Astra Linux – Vulnerability in gst-plugins-good1.0

GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability, but the attack vectors may vary...

Astra Linux – Vulnerability in libsdl2

SDL Simple DirectMediaLayer from version 2.0.12 has an integer overflow issue, which leads to heap corruption when using SDLBlitCopy in the video/SDLblitcopy.c file, due to a specially crafted .BMP file...

Astra Linux – Vulnerability in Pixman

In libpixman in Pixman before version 0.42.2, there is an out-of-bounds write vulnerability also known as a heap-based buffer overflow in the rasterizeedges8 function, due to an integer overflow in the pixmansamplefloory function...

Astra Linux – Vulnerability in htmldoc

Integer overflow in htmldoc 1.9.11 and earlier may allow attackers to execute arbitrary code and cause a denial of service, similar to CVE-2017-9181...

Astra Linux – Vulnerability in open-iscsi

A issue was discovered in Contiki through version 3.0. An integer overflow exists in the uIP TCP/IP stack component when parsing TCP MSS options for IPv4 network packets in the uipprocess function in net/ipv4/uip.c...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: NFSD: prevents integer overflow on 32-bit systems. On a 32-bit system, the operation “len sizeofp” can lead to an integer overflow...

Astra Linux - уязвимость в chromium

Integer overflow in Codecs in Google Chrome prior to version 146.0.7680.178 allowed a remote attacker to perform arbitrary read/write operations through a crafted HTML page. Chromium security severity: High...

Astra Linux – Vulnerability in ffmpeg

An integer overflow vulnerability exists in the avtimecodemakestring function in libavutil/timecode.c within FFmpeg version 4.3.2. This vulnerability allows local attackers to cause a Denial-of-Service DoS attack through a crafted .mov file...

Astra Linux – Vulnerability in exempi

The XMP Toolkit SDK version 2020.1 and earlier is affected by an Integer Overflow vulnerability that may lead to application-level denial of service in the context of the current user. Exploitation requires user interaction, meaning that the victim must open a specially crafted file...

Astra Linux – Vulnerability in unbound

Unbound before version 1.9.5 allows for an integer overflow in the size calculation in dnscrypt/dnscrypt.c. NOTE: The vendor denies that this is a vulnerability. Although the code may be vulnerable, an active Unbound installation cannot be exploited remotely or locally...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Fixed an integer overflow in radeoncs parserinit. The type of size is unsigned. If size is 0x40000000, there will be an integer overflow. After size = sizeofuint32t, size will become zero, which may lead to referencin...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In rndisqueryoid in drivers/net/wireless/rndiswlan.c within the Linux kernel, from version 6.1.5 onwards, there is an integer overflow in a mathematical operation...

Astra Linux – Vulnerability in ffmpeg5

In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module, there is a potential security vulnerability due to insufficient validation of certain parameters when parsing Speex codec extradata. This vulnerability could lead to integer overflow conditions, potentially resulting in...

Astra Linux – Vulnerability in gmp

The GNU Multiple Precision Arithmetic Arithmetic Library GMP version up to 6.2.1 has an integer overflow issue in the mpz/inpraw.c file, which can lead to a buffer overflow due to malicious input. This results in a segmentation fault on 32-bit platforms...

Astra Linux – Vulnerability in Heimdal, KRB5

PAC parsing in MIT Kerberos 5 also known as krb5 before versions 1.19.4 and 1.20.x before version 1.20.1 contains integer overflows that may lead to remote code execution in the KDC, kadmind, or a GSS or Kerberos application server on 32-bit platforms. This results in a heap-based buffer overflow...

Astra Linux – Vulnerability in TIF format

A vulnerability has been discovered in LibTIFF. It has been classified as critical. This vulnerability affects the TIFFReadRGBATileExt function in the file libtiff/tifgetimage.c. Manipulation of this function can lead to integer overflow. The attack can be initiated remotely. The exploit has been...

Astra Linux – Vulnerability in Linux

The fs/seqfile.c file in the Linux kernel versions 3.16 through 5.13.x, prior to 5.13.4, does not properly restrict seq buffer allocations. This results in an integer overflow, an Out-of-bounds Write, and an escalation of privileges to the root user by an unprivileged user, identified as...

Astra Linux – Vulnerabilities in Firefox, Thunderbird, Expat, LibXMLTok

The issue with integer overflow occurs in storeAtts in the xmlparse.c file, within the Expat library also known as libexpat, before version 2.4.3...

Astra Linux – Vulnerability in libksba

Before version 1.6.3, Libksba was vulnerable to an integer overflow vulnerability in the CRL signature parser...

Astra Linux – Vulnerability in Vim

Integer overflow or wrap-around in the GitHub repository for vim/vim before version 9.0.1532...