146 matches found
EUVD-2018-10245
Malware in sbrugna...
EUVD-2018-12918
Malware in sbrugna...
EUVD-2005-0115
Malware in sbrugna...
EUVD-2018-10043
Malware in sbrugna...
DEBIAN-CVE-2022-50320
In the Linux kernel, the following vulnerability has been resolved: ACPI: tables: FPDT: Don't call acpiosmapmemory on invalid phys address On a Packard Bell Dot SC Intel Atom N2600 model there is a FPDT table which contains invalid physical addresses, with high bits set which fall outside the ran...
CVE-2020-27797
An invalid memory address reference was discovered in the elflookup function in plxelf.cpp in UPX 4.0.0 via a crafted Mach-O file...
Security Bulletin: Multiple vulnerabilities in IBM Storage Defender – Data Protect
Summary There are multiple vulnerabilities in Open Source packages that affect IBM Storage Defender – Data Protect. These vulnerabilities can result in runtime errors, denial of service, remote code execution, arbitrary command execution, bypass of security restrictions, incorrect file permission...
Linux Distros Unpatched Vulnerability : CVE-2018-18520
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An Invalid Memory Address Dereference exists in the function elfend in libelf in elfutils through v0.174. Although eu-size is intended to support ar files insid...
fast-fault has a segmentation fault due to lack of bound check
In this case, the "fastfloat::common::AsciiStr::first" method within the "AsciiStr" struct uses the unsafe keyword to reading from memory without performing bounds checking. Specifically, it directly dereferences a pointer offset by "self.ptr". Because of the above reason, the method accesses...
CVE-2024-48426
A segmentation fault SEGV was detected in the SortByPTypeProcess::Execute function in the Assimp library during fuzz testing with AddressSanitizer. The crash occurred due to a read access to an invalid memory address 0x1000c9714971...
CVE-2024-48426
A segmentation fault SEGV was detected in the SortByPTypeProcess::Execute function in the Assimp library during fuzz testing with AddressSanitizer. The crash occurred due to a read access to an invalid memory address 0x1000c9714971...
assimp 安全漏洞
assimp is an assimp open source library. It is used to import and export various 3D model formats. A security vulnerability exists in assimp that stems from allowing read access to an invalid memory address 0x1000c9714971...
CVE-2024-48426
The connected documents describe CVE-2024-48426 affecting the Assimp library, specifically a segmentation fault in SortByPTypeProcess::Execute triggered by a read access to an invalid memory address during fuzz testing with AddressSanitizer (address 0x1000c9714971). Impact is crash of the applica...
CVE-2024-48426
A segmentation fault SEGV was detected in the SortByPTypeProcess::Execute function in the Assimp library during fuzz testing with AddressSanitizer. The crash occurred due to a read access to an invalid memory address 0x1000c9714971...
AMD Graphics Driver 安全漏洞
AMD Graphics Driver is an integrated graphics driver from Ultraviolet Semiconductor AMD. A security vulnerability exists in AMD Graphics Driver that stems from insufficient DRAM address validation, which could allow a privileged attacker to read from an invalid DRAM address into SRAM, resulting i...
`out_reference::Out::from_raw` should be `unsafe`
Out::fromraw in affected versions allows writing a value to invalid memory address without requiring unsafe. The soundness issue has been addressed by making Out::fromraw an unsafe function...
K21426934: Multiple elfutils vulnerabilities
Security Advisory Description CVE-2018-16062 dwarfgetaranges in dwarfgetaranges.c in libdw in elfutils before 2018-08-18 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted file. CVE-2018-16402 libelf/elfend.c in elfutils 0.173 allows remote attackers to...
CVE-2023-23457
A Segmentation fault was found in UPX in PackLinuxElf64::invertptdynamic in plxelf.cpp. An attacker with a crafted input file allows invalid memory address access that could lead to a denial of service...
CVE-2023-23457
A Segmentation fault was found in UPX in PackLinuxElf64::invertptdynamic in plxelf.cpp. An attacker with a crafted input file allows invalid memory address access that could lead to a denial of service...
CVE-2022-38475
An attacker could have written a value to the first element in a zero-length JavaScript array. Although the array was zero-length, the value was not written to an invalid memory address. This vulnerability affects Firefox 104...