4161 matches found
UBUNTU-CVE-2024-54028
An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of catdoc 0.95. A specially crafted malformed file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2024-54028
CVE-2024-54028 is a memory corruption vulnerability in catdoc 0.95, caused by an integer underflow in the OLE Document DIFAT Parser. A specially crafted file can trigger heap-based memory corruption. Reports in Debian/Mageia advisories indicate fixes are available in updated catdoc packages (e.g....
CVE-2024-54028
An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of catdoc 0.95. A specially crafted malformed file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2024-54028
An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of catdoc 0.95. A specially crafted malformed file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2024-54028
An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of catdoc 0.95. A specially crafted malformed file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2025-49112
A flaw was found in valkey. An integer underflow in the setDeferredReply function of networking.c allows an adjacent network attacker to potentially trigger unexpected behavior. This underflow occurs when calculating prev-size - prev-used, leading to a condition that may result in a denial of...
CVE-2025-49112
setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev-size - prev-used...
CVE-2025-49112
setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev-size - prev-used...
CVE-2025-49112
CVE-2025-49112 affects Valkey prior to version 8.0.3-3 (and through 8.1.1 in the reports) with an integer underflow in the function setDeferredReply in networking.c. The underlying issue is an underflow of prev->size - prev->used, which could impact availability as described in the public e...
CVE-2025-49112
setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev-size - prev-used...
Catdoc 数字错误漏洞
Catdoc is a program that reads MS-Word files and prints them readably, by the individual developer Pete Warden in the United States. A security vulnerability exists in Catdoc version 0.95 that stems from an integer underflow in the OLE document DIFAT parser, which could lead to heap memory...
libsoup: Integer Underflow in soup_multipart_new_from_message() Leading to Denial of Service in libsoup
A flaw was found in the soupmultipartnewfrommessage function of the libsoup HTTP library, which is commonly used by GNOME and other applications to handle web communications. The issue occurs when the library processes specially crafted multipart messages. Due to improper validation, an internal...
Important: Red Hat Security Advisory: libsoup security update
An update for libsoup is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
RHEL 8 : libsoup (RHSA-2025:8252)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:8252 advisory. The libsoup packages provide an HTTP client and server library for GNOME. Security Fixes: libsoup: Heap buffer over-read in...
libsoup: Integer Underflow in soup_multipart_new_from_message() Leading to Denial of Service in libsoup
A flaw was found in the soupmultipartnewfrommessage function of the libsoup HTTP library, which is commonly used by GNOME and other applications to handle web communications. The issue occurs when the library processes specially crafted multipart messages. Due to improper validation, an internal...
libsoup: Integer Underflow in soup_multipart_new_from_message() Leading to Denial of Service in libsoup
A flaw was found in the soupmultipartnewfrommessage function of the libsoup HTTP library, which is commonly used by GNOME and other applications to handle web communications. The issue occurs when the library processes specially crafted multipart messages. Due to improper validation, an internal...
Important: Red Hat Security Advisory: libsoup security update
An update for libsoup is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
libsoup: Integer Underflow in soup_multipart_new_from_message() Leading to Denial of Service in libsoup
A flaw was found in the soupmultipartnewfrommessage function of the libsoup HTTP library, which is commonly used by GNOME and other applications to handle web communications. The issue occurs when the library processes specially crafted multipart messages. Due to improper validation, an internal...
libsoup: Integer Underflow in soup_multipart_new_from_message() Leading to Denial of Service in libsoup
A flaw was found in the soupmultipartnewfrommessage function of the libsoup HTTP library, which is commonly used by GNOME and other applications to handle web communications. The issue occurs when the library processes specially crafted multipart messages. Due to improper validation, an internal...
libsoup: Integer Underflow in soup_multipart_new_from_message() Leading to Denial of Service in libsoup
A flaw was found in the soupmultipartnewfrommessage function of the libsoup HTTP library, which is commonly used by GNOME and other applications to handle web communications. The issue occurs when the library processes specially crafted multipart messages. Due to improper validation, an internal...