1177 matches found
Null pointer dereference
The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service invalid pointer dereference and process crash...
CVE-2015-8270
The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service invalid pointer dereference and process crash...
DEBIAN-CVE-2015-8270
The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service invalid pointer dereference and process crash...
CVE-2015-8270
The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service invalid pointer dereference and process crash...
CVE-2015-8270
CVE-2015-8270 affects RTMPDump 2.4, where the AMF3ReadString function in amf.c can trigger an invalid pointer dereference, causing remote DoS (process crash) when processing crafted RTMP streams. Public advisories confirm the vulnerability and provide fixes: Debian DSA-3850-1 notes kernel-level f...
CVE-2015-8270
The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service invalid pointer dereference and process crash...
CVE-2015-8270
The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service invalid pointer dereference and process crash...
389-ds-base: Remote crash via crafted LDAP messages
An invalid pointer dereference flaw was found in the way 389-ds-base handled LDAP bind requests. A remote unauthenticated attacker could use this flaw to make ns-slapd crash via a specially crafted LDAP bind request, resulting in denial of service...
Scientific Linux Security Update : 389-ds-base on SL6.x i386/x86_64 (20170411)
Security Fixes : - An invalid pointer dereference flaw was found in the way 389-ds-base handled LDAP bind requests. A remote unauthenticated attacker could use this flaw to make ns-slapd crash via a specially crafted LDAP bind request, resulting in denial of service. CVE-2017-2668 Bug Fixes : -...
389 security update
CentOS Errata and Security Advisory CESA-2017:0893 An update for 389-ds-base is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...
389-ds-base: Remote crash via crafted LDAP messages
An invalid pointer dereference flaw was found in the way 389-ds-base handled LDAP bind requests. A remote unauthenticated attacker could use this flaw to make ns-slapd crash via a specially crafted LDAP bind request, resulting in denial of service...
shopify-scripts: Invalid Pointer reference in L_RESCUE
@ssarong reported an input that triggers an out-of-bounds read: https://github.com/mruby/mruby/issues/3603 This issue was addressed upstream in https://github.com/mruby/mruby/commit/761493934e19d1a6edea53e9fbdb39eb78ef898e...
shopify-scripts: Invalid pointer dereference in OP_ENTER
PoC === The following demonstrates a mruby/sandbox crash: def methodmissing end send...
shopify-scripts: Use-after-free leading to an invalid pointer dereference
PoC === The following code demonstrates a crash: class A rescue Struct.new.new.toh end end Discussion ========== mruby crashes due to an invalid pointer dereference in vm.c:1692: 1689│ LRESCUE: 1690│ if ci-ridx == 0 goto LSTOP; 1691│ proc = ci-proc; 1692├ irep = proc-body.irep; gdb print ci-proc ...
CVE-2016-9082
Integer overflow in the writepng function in cairo 1.14.6 allows remote attackers to cause a denial of service invalid pointer dereference via a large svg file...
CVE-2016-9082
Integer overflow in the writepng function in cairo 1.14.6 allows remote attackers to cause a denial of service invalid pointer dereference via a large svg file...
CVE-2016-9082
Integer overflow in the writepng function in cairo 1.14.6 allows remote attackers to cause a denial of service invalid pointer dereference via a large svg file...
CVE-2016-9082
CVE-2016-9082 affects the Cairo graphics library, specifically the write_png function in Cairo 1.14.6. An integer overflow can be triggered by a large SVG file, leading to a denial of service via an invalid pointer dereference. The provided sources confirm the vulnerability exists in Cairo 1.14.6...
CVE-2016-9082
Integer overflow in the writepng function in cairo 1.14.6 allows remote attackers to cause a denial of service invalid pointer dereference via a large svg file...
Denial Of Service (DoS) Via Invalid Free
libplist is vulnerable to denial of service DoS attacks. The vulnerability exists as it is possible to reach a state where plistfree is used to free an invalid pointer...