678 matches found
EulerOS 2.0 SP11 : dnsmasq (EulerOS-SA-2024-2550)
According to the versions of the dnsmasq package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : dnsmasq 2.9 is vulnerable to Integer Overflow via forwardquery.CVE-2023-49441 Tenable has extracted the preceding description block directly from...
Integer Overflow
tensorflow, tensorflowcpu and tensorflowgpu are vulnerable to Integer Overflow. The vulnerability is caused due to a missing validation where TFLite implementation of concatenation is vulnerable to an integer overflow issue. An attacker can craft a model such that the dimensions of one of the...
Huawei EulerOS: Security Advisory for libcap (EulerOS-SA-2024-2278)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-41184
In the vrrpipsetshandler handler fglobalparser.c of keepalived through 2.3.1, an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user...
CVE-2024-34139
Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6866-2)
The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6866-2 advisory. It was discovered that the ext4 file system implementation in the Linux kernel did not properly validate data state on write operations. An...
[SECURITY] [DSA 5722-1] libvpx security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5722-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 26, 2024 https://www.debian.org/security/faq -...
Updated aom packages fix security vulnerability
Integer overflow in libaom internal function imgallochelper can lead to heap buffer overflow. This function can be reached via 3 callers: Calling aomimgalloc with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and so...
CVE-2023-49441
dnsmasq 2.9 is vulnerable to Integer Overflow via forwardquery...
Huawei EulerOS: Security Advisory for libtommath (EulerOS-SA-2024-1688)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RHEL 7 : pcre2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - pcre2: Heap-based buffer overflow in pcre2test.c CVE-2017-8786 - Integer overflow vulnerability in...
QNAP QuTS hero Integer Overflow Vulnerability (QSA-24-16)
QNAP QuTS hero is prone to an integer overflow vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qutshero";...
SUSE-SU-2024:0973-1 Security update for tiff
This update for tiff fixes the following issues: - CVE-2023-41175: Fixed potential integer overflow in raw2tiff.c bsc1214686. - CVE-2023-38288: Fixed potential integer overflow in raw2tiff.c bsc1213590. - CVE-2023-40745: Fixed integer overflow in tiffcp.c bsc1214687...
The vulnerability of the GGUF_TYPE_ARRAY/GGUF_TYPE_STRING component in the llama.cpp file of the GGUF library allows a attacker to execute arbitrary code.
The vulnerability of the GGUFTYPEARRAY/GGUFTYPESTRING component in the llama.cpp file of the GGUF library is related to integer overflow. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
openSUSE: Security Advisory for libksba (SUSE-SU-2023:0056-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for ffmpeg (SUSE-SU-2023:3818-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to protobuf-c Integer Overflow or Wraparound vulnerabilitiy [ CVE-2022-48468]
Summary Potential protobuf-c Integer Overflow or Wraparound vulnerabilitiy have been identified that may affect IBM Watson Assistant for IBM Cloud Pak for Data. The vulnerability have been addressed. Refer to details for additional information. CVE-2022-48468 Vulnerability Details...
CVE-2024-22861
Integer overflow vulnerability in FFmpeg before n6.1, allows attackers to cause a denial of service DoS via the avcodec/osq module...
SUSE-SU-2024:0138-1 Security update for libqt5-qtbase
This update for libqt5-qtbase fixes the following issues: - CVE-2023-51714: Fixed an incorrect integer overflow check bsc1218413...
EulerOS Virtualization 2.9.1 : pcre2 (EulerOS-SA-2023-3090)
According to the versions of the pcre2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Integer overflow vulnerability in pcre2test before 10.41 allows attackers to cause a denial of service or other unspecified impacts...