OSV-2023-568 Memcpy-param-overlap in repeat

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60565 Crash type: Memcpy-param-overlap Crash state: repeat repeat pere...

PT-2023-35908 · Git +1 · Clamav

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: A crash was reported due to a memcpy parameter overlap issue. The crash type is Memcpy-param-overlap, and the crash state includes repeat, repeat, and p ere. Recommendations: At the...

OSV-2023-528 Memcpy-param-overlap in pdfi_copy_truetype_font

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60204 Crash type: Memcpy-param-overlap Crash state: pdficopytruetypefont pdfiloadfont pdfiloaddictfont...

PT-2023-35885 · Git +1 · Clamav

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type known as Memcpy-param-overlap. The crash state involves several functions, including repeat, p ere, and cli regcomp...

kernel: i2c: out-of-bounds write in xgene_slimpro_i2c_xfer()

An out-of-bounds write vulnerability was found in the Linux kernel's SLIMpro I2C device driver. The userspace "data-block0" variable was not limited to a number between 0-255 and was used as the size of a memcpy, possibly writing beyond the end of dmabuffer. This issue could allow a local...

CVE-2023-33457

In Sogou Workflow v0.10.6, memcpy a negtive size in URIParser::parse , may cause buffer-overflow and crash...

Sogou Workflow 安全漏洞

Sogou Workflow is a C++ parallel computing and asynchronous networking engine from China's Sogou Sogou. A security vulnerability exists in Sogou Workflow version v0.10.6, which stems from a negative memcpy in URIParser::parse, which could lead to a buffer overflow...

CVE-2023-33457

In Sogou Workflow v0.10.6, memcpy a negtive size in URIParser::parse , may cause buffer-overflow and crash...

PT-2023-24347 · Sogou · Sogou Workflow

Name of the Vulnerable Software and Affected Versions: Sogou Workflow version 0.10.6 Description: The issue is related to a buffer-overflow that may cause a crash. This occurs when a negative size is used in the memcpy function within the URIParser::parse function. Recommendations: For Sogou...

CVE-2023-33457

In Sogou Workflow v0.10.6, CVE-2023-33457 arises from memcpy being called with a negative size in URIParser::parse, leading to a buffer overflow and crash. Affected product: Sogou Workflow (v0.10.6). Impact is high (CVE CVSS 3.1: 8.8) with potential for memory corruption due to improper size hand...

PT-2023-35825 · Hdf5 · Hdf5

Name of the Vulnerable Software and Affected Versions: HDF5 affected versions not specified Description: The issue is related to a crash caused by a negative-size-param, which occurs in the H5MM memcpy function, called by H5O link decode and H5O msg iterate real. Recommendations: At the moment,...

kernel: vmwgfx: out-of-bounds write in vmw_kms_cursor_snoop

An out-of-bounds memory write vulnerability was found in the Linux kernel's vmwgfx driver in vmwkmscursorsnoop due to a missing check of a memcpy length. This flaw allows a local, unprivileged attacker with access to either the /dev/dri/card0 or /dev/dri/rendererD128 and able to issue an ioctl on...

libtiff: out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix

An out-of-bounds write flaw was found in the TIFFmemcpy function in libtiff/tifunix.c in the libtiff package. By persuading a victim to open a specially-crafted TIFF image file, a remote attacker could cause a denial of service condition...

OSV-2023-371 Memcpy-param-overlap in repeat

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58625 Crash type: Memcpy-param-overlap Crash state: repeat pere cliregcompreal...

PT-2023-35810 · Git +1 · Clamav

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type known as Memcpy-param-overlap. The crash state involves several functions, including repeat, p ere, and cli regcomp...

CLSA-2023-1683146027 kernel: Fix of 23 CVEs

media: rc: Fix use-after-free bugs caused by enetxirqsim CVE-2023-1118 - net: mpls: fix stale pointer if allocation fails during device rename CVE-2023-26545 - net/ulp: prevent ULP without clone op from entering the LISTEN status CVE-2023-0461 - Bluetooth: L2CAP: Fix u8 overflow CVE-2022-45934 -...

Shannon Baseband fmtp SDP Attribute Memory Corruption

Shannon Baseband: Memory corruption when processing fmtp SDP attribute There is a memory corruption vulnerability that occurs when the baseband modem processes SDP when setting up a call. When an fmtp attribute is parsed, the integer that represents the payload type is copied into an 8-byte buffe...

UBUNTU-CVE-2023-2194

An out-of-bounds write vulnerability was found in the Linux kernel's SLIMpro I2C device driver. The userspace "data-block0" variable was not capped to a number between 0-255 and was used as the size of a memcpy, possibly writing beyond the end of dmabuffer. This flaw could allow a local privilege...

CVE-2023-2194

An out-of-bounds write vulnerability was found in the Linux kernel's SLIMpro I2C device driver. The userspace "data-block0" variable was not limited to a number between 0-255 and was used as the size of a memcpy, possibly writing beyond the end of dmabuffer. This issue could allow a local...

CVE-2023-2194

An out-of-bounds write vulnerability was found in the Linux kernel's SLIMpro I2C device driver. The userspace "data-block0" variable was not capped to a number between 0-255 and was used as the size of a memcpy, possibly writing beyond the end of dmabuffer. This flaw could allow a local privilege...