AZL-8565 CVE-2022-0554 affecting package vim for versions less than 8.2.4743-1

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2...

DEBIAN-CVE-2022-0554

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2...

CVE-2022-0554

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2...

CVE-2022-0554

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2...

CVE-2022-0554

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2...

CVE-2022-0554

CVE-2022-0554 is referenced in connected Astra Linux security bulletin as a Vim vulnerability: “Out-of-range Pointer Offset” in the GitHub Vim/vim repository, affecting Vim prior to 8.2. The Astra bulletin repeats the description but provides no additional technical details (affected versions, ex...

CVE-2022-0554

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: i40e: Fix queues reservation for XDP CVE-2021-47619 A random memory access flaw was found in the Linux kernel's GPU i915 kernel driver functionality in the way a user may run malicious code on the GPU. This flaw...

CVE-2021-46547

Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /usr/local/bin/mjs+0x2c17e. This vulnerability can lead to a Denial of Service DoS...

Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp because there is no validation of the relationship of the total size to the offset and size.

...

Denial of service due to FPE in Exiv2::Internal::resolveLens0xffff

...

kconfig-hardened-check-master

This is a tool for checking Linux kernel Kconfig option lists against security hardening preferences. The tool is called "kconfig-hardened-check" and is written in Python. It is designed to help users ensure that their Linux systems are properly secured by checking the kernel configuration agains...

DEBIAN-CVE-2021-46044

A Pointer Dereference Vulnerabilty exists in GPAC 1.0.1via ShiftMetaOffset.isra, which causes a Denial of Service context-dependent...

GPAC 代码问题漏洞

GPAC is an open source multimedia framework. GPAC has a denial of service vulnerability in version 1.0.1, which stems from a pointer dereference in the finplaceshiftmoovmetaoffset function and can be exploited by attackers to conduct denial of service attacks...

PT-2022-12525 · Gpac · Gpac

Name of the Vulnerable Software and Affected Versions: GPAC version 1.0.1 Description: A Pointer Dereference issue exists in GPAC, which causes a Denial of Service. This issue is context-dependent and occurs via ShiftMetaOffset.isra. Recommendations: For GPAC version 1.0.1, consider disabling the...

GSD-2021-1002733 vduse: check that offset is within bounds in get_config()

vduse: check that offset is within bounds in getconfig This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.11 by commit...

UBUNTU-CVE-2021-44922

A null pointer dereference vulnerability exists in gpac 1.1.0 in the BDCheckSFTimeOffset function, which causes a segmentation fault and application crash...

UBUNTU-CVE-2021-43608

Doctrine DBAL 3.x before 3.1.4 allows SQL Injection. The escaping of offset and length inputs to the generation of a LIMIT clause was not probably cast to an integer, allowing SQL injection to take place if application developers passed unescaped user input to the DBAL QueryBuilder or any other A...

Sql injection

The importFromRedirection AJAX action of the SEO Redirection Plugin – 301 Redirect Manager WordPress plugin before 8.2, available to any authenticated user, does not properly sanitise the offset parameter before using it in a SQL statement, leading an SQL injection when the redirection plugin i...

WordPress SQL注入漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A SQL injection vulnerability exists in the WordPress plugin SEO Redirection prior to version 8.2. T...