CVE-2016-10344

In all Qualcomm products with Android releases from CAF using the Linux kernel, the use of an out-of-range pointer offset is potentially possible in LTE...

CVE-2014-9411

In all Qualcomm products with Android releases from CAF using the Linux kernel, the use of an out-of-range pointer offset is potentially possible in rollback protection...

CVE-2014-9411

In all Qualcomm products with Android releases from CAF using the Linux kernel, the use of an out-of-range pointer offset is potentially possible in rollback protection...

CVE-2016-10344

CVE-2016-10344 affects Qualcomm components in Android CAF builds using the Linux kernel, where an out-of-range pointer offset in LTE could be exploited. The entry lists a high-severity impact (CVSS v3 base score 9.8, CRITICAL) with attack vector Network and no user interaction, but the provided d...

Heap overflow

In a display driver in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, a variable controlled by userspace is used to calculate offsets and sizes for copy operations, which could result in heap overflow...

DEBIAN-CVE-2014-0146

The qcow2open function in the block/qcow2.c in QEMU before 1.7.2 and 2.x before 2.0.0 allows local users to cause a denial of service NULL pointer dereference via a crafted image which causes an error, related to the initialization of the snapshotoffset and nbsnapshots fields...

Apache Kafka Deserialization Vulnerability

Apache Kafka is an application service for building real-time data pipelines and streaming media. Apache kafka connect-api is vulnerable to a deserialization vulnerability in the execution of the FileOffsetBackingStore class. An attacker can exploit the vulnerability to cause remote code executio...

offsetexpressionprinting.com XSS vulnerability

Vulnerable URL: http://offsetexpressionprinting.com/tagproducts.php?idtag=4%22%3E%3Csvg%2Fonload%3Dprompt%2FOPENBUGBOUNTY%2F%3E Details: Description| Value ---|--- Patched:| Yes, at 27.11.2017 Latest check for patch:| 27.11.2017 16:36 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

UBUNTU-CVE-2017-9924

In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to execute arbitrary code or cause a denial of service via a crafted file, related to a "User Mode Write AV starting at image0000000000400000+0x000000000001b72a."...

UBUNTU-CVE-2017-9754

The processotr function in bfd/versados.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, does not validate a certain offset, which allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified...

Null pointer dereference

In WCDMA in all Android releases from CAF using the Linux kernel, a Use of Out-of-range Pointer Offset vulnerability could potentially exist...

CVE-2014-9929

In WCDMA in all Android releases from CAF using the Linux kernel, a Use of Out-of-range Pointer Offset vulnerability could potentially exist...

CVE-2014-9929

In WCDMA in all Android releases from CAF using the Linux kernel, a Use of Out-of-range Pointer Offset vulnerability could potentially exist...

CVE-2014-9929

CVE-2014-9929 refers to a Use of Out-of-range Pointer Offset vulnerability in WCDMA for Android CAF builds using the Linux kernel. Public entries describe the root cause as an out-of-range pointer offset (with at least one linked source labeling the issue as a Null pointer dereference). The vulne...

CVE-2015-9002

This CVE concerns Google Android TrustZone, where a DRM routine in the TrustZone DRM path can suffer an out-of-range pointer offset (integer overflow) vulnerability. Connected CNVD entry explicitly states an integer overflow in the TrustZone DRM routine exists on Android, and that an attacker cou...

SUSE-SU-2017:1317-1 Security update for bash

This update for bash fixes an issue that could lead to syntax errors when parsing scripts that use expr1 inside loops. Additionally, the popd build-in now ensures that the normalized stack offset is within bounds before trying to free that stack entry. This fixes a segmentation fault...

QuickZip V4. 60 buffer overflow vulnerability details-vulnerability warning-the black bar safety net

This article will provide the reader a detailed description QuickZip v4. 60 buffer overflow vulnerability knowledge. Due to the vulnerabilities in 2010 appeared, so it's designed only for 32-bit Windows XP. So, I decided to try it in 64-bit Windows 7 reproduce the vulnerability, it would be a fun...

NVIDIA GPU Display Driver Local Elevation of Privilege Vulnerability (CNVD-2017-07279)

NVIDIA GPU Display Driver is a set of graphics processor GPU graphics card drivers from NVIDIA. A security vulnerability exists in the kernel mode layer handler in NVIDIA GPU Display Driver due to the program failing to properly validate user-submitted values during offset calculations. An attack...

CVE-2017-8396

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 because the existing reloc offset range tests didn't catch small negative offsets less than the size of the reloc field. This vulnerability causes programs that condu...

DEBIAN-CVE-2017-0350

All versions of the NVIDIA GPU Display Driver contain a vulnerability in the kernel mode layer handler where a value passed from a user to the driver is not correctly validated and used in an offset calculation may lead to denial of service or potential escalation of privileges...