1716 matches found
CVE-2019-9210
CVE-2019-9210 affects the AdvanceCOMP recompression utilities. The flaw is in pngex.cc, inside advpng’s png_compress, where an invalid PNG size can trigger an integer overflow and lead to an attempted memcpy into a too-small buffer, with a heap-based buffer over-read also reported. A patched vers...
CVE-2019-9210
In AdvanceCOMP 2.1, pngcompress in pngex.cc in advpng has an integer overflow upon encountering an invalid PNG size, which results in an attempted memcpy to write into a buffer that is too small. There is also a heap-based buffer over-read...
CVE-2019-9210
In AdvanceCOMP 2.1, pngcompress in pngex.cc in advpng has an integer overflow upon encountering an invalid PNG size, which results in an attempted memcpy to write into a buffer that is too small. There is also a heap-based buffer over-read...
PHP Memory Disclosure Vulnerability - Windows
dnsgetrecord misparses a DNS response, which can allow a hostile DNS server to cause PHP to misuse memcpy, leading to read operations going past the buffer allocated for DNS data. This affects phpparserr in ext/standard/dns.c for DNSCAA and DNSANY queries. SPDX-FileCopyrightText: 2019 Greenbone A...
PHP 7.3.0 Memory Corruption Vulnerability - Windows
An invalid multibyte string supplied as an argument to the mbsplit function in ext/mbstring/phpmbregex.c can cause PHP to execute memcpy with a negative argument, which could read and write past buffers allocated for the data. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might...
PHP 7.3.0 Memory Corruption Vulnerability - Linux
An invalid multibyte string supplied as an argument to the mbsplit function in ext/mbstring/phpmbregex.c can cause PHP to execute memcpy with a negative argument, which could read and write past buffers allocated for the data. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might...
CVE-2019-9034
An issue was discovered in libmatio.a in matio aka MAT File I/O Library 1.5.13. There is a stack-based buffer over-read for a memcpy in the function ReadNextCell in mat5.c...
CVE-2019-9034
An issue was discovered in libmatio.a in matio aka MAT File I/O Library 1.5.13. There is a stack-based buffer over-read for a memcpy in the function ReadNextCell in mat5.c...
CVE-2019-9034
An issue was discovered in libmatio.a in matio aka MAT File I/O Library 1.5.13. There is a stack-based buffer over-read for a memcpy in the function ReadNextCell in mat5.c...
CVE-2019-9034
An issue was discovered in libmatio.a in matio aka MAT File I/O Library 1.5.13. There is a stack-based buffer over-read for a memcpy in the function ReadNextCell in mat5.c...
Code injection
An issue was discovered in PHP 7.3.x before 7.3.1. An invalid multibyte string supplied as an argument to the mbsplit function in ext/mbstring/phpmbregex.c can cause PHP to execute memcpy with a negative argument, which could read and write past buffers allocated for the data...
CVE-2019-9022
An issue was discovered in PHP 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.2. dnsgetrecord misparses a DNS response, which can allow a hostile DNS server to cause PHP to misuse memcpy, leading to read operations going past the buffer allocated for DNS data. This affects phpparser...
CVE-2019-9022
CVE-2019-9022 affects PHP 7.x prior to 7.1.26, 7.2.x prior to 7.2.14, and 7.3.x prior to 7.3.2. dns_get_record may misparse a DNS response, enabling a hostile DNS server to cause memcpy misuse and read past the buffer allocated for DNS data in php_parserr (ext/standard/dns.c) for DNS_CAA and DNS_...
CVE-2019-9022
Removed by vendor...
CVE-2019-8906
docorenote in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused...
CVE-2019-8906
docorenote in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused...
ALPINE-CVE-2019-8906
docorenote in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused...
DEBIAN-CVE-2019-8906
docorenote in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused...
Out-of-bounds
docorenote in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused...
CVE-2019-8906
docorenote in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused...