1716 matches found
CVE-2015-9542
addpassword in pamradiusauth.c in pamradius 1.4.0 does not correctly check the length of the input password, and is vulnerable to a stack-based buffer overflow during memcpy. An attacker could send a crafted password to an application loading the pamradius library and crash it. Arbitrary code...
mysql-server:fuzz_real_query: Memcpy-param-overlap in read_ok_ex
Detailed Report: https://oss-fuzz.com/testcase?key=6322724899389440 Project: mysql-server Fuzzing Engine: libFuzzer Fuzz Target: fuzzrealquery Job Type: libfuzzerasanmysql-server Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address: 0x7ff545cea848,0x2037ff447d7aa51 and 0x625000059913...
VulnCheck KEV: CVE-2018-19320
The GDrv low-level driver in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU II exposes ring0 memcpy-like functionality that could allow a local attacker to take complete control of the affected system...
Huawei EulerOS: Security Advisory for exempi (EulerOS-SA-2018-1124)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2019-2053)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Remote code execution
A Code Execution vulnerability exists in the memcpy function when processing AMF requests in Ezhometech EzServer 7.0, which could let a remote malicious user execute arbitrary code or cause a Denial of Service...
CVE-2012-4750
The only concrete details available concern Ezhometech EzServer 7.0. A memory corruption/Code Execution vulnerability stems from memcpy being fed an uncontrolled size while processing AMF requests in the RTMP path after the handshake, enabling a remote attacker to potentially crash or execute cod...
njs:njs_process_script_fuzzer: Memcpy-param-overlap in njs_chb_join_to
Project: http://hg.nginx.org/njs Detailed Report: https://oss-fuzz.com/testcase?key=5742835815153664 Project: njs Fuzzing Engine: libFuzzer Fuzz Target: njsprocessscriptfuzzer Job Type: libfuzzerasannjs Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address: 0x62500008b700,0x62500008b8...
CVE-2019-18609
An issue was discovered in amqphandleinput in amqpconnection.c in rabbitmq-c 0.9.0. There is an integer overflow that leads to heap memory corruption in the handling of CONNECTIONSTATEHEADER. A rogue server could return a malicious frame header that leads to a smaller targetsize value than needed...
mysql-server:fuzz_real_query: Memcpy-param-overlap in cli_read_rows
Project: https://github.com/mysql/mysql-server.git Detailed Report: https://oss-fuzz.com/testcase?key=5672257833926656 Project: mysql-server Fuzzing Engine: libFuzzer Fuzz Target: fuzzrealquery Job Type: libfuzzerasanmysql-server Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address:...
njs:njs_process_script_fuzzer: Memcpy-param-overlap in njs_chb_join_to
Project: http://hg.nginx.org/njs Detailed Report: https://oss-fuzz.com/testcase?key=5683698955714560 Project: njs Fuzzing Engine: libFuzzer Fuzz Target: njsprocessscriptfuzzer Job Type: libfuzzerasannjs Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address: 0x625000075b00,0x625000075c...
CVE-2019-10607
Out of bounds memcpy can occur by providing the embedded NULL character string and length greater than the actual string length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...
Null pointer dereference
Out of bounds memcpy can occur by providing the embedded NULL character string and length greater than the actual string length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...
CVE-2019-10607
CVE-2019-10607 describes an out-of-bounds memcpy issue in Qualcomm Snapdragon firmware/stack affecting numerous Snapdragon SoCs (APQ/SDX/SM8140 family and related). The root cause is providing an embedded NULL character with a string length greater than the actual string length, leading to out-of...
CVE-2019-10607
Out of bounds memcpy can occur by providing the embedded NULL character string and length greater than the actual string length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...
Debian DLA-2031-1 : freeimage security update
It was found that freeimage, a graphics library, was affected by the following two security issues : CVE-2019-12211 Heap buffer overflow caused by invalid memcpy in PluginTIFF. This flaw might be leveraged by remote attackers to trigger denial of service or any other unspecified impact via crafte...
Out-of-bounds Write
py-lmdb is vulnerable to out-of-bounds write. The memcpy destination is not properly set up in the mdbnodeadd function for certain values of mdflags, which would allow an attacker to perform invalid write operations when accessing a data.mdb file...
CVE-2019-18609
An issue was discovered in amqphandleinput in amqpconnection.c in rabbitmq-c 0.9.0. There is an integer overflow that leads to heap memory corruption in the handling of CONNECTIONSTATEHEADER. A rogue server could return a malicious frame header that leads to a smaller targetsize value than needed...
Integer overflow
An issue was discovered in amqphandleinput in amqpconnection.c in rabbitmq-c 0.9.0. There is an integer overflow that leads to heap memory corruption in the handling of CONNECTIONSTATEHEADER. A rogue server could return a malicious frame header that leads to a smaller targetsize value than needed...
CVE-2019-18609
An issue was discovered in amqphandleinput in amqpconnection.c in rabbitmq-c 0.9.0. There is an integer overflow that leads to heap memory corruption in the handling of CONNECTIONSTATEHEADER. A rogue server could return a malicious frame header that leads to a smaller targetsize value than needed...