CVE-1999-0789

Buffer overflow in AIX ftpd in the libc library...

CVE-2019-14875

In the multiply function of the newlib libc library, all versions prior to 3.3.0 see newlib/libc/stdlib/mprec.c, Balloc is used to allocate a big integer, however no check is performed to verify if the allocation succeeded or not. The access of x0 will trigger a null pointer dereference bug in ca...

CVE-2019-14873

In the multadd function of the newlib libc library, prior to versions 3.3.0 see newlib/libc/stdlib/mprec.c, Balloc is used to allocate a big integer, however no check is performed to verify if the allocation succeeded or not. This will trigger a null pointer dereference bug in case of a memory...

SUSE CVE-2002-1146

The BIND 4 and BIND 8.2.x stub resolver libraries, and other libraries such as glibc 2.2.5 and earlier, libc, and libresolv, use the maximum buffer size instead of the actual size when processing a DNS response, which causes the stub resolvers to read past the actual boundary "read buffer...

SUSE CVE-2011-0419

Stack consumption vulnerability in the fnmatch implementation in aprfnmatch.c in the Apache Portable Runtime APR library before 1.4.3 and the Apache HTTP Server before 2.2.18, and in fnmatch.c in libc in NetBSD 5.1, OpenBSD 4.8, FreeBSD, Apple Mac OS X 10.6, Oracle Solaris 10, and Android, allows...

CVE-2019-14873

In the multadd function of the newlib libc library, prior to versions 3.3.0 see newlib/libc/stdlib/mprec.c, Balloc is used to allocate a big integer, however no check is performed to verify if the allocation succeeded or not. This will trigger a null pointer dereference bug in case of a memory...

CVE-2019-14875

In the multiply function of the newlib libc library, all versions prior to 3.3.0 see newlib/libc/stdlib/mprec.c, Balloc is used to allocate a big integer, however no check is performed to verify if the allocation succeeded or not. The access of x0 will trigger a null pointer dereference bug in ca...

Null pointer dereference

In the multiply function of the newlib libc library, all versions prior to 3.3.0 see newlib/libc/stdlib/mprec.c, Balloc is used to allocate a big integer, however no check is performed to verify if the allocation succeeded or not. The access of x0 will trigger a null pointer dereference bug in ca...

CVE-2019-14878

In the d2b function of the newlib libc library, all versions prior to 3.3.0 see newlib/libc/stdlib/mprec.c, Balloc is used to allocate a big integer, however no check is performed to verify if the allocation succeeded or not. Accessing x will trigger a null pointer dereference bug in case of a...

CVE-2019-14875

In the multiply function of the newlib libc library, all versions prior to 3.3.0 see newlib/libc/stdlib/mprec.c, Balloc is used to allocate a big integer, however no check is performed to verify if the allocation succeeded or not. The access of x0 will trigger a null pointer dereference bug in ca...

CVE-2019-14874

In the i2b function of the newlib libc library, all versions prior to 3.3.0 see newlib/libc/stdlib/mprec.c, Balloc is used to allocate a big integer, however no check is performed to verify if the allocation succeeded or not. The access of x0 will trigger a null pointer dereference bug in case of...

CVE-2019-14878

In the d2b function of the newlib libc library, all versions prior to 3.3.0 see newlib/libc/stdlib/mprec.c, Balloc is used to allocate a big integer, however no check is performed to verify if the allocation succeeded or not. Accessing x will trigger a null pointer dereference bug in case of a...

CVE-2019-14873

The CVE-2019-14873 issue affects the newlib libc library (older releases, prior to 3.3.0). In the __multadd function, the code path allocates a big integer via Balloc without verifying allocation success, enabling a null pointer dereference on allocation failure. This is the explicit root cause d...

CVE-2019-14872

The dtoar function of the newlib libc library, prior to version 3.3.0, performs multiple memory allocations without checking their return value. This could result in NULL pointer dereference...

CVE-2016-6559

CVE-2016-6559 concerns the BSD libc function link_ntoa() in linkaddr.c, where the obuf bounds are mishandled. The root cause is improper bounds checking, which could allow memory read/write. Public analyses from FreeBSD indicate it is unlikely that applications expose an exploitable use of link_n...

OpenSSH < 6.6 SFTP (x64) - Command Execution Exploit

Exploit for linux platform in category remote exploits define GNUSOURCE // THIS PROGRAM IS NOT DESIGNED TO BE SAFE AGAINST VICTIM MACHINES THAT // TRY TO ATTACK BACK, THE CODE IS SLOPPY! // In other words, please don't use this against other people's machines. include include include include...

GNU glibc Local Elevation of Privilege Vulnerability

GNU glibc a.k.a. GNU C Library, libc6 is an open-source, free C compiler released under the LGPL license. A local elevation of privilege vulnerability exists in GNU glibc. A local attacker can exploit this vulnerability to gain elevated privileges...

BlueBorne RCE on Android 6.0.1 (CVE-2017-0781)

A few days ago, the company Armis published a proof of concept PoC of a remote code execution vulnerability in Android via Bluetooth CVE-2017-0781, known as BlueBorne. Although BlueBorne refers to a set of 8 vulnerabilities, this PoC uses only 2 of them to achieve its goal. The exploitation proce...

Unspecified Vulnerability in Solaris Libc Library Component

Solaris is a unix-based operating system. An unspecified vulnerability in the Solaris Libc Library component could allow an attacker to launch a denial-of-service attack or unauthorized modification of some data...

DNS Reverse Lookup Shellshock

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Security Advisory DNS Reverse Lookup as a vector for the Bash vulnerability CVE-2014-6271 et.al. CVE-2014-3671 references: CVE-2014-6271, CVE-2014-7169, CVE-2014-6277, CVE-2014-6278 CVE-2014-7186 and, CVE-2014-7187 Summary: Above CVEs detail a number ...