GHSA-PF3P-V9XP-MRVF py-lmdb Invalid write operation

An issue was discovered in py-lmdb 0.97. For certain values of mnflags, mdbcursorset triggers a memcpy with an invalid write operation within mdbxcursorinit1. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker...

py-lmdb Invalid write operation

An issue was discovered in py-lmdb 0.97. For certain values of mnflags, mdbcursorset triggers a memcpy with an invalid write operation within mdbxcursorinit1. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker...

GHSA-9Q62-R72G-PVV7 py-lmdb Invalid write operation

An issue was discovered in py-lmdb 0.97. For certain values of mdflags, mdbnodeadd does not properly set up a memcpy destination, leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker...

py-lmdb Invalid write operation

An issue was discovered in py-lmdb 0.97. For certain values of mdflags, mdbnodeadd does not properly set up a memcpy destination, leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker...

OSV-2022-426 Memcpy-param-overlap in repeat

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47557 Crash type: Memcpy-param-overlap Crash state: repeat pere cliregcompreal...

CVE-2018-17582

Tcpreplay v4.3.0 beta1 contains a heap-based buffer over-read. The getnextpacket function in the sendpackets.c file uses the memcpy function unsafely to copy sequences from the source buffer pktdata to the destination prevpacket-pktdata. This will result in a Denial of Service DoS and potentially...

CVE-2022-30767

nfslookupreply in net/nfs.c in Das U-Boot through 2022.04 and through 2022.07-rc2 has an unbounded memcpy with a failed length check, leading to a buffer overflow. NOTE: this issue exists because of an incorrect fix for CVE-2019-14196...

CVE-2022-30767

nfslookupreply in net/nfs.c in Das U-Boot through 2022.04 and through 2022.07-rc2 has an unbounded memcpy with a failed length check, leading to a buffer overflow. NOTE: this issue exists because of an incorrect fix for CVE-2019-14196...

UBUNTU-CVE-2022-30767

nfslookupreply in net/nfs.c in Das U-Boot through 2022.04 and through 2022.07-rc2 has an unbounded memcpy with a failed length check, leading to a buffer overflow. NOTE: this issue exists because of an incorrect fix for CVE-2019-14196...

Das U-Boot 安全漏洞

Das U-Boot is a boot loader program mainly for embedded systems. The program supports many different computer architectures such as PPC, ARM, AVR32, MIPS, x86, 68k, Nios and MicroBlaze. A security vulnerability exists in Das U-Boot, which stems from nfslookupreply in net/nfs.c having an infinite...

CVE-2021-33316

The TRENDnet TI-PG1284i switchhw v2.0R prior to version 2.0.2.S0 suffers from an integer underflow vulnerability. This vulnerability exists in its lldp related component. Due to lack of proper validation on length field of ChassisID TLV, by sending a crafted lldp packet to the device, integer...

Integer overflow

The TRENDnet TI-PG1284i switchhw v2.0R prior to version 2.0.2.S0 suffers from an integer underflow vulnerability. This vulnerability exists in its lldp related component. Due to lack of proper validation on length field of PortID TLV, by sending a crafted lldp packet to the device, integer...

kernel: HID: mcp2221: prevent a buffer overflow in mcp_smbus_write()

A buffer overflow vulnerability has been found in the linux kernel, such that when calling mcpsmbuswrite, a buffer of a smaller size is called when performing memcpy, resulting in damage to confidentiality, integrity, and availability of the system...

Amazon Linux 2 : libtiff (ALAS-2022-1780)

The version of libtiff installed on the remote host is prior to 4.0.3-35. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1780 advisory. Integer overflow in the writeBufferToSeparateStrips function in tiffcrop.c in LibTIFF before 4.0.7 allows remote attacker...

EulerOS 2.0 SP5 : libtiff (EulerOS-SA-2022-1540)

According to the versions of the libtiff packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Null source pointer passed as an argument to memcpy function within TIFFFetchStripThing in tifdirread.c in libtiff versions from 3.9.0 to 4.3.0...

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2022-1540)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP5 : ldns (EulerOS-SA-2022-1538)

According to the versions of the ldns package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - When ldns version 1.7.1 verifies a zone file, the ldnsrrnewfrmstrinternal function has a heap out of bounds read vulnerability. An attacker can lea...

Denial Of Service (DoS)

tiff is vulnerable to denial of service. The vulnerability exists when a Null source pointer is passed as an argument to memcpy function within TIFFFetchStripThing in tifdirread.c...

GSD-2022-1001661 net/smc: use memcpy instead of snprintf to avoid out of bounds read

net/smc: use memcpy instead of snprintf to avoid out of bounds read This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.11 by commit...

GSD-2022-1001596 media: omap3isp: Use struct_group() for memcpy() region

media: omap3isp: Use structgroup for memcpy region This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.19 by commit...