Realtek RTL8710 缓冲区错误漏洞

The Realtek RTL8710 is an IoT microcontroller from Realtek Semiconductor Taiwan, China.The Realtek RTL8710 suffers from a buffer overflow vulnerability that could be exploited by attackers to remotely execute code via the "memcpy" function...

glibc security update

2.28-151.0.1.el84 - merge RH patches for ol8-u4 release Review-exception: Patch merge - Provide glibc.pthread.mutexspincount tunable for pthread adaptive - spin mutex Orabug: 27982358. Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag ...

EulerOS Virtualization 2.9.0 : python-pillow (EulerOS-SA-2021-1972)

According to the version of the python-pillow package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid...

Accusoft ImageGear TIF bits_per_sample processing out-of-bounds write vulnerability

Summary An out-of-bounds write vulnerability exists in the TIF bitspersample processing functionality of Accusoft ImageGear 19.9. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability. Tested Versions Accusoft...

FFmpeg Buffer Overflow Vulnerability (CNVD-2021-38297)

FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video to streams under the LGPL or GPL license. A buffer overflow vulnerability exists in dnnexecutelayerpad in libavfilter/dnn/dnnbackendnativelayerpad.c in FFmpeg version 4.2.3. The...

DEBIAN-CVE-2021-3548

A flaw was found in dmg2img through 20170502. dmg2img did not validate the size of the read buffer during memcpy inside the main function. This possibly leads to memory layout information leaking in the data. This might be used in a chain of vulnerability in order to reach code execution...

UBUNTU-CVE-2021-3548

A flaw was found in dmg2img through 20170502. dmg2img did not validate the size of the read buffer during memcpy inside the main function. This possibly leads to memory layout information leaking in the data. This might be used in a chain of vulnerability in order to reach code execution...

CVE-2020-24020

Buffer Overflow vulnerability in FFMpeg 4.2.3 in dnnexecutelayerpad in libavfilter/dnn/dnnbackendnativelayerpad.c due to a call to memcpy without length checks, which could let a remote malicious user execute arbitrary code...

DEBIAN-CVE-2020-24020

Buffer Overflow vulnerability in FFMpeg 4.2.3 in dnnexecutelayerpad in libavfilter/dnn/dnnbackendnativelayerpad.c due to a call to memcpy without length checks, which could let a remote malicious user execute arbitrary code...

CVE-2020-24020

Buffer Overflow vulnerability in FFMpeg 4.2.3 in dnnexecutelayerpad in libavfilter/dnn/dnnbackendnativelayerpad.c due to a call to memcpy without length checks, which could let a remote malicious user execute arbitrary code...

CVE-2020-24020

Buffer Overflow vulnerability in FFMpeg 4.2.3 in dnnexecutelayerpad in libavfilter/dnn/dnnbackendnativelayerpad.c due to a call to memcpy without length checks, which could let a remote malicious user execute arbitrary code...

FFMpeg 安全漏洞

FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video to streams under the LGPL or GPL license. A buffer overflow vulnerability exists in dnnexecutelayerpad in libavfilter/dnn/dnnbackendnativelayerpad.c in FFmpeg version 4.2.3. The...

glibc security, bug fix, and enhancement update

2.28-151.0.1.el84 - merge RH patches for ol8-u4 release Review-exception: Patch merge - Provide glibc.pthread.mutexspincount tunable for pthread adaptive - spin mutex Orabug: 27982358. Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag ...

Unspecified vulnerability in GNU LibreDWG memcpy-param-overlap

LibreDWG is a free C library for reading and writing DWG files. The read2004sectionheader in GNU LibreDWG version 0.10 ... /... /src/decode.c:2580 contains a security vulnerability in memcpy-param-overlap. An attacker can exploit this vulnerability to execute arbitrary code...

CVE-2020-21844

GNU LibreDWG 0.10 is affected by: memcpy-param-overlap. The impact is: execute arbitrary code remote. The component is: read2004sectionheader ../../src/decode.c:2580...

CVE-2020-21844

GNU LibreDWG 0.10 is affected by: memcpy-param-overlap. The impact is: execute arbitrary code remote. The component is: read2004sectionheader ../../src/decode.c:2580...

Code injection

GNU LibreDWG 0.10 is affected by: memcpy-param-overlap. The impact is: execute arbitrary code remote. The component is: read2004sectionheader ../../src/decode.c:2580...

CVE-2020-21844

GNU LibreDWG 0.10 is affected by: memcpy-param-overlap. The impact is: execute arbitrary code remote. The component is: read2004sectionheader ../../src/decode.c:2580...

CVE-2020-21844

CVE-2020-21844 affects GNU LibreDWG 0.10. The vulnerability is in memcpy-param-overlap in the read_2004_section_header function (../../src/decode.c:2580), exposing remote code execution. The connected records confirm the affected component and exact location, but do not provide further exploit sp...

GNU LibreDWG 安全漏洞

LibreDWG is a free C library for reading and writing DWG files. The read2004sectionheader in GNU LibreDWG version 0.10 ... /... /src/decode.c:2580 contains a security vulnerability in memcpy-param-overlap. An attacker can exploit this vulnerability to execute arbitrary code...