1716 matches found
EulerOS Virtualization 3.0.2.6 : python-pillow (EulerOS-SA-2021-2893)
According to the versions of the python-pillow package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service ReDoS via the getrgb...
CVE-2021-21901
A stack-based buffer overflow vulnerability exists in the CMA checkudpcrc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to memcpy. An attacker can send a malicious packet to trigger this...
CVE-2021-21901
A stack-based buffer overflow vulnerability exists in the CMA checkudpcrc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to memcpy. An attacker can send a malicious packet to trigger this...
PT-2021-14827 · Unknown · Ic Module Cma
Name of the Vulnerable Software and Affected Versions: iC Module CMA version 5.0 Description: A stack-based buffer overflow issue exists in the CMA check udp crc function. This can be triggered by a specially-crafted packet, leading to a buffer overflow during a call to memcpy. An attacker can...
OSV-2021-1731 Memcpy-param-overlap in gs_fapi_do_char
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42656 Crash type: Memcpy-param-overlap Crash state: gsfapidochar pdfifapibuildchar showproceed...
In AdvanceCOMP 2.1 png_compress in pngex.cc in advpng has an integer overflow upon encountering an invalid PNG size which results in an attempted memcpy to write into a buffer that is too small. (There is also a heap-based buffer over-read.)
...
Clementine 缓冲区错误漏洞
Clementine is a multi-platform music player for individual developers running on GNU/Linux, Mac OS X and Windows operating systems. a denial of service vulnerability exists in Clementine Music Player prior to 1.3.1, which stems from a vulnerability to read access conflicts when block data is move...
The vulnerability of the ngx_memcpy function in the OpenResty web server, related to buffer overflows, allows attackers to cause a service failure.
The vulnerability of the memcpy-param-overlap function in the OpenResty web server is related to buffer overflow attacks. Exploiting this vulnerability can allow attackers to cause service interruptions...
OSV-2021-1565 Memcpy-param-overlap in parquet::DeltaByteArrayDecoder::GetInternal
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40902 Crash type: Memcpy-param-overlap Crash state: parquet::DeltaByteArrayDecoder::GetInternal parquet::DeltaByteArrayDecoder::DecodeArrow parquet::internal::ByteArrayChunkedRecordReader::ReadValuesSpaced...
RHEL 8 : python-pillow (RHSA-2021:4149)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:4149 advisory. The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal...
CentOS 8 : python-pillow (CESA-2021:4149)
The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2021:4149 advisory. - python-pillow: Buffer over-read in PCX image reader CVE-2020-35653 - python-pillow: Buffer over-read in SGI RLE image reader CVE-2020-35655 -...
Heap-based Buffer Overflow in zyantific/zydis
As discussed in the report at https://www.huntr.dev/bounties/96b0a482-7041-45b1-9327-c6a4a8f32d3a/, I am re-opening the report here for proper tracking. Description Hello, we hope you're doing well during these challenging times. Whilst testing zydis built from commit 077b185 with Clang12 + ASan ...
in squell/id3
Description Hello, I hope you're doing well. Whilst testing id3 built from commit 896d42a, we discovered crafted input which triggers a negative-size-param size=-1 error when when calling memcpy, causing the software to crash. Proof of Concept First... Second... echo...
CVE-2021-41794
ogsfqdnparse in Open5GS 1.0.0 through 2.3.3 inappropriately trusts a client-supplied length value, leading to a buffer overflow. The attacker can send a PFCP Session Establishment Request with "internet" as the PDI Network Instance. The first character is interpreted as a length value to be used ...
Buffer overflow
ogsfqdnparse in Open5GS 1.0.0 through 2.3.3 inappropriately trusts a client-supplied length value, leading to a buffer overflow. The attacker can send a PFCP Session Establishment Request with "internet" as the PDI Network Instance. The first character is interpreted as a length value to be used ...
The vulnerability of the `dnn_execute_layer_pad` function in the `libavfilter/dnn/dnn_backend_native_layer_pad.c` file of the FFmpeg multimedia library, related to buffer overflow in memory, allows an attacker to access confidential data, compromise its integrity, and cause a service failure.
The vulnerability of the dnnexecutelayerpad function in the libavfilter/dnn/dnnbackendnativelayerpad.c file of the FFmpeg multimedia library is related to buffer overflows in memory due to insufficient size checking during the memcpy operation. Exploiting this vulnerability can allow an attacker ...
CVE-2021-25456
OOB read vulnerability in libswmfextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to execute memcpy at arbitrary address via forged wmf file...
CVE-2021-25456
OOB read vulnerability in libswmfextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to execute memcpy at arbitrary address via forged wmf file...
Code injection
OOB read vulnerability in libswmfextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to execute memcpy at arbitrary address via forged wmf file...
CVE-2021-25456
CVE-2021-25456 affects the libswmfextractor.so component. The vulnerability is described as an out-of-bounds read that enables an attacker to cause a memcpy at an arbitrary address via a forged WMF file, implying memory corruption with possible in-memory impact. According to the sources, this is ...