800 matches found
PT-2022-17488 · Qualcomm · Qualcomm Snapdragon
Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to memory corruption in WLAN due to an integer overflow leading to a buffer overflow while parsing GTK frames. This affects various Qualcomm Snapdragon...
The vulnerability of the sdp_cstate_alloc_buf function in the Bluetooth technology stack for Linux BlueZ, which allows a hacker to cause a service failure.
The vulnerability of the sdpcstateallocbuf function in the Bluetooth technology stack for Linux BlueZ is related to the lack of memory release when processing a linked list of cstates. Exploiting this vulnerability allows an attacker to cause a service failure...
PT-2022-26096 · Bento4 · Bento4
Name of the Vulnerable Software and Affected Versions: Bento4 version 1.6.0-639 Description: An issue was discovered in the function AP4 DataBuffer::ReallocateBuffer in Core/Ap4DataBuffer.cpp, which leads to excessive memory consumption. Recommendations: For Bento4 version 1.6.0-639, consider...
kernel: ice: arfs: fix use-after-free when freeing @rx_cpu_rmap
In the Linux kernel, the following vulnerability has been resolved: ice: arfs: fix use-after-free when freeing @rxcpurmap The CI testing bots triggered the following splat: 718.203054 BUG: KASAN: use-after-free in freeirqcpurmap+0x53/0x80 718.206349 Read of size 4 at addr ffff8881bd127e00 by task...
Vim 资源管理错误漏洞
Vim is a cross-platform text editor. versions prior to Vim 9.0.0490 are vulnerable to a resource management error, which stems from the existence of a memory reuse after release issue. No detailed vulnerability details are currently available...
PT-2022-24659 · Huawei · Emui +2
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a double free vulnerability in the storage module. This means that memory is freed twice, which can lead to unexpected behavior...
CVE-2021-3669
A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS...
PT-2022-23211
Name of the Vulnerable Software and Affected Versions Apache Avro Rust SDK versions prior to 0.14.0 Description The issue allows a Reader to consume memory beyond the allowed constraints, leading to out of memory on the system. This affects Rust applications using the Apache Avro Rust SDK...
ant: excessive memory allocation when reading a specially crafted TAR archive
When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Apache Ant prior to 1.9.16 and 1.10.11 were affected...
OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097)
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Utility. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated...
PT-2022-22638 · Unknown · Teamplus Pro
Name of the Vulnerable Software and Affected Versions: Teamplus Pro affected versions not specified Description: The issue is related to an 'allocation of resource without limits or throttling' problem in the community discussion function. A remote attacker with general user privileges can post a...
PT-2022-21499 · Apple · Macos Monterey +7
Name of the Vulnerable Software and Affected Versions: iOS versions prior to 15.6 iPadOS versions prior to 15.6 macOS Big Sur versions prior to 11.6.8 watchOS versions prior to 8.7 tvOS versions prior to 15.6 macOS Monterey versions prior to 12.5 macOS Catalina versions prior to Security Update...
CLSA-2022-1658171795 Fixed CVE-2022-31625 in php
CVE-2022-31625: fix free of uninitialized memory leading to RCE...
SUSE-SU-2022:2297-1 Security update for python-Twisted
This update for python-Twisted fixes the following issues: - CVE-2022-21716: Fixed that ssh server accepts an infinite amount of data using all the available memory bsc1196739...
UBUNTU-CVE-2021-41690
DCMTK through 3.6.6 does not handle memory free properly. The malloced memory for storing all file information are recorded in a global variable LST and are not freed properly. Sending specific requests to the dcmqrdb program can incur a memory leak. An attacker can use it to launch a DoS attack...
SUSE-SU-2022:2117-1 Security update for python-Twisted
This update for python-Twisted fixes the following issues: - CVE-2022-21716: Fixed that ssh server accepts an infinite amount of data using all the available memory bsc1196739...
SUSE-SU-2022:2070-1 Security update for python-Twisted
This update for python-Twisted fixes the following issues: - CVE-2022-21716: Fixed that ssh server accepts an infinite amount of data using all the available memory bsc1196739...
CVE-2022-31287
An issue was discovered in Bento4 v1.2. There is an allocation size request error in /Ap4RtpAtom.cpp...
CVE-2022-31285
An issue was discovered in Bento4 1.2. The allocator is out of memory in /Source/C++/Core/Ap4Array.h...
Design/Logic Flaw
An issue was discovered in Bento4 1.2. The allocator is out of memory in /Source/C++/Core/Ap4Array.h...