1716 matches found
SUSE CVE-2024-0565
An out-of-bounds memory read flaw was found in receiveencryptedstandard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Kernel. This issue occurs due to integer underflow on the memcpy length, leading to a denial of service...
AZL-34273 CVE-2024-0565 affecting package hyperv-daemons for versions less than 5.15.153.1-1
An out-of-bounds memory read flaw was found in receiveencryptedstandard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Kernel. This issue occurs due to integer underflow on the memcpy length, leading to a denial of service...
UBUNTU-CVE-2024-0565
An out-of-bounds memory read flaw was found in receiveencryptedstandard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Kernel. This issue occurs due to integer underflow on the memcpy length, leading to a denial of service...
PT-2023-8385 · Linux +9 · Linux Kernel +9
Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: An out-of-bounds memory read flaw was found in the receive encrypted standard function in the SMB Client sub-component of the Linux Kernel. This issue occurs due to integer underflow o...
PT-2023-35588 · Git +1 · Clamav
Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: A crash was reported due to a Memcpy-param-overlap issue. The crash state includes repeat, p ere, and p ere. Recommendations: At the moment, there is no information about a newer versio...
kernel: HID: hyperv: avoid struct memcpy overrun warning
A compiler warning issue was found in the Linux kernel's Hyper-V HID driver that could lead to potential memory safety issues. A local user can trigger this issue when the fortified memcpy implementation detects potential buffer overflows in the mousevsconreceive function, where the compiler cann...
kernel: crypto: qat - fix out-of-bounds read
An out-of-bounds read vulnerability was found in the Linux kernel's Intel QAT QuickAssist Technology crypto driver. When preparing an AES-CTR encryption request on QAT GEN4 devices, the driver rounds up the key size by 16 bytes before copying. If this rounding occurs before the memcpy operation,...
Fedora 38 : stb / usd (2023-d486d13cfd)
The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-d486d13cfd advisory. Security fix for CVE-2023-45661 CVE-2023-45662 CVE-2023-45663 CVE-2023-45664 CVE-2023-45666 CVE-2023-45667 CVE-2023-45675 CVE-2023-43281 Tenable has...
Out-of-bounds Read
libstb.so is vulnerable to Out-of-bounds Read. The vulnerability is caused when stbisetflipverticallyonload is set to TRUE and reqcomp is set to a number that does not match the real number of components per pixel, the library attempts to flip the image vertically. An attacker can craft an image...
Out-of-bounds Read
libstb.so s vulnerable to Out-of-bounds Read. The vulnerability is due to an incorrect calculation of the twoback pointer. This allows an attacker to exploit the out-of-bounds read with a crafted image file using memcpy in stbigifloadnext, This potentially leads to leaking internal memory...
FreeBSD : xorg-server -- Multiple vulnerabilities (9e2fdfc7-e237-4393-9fa5-2d50908c66b3)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 9e2fdfc7-e237-4393-9fa5-2d50908c66b3 advisory. - The X.Org project reports: When prepending values to an existing property an invalid offset...
xorg-server -- Multiple vulnerabilities
The X.Org project reports: ZDI-CAN-22153/CVE-2023-5367: X.Org server: OOB write in XIChangeDeviceProperty/RRChangeOutputProperty When prepending values to an existing property an invalid offset calculation causes the existing values to be appended at the wrong offset. The resulting memcpy would...
SUSE CVE-2023-45661
stbimage is a single file MIT licensed library for processing images. A crafted image file may trigger out of bounds memcpy read in stbigifloadnext. This happens because twoback points to a memory address lower than the start of the buffer out. This issue may be used to leak internal memory...
Ubuntu 20.04 ESM / 22.04 ESM : ldns vulnerabilities (USN-5257-2)
The remote Ubuntu 20.04 ESM / 22.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5257-2 advisory. USN-5257-1 fixed several vulnerabilities in ldns. This update provides the corresponding update for Ubuntu 20.04 ESM and Ubuntu 22.04 ESM...
CVE-2023-45661
stbimage is a single file MIT licensed library for processing images. A crafted image file may trigger out of bounds memcpy read in stbigifloadnext. This happens because twoback points to a memory address lower than the start of the buffer out. This issue may be used to leak internal memory...
CVE-2023-45662
stbimage is a single file MIT licensed library for processing images. When stbisetflipverticallyonload is set to TRUE and reqcomp is set to a number that doesn’t match the real number of components per pixel, the library attempts to flip the image vertically. A crafted image file can trigger memc...
CVE-2023-45661
stbimage is a single file MIT licensed library for processing images. A crafted image file may trigger out of bounds memcpy read in stbigifloadnext. This happens because twoback points to a memory address lower than the start of the buffer out. This issue may be used to leak internal memory...
Out-of-bounds
stbimage is a single file MIT licensed library for processing images. A crafted image file may trigger out of bounds memcpy read in stbigifloadnext. This happens because twoback points to a memory address lower than the start of the buffer out. This issue may be used to leak internal memory...
UBUNTU-CVE-2023-45661
stbimage is a single file MIT licensed library for processing images. A crafted image file may trigger out of bounds memcpy read in stbigifloadnext. This happens because twoback points to a memory address lower than the start of the buffer out. This issue may be used to leak internal memory...
CVE-2023-45662
stbimage is a single file MIT licensed library for processing images. When stbisetflipverticallyonload is set to TRUE and reqcomp is set to a number that doesn’t match the real number of components per pixel, the library attempts to flip the image vertically. A crafted image file can trigger memc...