7 matches found
EUVD-2017-18729
Malware in sbrugna...
EUVD-2017-4653
Malware in sbrugna...
EUVD-2022-31653
Malicious code in bioql PyPI...
CVE-2021-33641
When processing files, malloc stores the data of the current line. When processing comments, malloc incorrectly accesses the released memory use after free...
CVE-2021-33643
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc0 for a variable gnulonglink, causing an out-of-bounds read...
SWFTools Denial of Service Vulnerability (CNVD-2017-36499)
SWFTools is a utility toolset for working with Adobe Flash files SWF files. A security vulnerability exists in the 'wavconvert2mono' function in the lib/wav.c file in SWFTools version 0.9.2, which stems from the program failing to properly validate WAV data. A remote attacker can exploit this...
py-imaging, py-pillow -- Buffer overflow in PCD decoder
The Pillow maintainers report: In all versions of Pillow, dating back at least to the last PIL 1.1.7 release, PcdDecode.c has a buffer overflow error. The state.buffer for PcdDecode.c is allocated based on a 3 bytes per pixel sizing, where PcdDecode.c wrote into the buffer assuming 4 bytes per...