34 matches found
Astra Linux - уязвимость в linux-5.15
In the Linux kernel, the following vulnerability has been resolved: fs: dlm: fix invalid derefence of sblvbptr I experience issues when putting a lkbsb on the stack and have sblvbptr field to a dangled pointer while not using DLMLKFVALBLK. It will crash with the following kernel message, the...
EUVD-2018-15812
Malware in sbrugna...
EUVD-2019-10609
Malware in sbrugna...
EUVD-2021-32073
Malicious code in bioql PyPI...
EUVD-2021-32485
Malicious code in bioql PyPI...
CVE-2020-22674
An issue was discovered in gpac 0.8.0. An invalid memory dereference exists in the function FixTrackID located in isomintern.c, which allows attackers to cause a denial of service DoS via a crafted input...
Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : libsoup vulnerabilities (USN-7432-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7432-1 advisory. It was discovered that libsoup could be made to read out of bounds. An attacker could possibly use this issue to cause...
USN-6659-1 libde265 vulnerabilities
It was discovered that libde265 could be made to write out of bounds. If a user or automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2022-43244, CVE-2022-43249, CVE-2022-43250,...
SUSE CVE-2017-14862
An Invalid memory address dereference was discovered in Exiv2::DataValue::read in value.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...
SUSE CVE-2018-18520
An Invalid Memory Address Dereference exists in the function elfend in libelf in elfutils through v0.174. Although eu-size is intended to support ar files inside ar files, handlear in size.c closes the outer ar file before handling all inner entries. The vulnerability allows attackers to cause a...
CVE-2021-45767
GPAC 1.1.0 was discovered to contain an invalid memory address dereference via the function lsrreadid. This vulnerability can lead to a Denial of Service DoS...
CVE-2021-45760
GPAC v1.1.0 was discovered to contain an invalid memory address dereference via the function gflistlast. This vulnerability allows attackers to cause a Denial of Service DoS...
UBUNTU-CVE-2021-45760
GPAC v1.1.0 was discovered to contain an invalid memory address dereference via the function gflistlast. This vulnerability allows attackers to cause a Denial of Service DoS...
CVE-2020-22674
GPAC vulnerability CVE-2020-22674 affects gpac 0.8.0. An invalid memory dereference in FixTrackID (isom_intern.c) allows DoS via crafted input. Affected component is the GPAC MPEG-4 Systems implementation; impact is denial of service with potential crash. Remediation: upgrade to a newer GPAC rele...
UPX Invalid Memory Address Dereference Vulnerability
UPX is an open source executable file packaging program that supports a variety of file formats from different operating systems. An invalid memory address dereference vulnerability exists in the canUnpack function in pmach.cpp in UPX 3.95. An attacker can exploit this vulnerability to cause a...
elfutils: eu-size cannot handle recursive ar files
An Invalid Memory Address Dereference exists in the function elfend in libelf in elfutils through v0.174. Although eu-size is intended to support ar files inside ar files, handlear in size.c closes the outer ar file before handling all inner entries. The vulnerability allows attackers to cause a...
FAAD2 Invalid Memory Address Dereference Vulnerability (CNVD-2019-07895)
Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. An invalid memory address dereference vulnerability in the ltprediction function of libfaad/ltpredict.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8 can be exploited by an...
ALPINE-CVE-2018-20360
An invalid memory address dereference was discovered in the sbrprocesschannel function of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...
UBUNTU-CVE-2018-20361
An invalid memory address dereference was discovered in the hfassembly function of libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...
UBUNTU-CVE-2018-20358
An invalid memory address dereference was discovered in the ltprediction function of libfaad/ltpredict.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...