CVE-2020-23026

CVE-2020-23026 describes a NULL pointer dereference in the main() function (dhry_1.c) of dhrystone 2.1, causing a denial of service (DoS). The issue is reported consistently across multiple sources (NVD, Red Hat, CNVD, OSV, UBuntu, Nessus, etc.). The available documents do not provide a product/v...

Dhrystone 代码问题漏洞

dhrystone is a comprehensive benchmark program for system integer programming from the personal developer Reinhold P. Weicker. dhrystone suffers from a buffer error vulnerability stemming from a null pointer dereference in the main function dhry1.c of dhrystone 2.1, which could be exploited by an...

VulnCheck KEV: CVE-2022-37450

Go Ethereum aka geth through 1.10.21 allows attackers to increase rewards by mining blocks in certain situations, and using a manipulation of time-difference values to achieve replacement of main-chain blocks, aka Riskless Uncle Making RUM, as exploited in the wild in 2020 through 2022...

CVE-2022-22293

admin/limits.php in Dolibarr 7.0.2 allows HTML injection, as demonstrated by the MAINMAXDECIMALSTOT parameter...

CVE-2021-45910

An issue was discovered in gif2apng 1.9. There is a heap-based buffer overflow within the main function. It allows an attacker to write data outside of the allocated buffer. The attacker has control over a part of the address that data is written to, control over the written data, and to some...

CVE-2021-45911

An issue was discovered in gif2apng 1.9. There is a heap-based buffer overflow in the main function. It allows an attacker to write 2 bytes outside the boundaries of the buffer...

DEBIAN-CVE-2021-45911

An issue was discovered in gif2apng 1.9. There is a heap-based buffer overflow in the main function. It allows an attacker to write 2 bytes outside the boundaries of the buffer...

Heap overflow

An issue was discovered in gif2apng 1.9. There is a heap-based buffer overflow in the main function. It allows an attacker to write 2 bytes outside the boundaries of the buffer...

CVE-2021-45911

An issue was discovered in gif2apng 1.9. There is a heap-based buffer overflow in the main function. It allows an attacker to write 2 bytes outside the boundaries of the buffer...

UBUNTU-CVE-2021-45911

An issue was discovered in gif2apng 1.9. There is a heap-based buffer overflow in the main function. It allows an attacker to write 2 bytes outside the boundaries of the buffer...

PT-2021-24315 · Gif2Apng +2 · Gif2Apng +2

Name of the Vulnerable Software and Affected Versions: gif2apng version 1.9 Description: An issue was discovered that allows a heap-based buffer overflow in the main function, enabling an attacker to write 2 bytes outside the boundaries of the buffer. Recommendations: For gif2apng version 1.9, at...

gif2apng 缓冲区错误漏洞

gif2apng is a simple program that converts animations from GIF to APNG format. gif2apng suffers from a buffer overflow vulnerability that stems from the product's main function not doing a valid restriction on memory boundaries, which can be exploited by an attacker to cause a buffer overflow...

CVE-2021-39315

The Magic Post Voice WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the ids parameter found in the /inc/admin/main.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.2...

@agoric/cosmic-swingset (>=0.10.8 <=0.18.0), @agoric/ertp (>=0.1.4 <=0.4.1) +18 more potentially affected by CVE-2021-23543 via realms-shim (=1.2.2)

realms-shim NPM version =1.2.2 is affected by a known vulnerability. The following packages have a transitive dependency on realms-shim and may be impacted: - @agoric/cosmic-swingset =0.10.8, =0.1.4, =0.0.1, =0.1.1, =0.0.1, =0.0.20, =0.1.0, =2.0.1, =1.0.0, =0.0.1, =0.4.1, =0.0.6, =0.0.1-alpha2,...

GHSA-HF79-8HJP-RRVQ Use After Free in lucet

Impact There is a bug in the main branch of Lucet's lucet-runtime that allows a use-after-free in an Instance object that could result in memory corruption, data race, or other related issues. This bug was introduced early in the development of Lucet and is present in all releases. As a result of...

RUSTSEC-2021-0155 Use After Free in lucet-runtime

There is a bug in the main branch of Lucet's lucet-runtime that allows a use-after-free in an Instance object that could result in memory corruption, data race, or other related issues. This bug was introduced early in the development of Lucet and is present in all releases. As a result of this...

Use After Free in lucet-runtime

There is a bug in the main branch of Lucet's lucet-runtime that allows a use-after-free in an Instance object that could result in memory corruption, data race, or other related issues. This bug was introduced early in the development of Lucet and is present in all releases. As a result of this...

rpm security update

4.11.3-48 - Fix double-free in previously added patch 2004228 4.11.3-47 - Improve range checks on signature and main header tags 2004228 - Fixes CVE-2021-20271...

Clustering 路径遍历漏洞

Clustering is an open source approximate order clustering by Varun Suresh personal developer in the USA. It is used for face verification experiments. Clustering suffers from a path traversal vulnerability that stems from a commit in the main branch of Clustering being affected by a directory...

CentOS 8 : dnf (CESA-2021:4464)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2021:4464 advisory. - libdnf: Signature verification bypass via signature placed in the main RPM header CVE-2021-3445 Note that Nessus has not tested for this issue but has instead...