148 matches found
CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...
CVE-2020-28928
The CVE-2020-28928 entry concerns musl libc up to version 1.2.1. The root cause is a mishandling in wcsnrtombs of destination buffer size when applying a source character limit, which can lead to an invalid write (buffer overflow) or an infinite loop depending on input, as documented in multiple ...
CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...
CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...
musl libc buffer error vulnerability
musl libc is musl open source an open source C language standard library . Mainly used for embedded systems and mobile devices and so on. A buffer error vulnerability exists in musl libc version 1.2.1 and earlier versions, which stems from wcsnrtombs incorrectly handling a specific combination of...
CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...
PT-2020-6698 · Musl Libc +3 · Musl Libc +3
Name of the Vulnerable Software and Affected Versions: musl libc versions 1.2.1 and earlier Description: The issue is related to the wcsnrtombs function in musl libc, which mishandles certain combinations of destination buffer size and source character limit. This can lead to an invalid write...
GLSA-202003-13 : musl: x87 floating-point stack adjustment imbalance
The remote host is affected by the vulnerability described in GLSA-202003-13 musl: x87 floating-point stack adjustment imbalance A flaw in musl libcs arch-specific math assembly code for i386 was found which can lead to x87 stack overflow in the execution of subsequent math code. Impact : Impact...
TEA - Ssh-Client Worm
A ssh-client worm made with tas framework. How it works? This is a fakessh-client that manipulates the tty input/output to execute arbitrary commands and upload itself through the ssh connection. To work properly, the remote machine needs: display the "Last login" message when login. dd and stty...
CVE-2014-3484
Multiple stack-based buffer overflows in the dnexpand function in network/dnexpand.c in musl libc 1.1x before 1.1.2 and 0.9.13 through 1.0.3 allow remote attackers to 1 have unspecified impact via an invalid name length in a DNS response or 2 cause a denial of service crash via an invalid name...
DEBIAN-CVE-2014-3484
Multiple stack-based buffer overflows in the dnexpand function in network/dnexpand.c in musl libc 1.1x before 1.1.2 and 0.9.13 through 1.0.3 allow remote attackers to 1 have unspecified impact via an invalid name length in a DNS response or 2 cause a denial of service crash via an invalid name...
CVE-2014-3484
Multiple stack-based buffer overflows in the dnexpand function in network/dnexpand.c in musl libc 1.1x before 1.1.2 and 0.9.13 through 1.0.3 allow remote attackers to 1 have unspecified impact via an invalid name length in a DNS response or 2 cause a denial of service crash via an invalid name...
UBUNTU-CVE-2014-3484
Multiple stack-based buffer overflows in the dnexpand function in network/dnexpand.c in musl libc 1.1x before 1.1.2 and 0.9.13 through 1.0.3 allow remote attackers to 1 have unspecified impact via an invalid name length in a DNS response or 2 cause a denial of service crash via an invalid name...
CVE-2014-3484
Multiple stack-based buffer overflows in the dnexpand function in network/dnexpand.c in musl libc 1.1x before 1.1.2 and 0.9.13 through 1.0.3 allow remote attackers to 1 have unspecified impact via an invalid name length in a DNS response or 2 cause a denial of service crash via an invalid name...
Stack overflow
Multiple stack-based buffer overflows in the dnexpand function in network/dnexpand.c in musl libc 1.1x before 1.1.2 and 0.9.13 through 1.0.3 allow remote attackers to 1 have unspecified impact via an invalid name length in a DNS response or 2 cause a denial of service crash via an invalid name...
CVE-2014-3484
Multiple stack-based buffer overflows in the dnexpand function in network/dnexpand.c in musl libc 1.1x before 1.1.2 and 0.9.13 through 1.0.3 allow remote attackers to 1 have unspecified impact via an invalid name length in a DNS response or 2 cause a denial of service crash via an invalid name...
CVE-2014-3484
musl libc 1.1x before 1.1.2 and 0.9.13 through 1.0.3 contain multiple stack-based buffer overflows in __dn_expand (network/dn_expand.c). Remote DNS responses with an invalid name length can cause (1) unspecified impact or (2) denial of service (crash) due to an infinite loop with no output. Root ...
CVE-2019-14697
musl libc through 1.1.23 has an x87 floating-point stack adjustment imbalance, related to the math/i386/ directory. In some cases, use of this library could introduce out-of-bounds writes that are not present in an application's source code...
CVE-2019-14697
musl libc through 1.1.23 has an x87 floating-point stack adjustment imbalance, related to the math/i386/ directory. In some cases, use of this library could introduce out-of-bounds writes that are not present in an application's source code...
DEBIAN-CVE-2019-14697
musl libc through 1.1.23 has an x87 floating-point stack adjustment imbalance, related to the math/i386/ directory. In some cases, use of this library could introduce out-of-bounds writes that are not present in an application's source code...