CVE-2018-21027

CVE-2018-21027 affects Boa up to version 0.94.14rc21. The issue is an out-of-memory (OOM) condition triggered by mishandled malloc, allowing remote attackers to exhaust memory. The connected documents confirm the affected software and root cause but do not provide exploit specifics, affected plat...

Denial Of Service (DoS)

libpcap.so is vulnerable to denial of service. PCAPNG reader does not perform sanity checks before doing malloc, causing buffer-overflow if there are errors in pcapng reading...

EulerOS 2.0 SP5 : ImageMagick (EulerOS-SA-2019-1970)

According to the versions of the ImageMagick packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack o...

Silicon Graphics LibTIFF Integer Overflow Vulnerability

Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains a number of command-line tools for processing TIFF files. An integer overflow vulnerability exists in the 'TIFFCheckMalloc' and 'TIFFCheckRealloc'...

unixODBC security update

2.3.1-14.0.1 - backport unchecked malloc memory references fix Orabug: 29684195 2.3.1-14 - fixed insecure buffer copy 1571530 - fixed possible buffer overflow 1571528 2.3.1-13 - revert: ltdl bundling 2.3.1-12 - fix the libtool-ltdl compatibility Resolves: rhbz1267438...

PDFResurrect buffer overflow vulnerability (CNVD-2020-16832)

PDFResurrect is a tool for analyzing PDF documents. A buffer error vulnerability exists in the 'pdfloadpageskids' function of the pdf.c file in versions of PDFResurrect prior to 0.18, which can be exploited by an attacker to cause malloc failures and out-of-bounds writes...

CVE-2019-14934

An issue was discovered in PDFResurrect before 0.18. pdfloadpageskids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write...

CVE-2019-14934

An issue was discovered in PDFResurrect before 0.18. pdfloadpageskids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write...

Out-of-bounds

An issue was discovered in PDFResurrect before 0.18. pdfloadpageskids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write...

CVE-2019-14934

An issue was discovered in PDFResurrect before 0.18. pdfloadpageskids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write...

CVE-2019-14934

An issue was discovered in PDFResurrect before 0.18. pdfloadpageskids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write...

CVE-2019-14934

An issue was discovered in PDFResurrect before 0.18. pdfloadpageskids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write...

CVE-2019-14934

CVE-2019-14934 affects PDFResurrect prior to 0.18. The issue is in pdf_load_pages_kids in pdf.c where an unchecked size value can cause a malloc failure and an out-of-bounds write. Public advisories (Debian, Mageia, Ubuntu, Fedora/OpenVAS) indicate patches/upstream fixes have been released; remed...

UBUNTU-CVE-2019-13590

An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h startread function, there is an integer overflow on the result of integer addition wraparound to 0 fed into the lsxcalloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid...

Denial Of Service (DoS)

libarchive is vulnerable to denial of service DoS attacks. This is caused when a corrupted cpio archive has a ridiculously large size for a symlink. malloc fails here when trying to allocate memory to contain the entire symlink which allows remote attackers to affect the availability of the...

CVE-2019-8354

An issue was discovered in SoX 14.4.2. lsxmakelpf in effectidsp.c has an integer overflow on the result of multiplication fed into malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow...

CVE-2019-8354

An issue was discovered in SoX 14.4.2. lsxmakelpf in effectidsp.c has an integer overflow on the result of multiplication fed into malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow...

Denial Of Service (DoS)

xorg-x11-server is vulnerable to denial of service DoS attacks. The vulnerability exists as X.Org X Window System aka X11 and X X11R5 and X.Org Server aka xserver and xorg-server before 1.16.3, when using SUN-DES-1 Secure RPC authentication credentials, does not check the return value of a malloc...

Denial Of Service (DoS)

glibc is vulnerable to denial of service DoS attacks. The vulnerability exists as multiple integer overflows in malloc/malloc.c in the GNU C Library aka glibc or libc6 2.18 and earlier allow context-dependent attackers to cause a denial of service heap corruption via a large value to the 1 pvallo...

Fedora 29 : webkit2gtk3 (2018-1a8582a7ee)

This is a bug fix release in the stable 2.22 series. - CVE-2018-4437 -- Processing maliciously crafted web content may lead to arbitrary code execution. Multiple memory corruption issues were addressed with improved memory handling. - Improved the logic to determine for which architectures to...