issues were fixed: - CVE-2016-10712: In PHP all of the return values of streamgetmetadata could be controlled if the input can be controlled e.g., during file uploads. bsc1080234 - CVE-2018-5712: Prevent reflected XSS on the PHAR 404 erro...

Debian: Security Advisory (DLA-1305-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Medium: php56, php70, php71

Issue Overview: Reflected XSS in .phar 404 page An issue was discovered in PHP; there is Reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file. CVE-2018-5712 Denial of Service DoS via infinite loop in libgd gdImageCreateFromGifCtx function in ext/gd/libgd/gdgifin.c Th...

CVE-2018-6412

In the function sbusfbioctlhelper in drivers/video/fbdev/sbuslib.c in the Linux kernel, up to and including 4.15, an integer signedness error allows arbitrary information leakage for the FBIOPUTCMAPSPARC and FBIOGETCMAPSPARC commands...

CVE-2018-6412

CVE-2018-6412 affects the Linux kernel sbusfb_ioctl_helper() in drivers/video/fbdev/sbuslib.c up to and including 4.15. It introduces an integer signedness error that could allow an attacker to leak arbitrary information via the FBIOPUTCMAP_SPARC and FBIOGETCMAP_SPARC ioctls, impacting confidenti...

SUSE-SU-2018:0308-1 Security update for php7

This update for php7 fixes several issues. These security issues were fixed: - CVE-2018-5712: Prevent reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file that allowed for information disclosure bsc1076220. - CVE-2018-5711: Prevent integer signedness error that could...

SUSE-SU-2018:0260-1 Security update for gd

This update for gd fixes one issues. This security issue was fixed: - CVE-2018-5711: Prevent integer signedness error that could have lead to an infinite loop via a crafted GIF file allowing for DoS bsc1076391...

SUSE SLES11 Security Update : gd (SUSE-SU-2018:0235-1)

This update for gd fixes several issues. This security issue was fixed : - CVE-2018-5711: Prevent integer signedness error that could have lead to an infinite loop via a crafted GIF file allowing for DoS bsc1076391 The update package also includes non-security fixes. See advisory for details. Not...

Artifex MuJS 1.0.2 - Denial of Service

Artifex MuJS 1.0.2 - Denial of Service Hello, I want to submit the following bug: The jsstrtod function in jsdtoa.c in Artifex MuJS through 1.0.2 has an integer overflow because of incorrect exponent validation. Exploit Title: Integer signedness error leading to Out-of-bounds read that causes cra...

SUSE-SU-2018:0235-1 Security update for gd

This update for gd fixes several issues. This security issue was fixed: - CVE-2018-5711: Prevent integer signedness error that could have lead to an infinite loop via a crafted GIF file allowing for DoS bsc1076391 This non-security issue was fixed: - Fixed gd2togif error message bsc1025223...

Debian: Security Advisory (DLA-949-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PHP < 5.6.33, 7.x < 7.0.27, 7.1.x < 7.1.13, 7.2.x < 7.2.1 Multiple Vulnerabilities - Windows

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

CVE-2018-5711

gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1, has an integer signedness error that leads to an infinite loop via a crafted GIF file, as demonstrated by a call to the imagecreatefromgif or...

CVE-2018-5711

The vulnerability CVE-2018-5711 affects the GD Graphics Library (libgd2) as used by PHP. Affected GIF parsing code in gd_gif_in.c suffers an integer signedness error that can cause an infinite loop when processing crafted GIF data via imagecreatefromgif or imagecreatefromstring, potentially leadi...

CVE-2018-5711

gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1, has an integer signedness error that leads to an infinite loop via a crafted GIF file, as demonstrated by a call to the imagecreatefromgif or...

MiniUPnP MiniUPnPc < 2.0 - Remote Denial of Service Vulnerability

Exploit for multiple platform in category dos / poc VuNote ====== Author: Ref: https://github.com/tintinweb/pub/tree/master/pocs/cve-2017-8798 Version: 0.6 Date: May 1st, 2017 Tag: miniupnpc getHTTPResponse chunked encoding integer signedness error Overview -------- Name: miniupnpc Vendor: Thomas...

CVE-2018-5251

In libming 0.4.8, there is an integer signedness error vulnerability left shift of a negative value in the readSBits function util/read.c. Remote attackers can leverage this vulnerability to cause a denial of service via a crafted swf file...