CVE-2019-10513

CVE-2019-10513 concerns a potential null pointer access when SPDM commands are executed in TrustZone on Qualcomm Snapdragon platforms (covering a wide range of Snapdragon/SoC variants). The vulnerability is locally exploitable and could impact memory availability, with no confidentiality/integrit...

CVE-2019-10513

Possibility of Null pointer access if the SPDM commands are executed in the non-standard way in Trustzone in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon...

Denial Of Service (DoS)

libsolv.so is vulnerable to denial of service DoS. The vulnerability is possible due to illegal address access that leads to a null pointer dereference via the testcaseread function in ext/testcase.c...

CVE-2017-18298

Lack of Input Validation in SDMX API can lead to NULL pointer access in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD...

CVE-2017-18298

Lack of Input Validation in SDMX API can lead to NULL pointer access in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD...

CVE-2017-18298

CVE-2017-18298 describes a lack of input validation in the SDMX API that can cause NULL pointer dereference in Qualcomm Snapdragon platforms listed (e.g., MDM9206/9607/9650; MSM8996AU; SD 210/212/205, 410/12, 425, 430, 450, 615/16/ SD 415, 617, 625, 650/52, 810, 820/820A, 835, 845, 850, SDA660). ...

Denial Of Service (DoS) Through Null Pointer Access

libarchive.so is susceptible to Denial of Service DoS through null pointer access. The vulnerability is possible when the header is a split file in multivolume RAR, it does not properly check the file name and flag for multivolume, allowing the attacker to parse malicious .rar files...

CVE-2018-1000099

Removed by vendor...

CVE-2018-7285

A NULL pointer access issue was discovered in Asterisk 15.x through 15.2.1. The RTP support in Asterisk maintains its own registry of dynamic codecs and desired payload numbers. While an SDP negotiation may result in a codec using a different payload number, these desired ones are still stored...

Null pointer dereference

A NULL pointer access issue was discovered in Asterisk 15.x through 15.2.1. The RTP support in Asterisk maintains its own registry of dynamic codecs and desired payload numbers. While an SDP negotiation may result in a codec using a different payload number, these desired ones are still stored...

CVE-2018-7285

A NULL pointer access issue was discovered in Asterisk 15.x through 15.2.1. The RTP support in Asterisk maintains its own registry of dynamic codecs and desired payload numbers. While an SDP negotiation may result in a codec using a different payload number, these desired ones are still stored...

CVE-2018-7285

CVE-2018-7285 affects Asterisk 15.x up to 15.2.1. A NULL pointer dereference can occur in RTP handling: the RTP registry of dynamic codecs/payload numbers is consulted for all incoming packets, even dynamic ones, and if a payload maps to a different codec type than the RTP stream, and no stream o...

CVE-2018-7285

A NULL pointer access issue was discovered in Asterisk 15.x through 15.2.1. The RTP support in Asterisk maintains its own registry of dynamic codecs and desired payload numbers. While an SDP negotiation may result in a codec using a different payload number, these desired ones are still stored...

CVE-2017-8148

Audio driver in P9 smartphones with software The versions before EVA-AL10C00B389 has a denial of service DoS vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and the race condition cause null pointer accessing during the application access share...

OPENSUSE-SU-2017:2567-1 Security update for openjpeg2

This update for openjpeg2 fixes the following issues: CVE-2016-9114: NULL Pointer Access in function imagetopnm of convert.c:1943jp2 could lead to crash bsc1007740 CVE-2016-9115: Heap Buffer Overflow in function imagetotga of convert.cjp2 bsc1007741 CVE-2016-9580, CVE-2016-9581: Possible Heap...

Debian DSA-3957-1 : ffmpeg - security update

Several vulnerabilities have been discovered in FFmpeg, a multimedia player, server and encoder. These issues could lead to Denial-of-Service and, in some situation, the execution of arbitrary code. - CVE-2017-9608 Yihan Lian of Qihoo 360 GearTeam discovered a NULL pointer access when parsing a...

CVE-2017-7209

The dumpsectionasbytes function in readelf in GNU Binutils 2.28 accesses a NULL pointer while reading section contents in a corrupt binary, leading to a program crash...

SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2017:0529-1)

This update for ImageMagick fixes the following issues : - CVE-2016-10046: Prevent buffer overflow in draw.c caused by an incorrect length calculation bsc1017308 - CVE-2016-10048: Arbitrary module could have been load because relative path were not escaped bsc1017310 - CVE-2016-10049: Corrupt RLE...

MGASA-2017-0051 Updated openjpeg2 packages fix security vulnerabilities

Floating Point Exception aka FPE or divide by zero in opjpinextcprl function in openjp2/pi.c:523 in OpenJPEG 2.1.2. CVE-2016-9112 There is a NULL pointer dereference in function imagetobmp of convertbmp.c:980 of OpenJPEG 2.1.2. image-comps0.data is not assigned a value after initializationNULL...

Updated openjpeg2 packages fix security vulnerabilities

Floating Point Exception aka FPE or divide by zero in opjpinextcprl function in openjp2/pi.c:523 in OpenJPEG 2.1.2. CVE-2016-9112 There is a NULL pointer dereference in function imagetobmp of convertbmp.c:980 of OpenJPEG 2.1.2. image-comps0.data is not assigned a value after initializationNULL...