8 matches found
PT-2026-21909
Name of the Vulnerable Software and Affected Versions Apache HTTP Server affected versions not specified Description An integer overflow in the PSB PSD v2 RLE decoding path can cause a heap out-of-bounds read on 32-bit builds. This can lead to information disclosure or a crash when processing...
CVE-2026-1847 MongoDB Server may crash when inserting large documents
Inserting certain large documents into a replica set could lead to replica set secondaries not being able to fetch the oplog from the primary. This could stall replication inside the replica set leading to server crash...
Konica Bizhub Multifunction Printers Stack Buffer Overflow (CVE-2017-9765)
Integer overflow in the soapget function in Genivia gSOAP 2.7.x and 2.8.x before 2.8.48, as used on Axis cameras and other devices, allows remote attackers to execute arbitrary code or cause a denial of service stack-based buffer overflow and application crash via a large XML document, aka Devil'...
go-yaml: Improve heuristics preventing CPU/memory abuse by parsing malicious or large YAML documents
A flaw was found in go-yaml. This issue causes the consumption of excessive amounts of CPU or memory when attempting to parse a large or maliciously crafted YAML document...
go-yaml: Improve heuristics preventing CPU/memory abuse by parsing malicious or large YAML documents
A flaw was found in go-yaml. This issue causes the consumption of excessive amounts of CPU or memory when attempting to parse a large or maliciously crafted YAML document...
VulnCheck KEV: CVE-2022-40303
An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XMLPARSEHUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault...
LibreOffice and Apache OpenOffice integer overflow vulnerability (CNVD-2015-07520)
LibreOffice and Apache OpenOffice OOo are both open source office software suites. The suite contains text documents, spreadsheets, presentations, drawings, databases and other software. The former by the Document Foundation The Document Foundation, TDF development; the latter by the United State...
DEBIAN-CVE-2014-5266
The Incutio XML-RPC IXR Library, as used in WordPress before 3.9.2 and Drupal 6.x before 6.33 and 7.x before 7.31, does not limit the number of elements in an XML document, which allows remote attackers to cause a denial of service CPU consumption via a large document, a different vulnerability...