AZL-26346 CVE-2023-29582 affecting package yasm 1.3.0-17

yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via the function parseexpr1 at /nasm/nasm-parse.c. Note: This has been disputed by third parties who argue this is a bug and not a security issue because yasm is a standalone program not designed to run untrusted code...

CVE-2023-29582

yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via the function parseexpr1 at /nasm/nasm-parse.c. Note: This has been disputed by third parties who argue this is a bug and not a security issue because yasm is a standalone program not designed to run untrusted code...

DEBIAN-CVE-2023-29582

yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via the function parseexpr1 at /nasm/nasm-parse.c. Note: This has been disputed by third parties who argue this is a bug and not a security issue because yasm is a standalone program not designed to run untrusted code...

AZL-35396 CVE-2023-29582 affecting package yasm 1.3.0-17

yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via the function parseexpr1 at /nasm/nasm-parse.c. Note: This has been disputed by third parties who argue this is a bug and not a security issue because yasm is a standalone program not designed to run untrusted code...

UBUNTU-CVE-2023-29583

DISPUTED yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via the function parseexpr5 at /nasm/nasm-parse.c. Note: This has been disputed by third parties who argue this is a bug and not a security issue because yasm is a standalone program not designed to run untrusted code...

UBUNTU-CVE-2023-29582

DISPUTED yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via the function parseexpr1 at /nasm/nasm-parse.c. Note: This has been disputed by third parties who argue this is a bug and not a security issue because yasm is a standalone program not designed to run untrusted code...

PT-2023-22322 · Yasm +1 · Yasm +1

Name of the Vulnerable Software and Affected Versions: yasm version 1.3.0.55.g101bc Description: A stack overflow issue was discovered in yasm via the parse expr1 function at /nasm/nasm-parse.c. This issue has been disputed by third parties, who argue it is a bug rather than a security issue due ...

yasm 缓冲区错误漏洞

yasm is a completely rewritten Netwide assembler from the yasm open source. A buffer error vulnerability exists in yasm version 1.3.0.55.g101bc, which stems from the discovery of a contained stack overflow vulnerability via the parseexpr5 function in /nasm/nasm-parse.c...

yasm 缓冲区错误漏洞

yasm is a completely rewritten Netwide assembler from the yasm open source. A buffer error vulnerability exists in yasm version 1.3.0.55.g101bc, which stems from the discovery of a contained stack overflow vulnerability through the parseexpr1 function of /nasm/nasm-parse.c...

PT-2023-22323 · Yasm +1 · Yasm +1

Name of the Vulnerable Software and Affected Versions: yasm version 1.3.0.55.g101bc Description: A stack overflow issue was discovered in the parse expr5 function at /nasm/nasm-parse.c. This issue has been disputed by third parties, arguing it is a bug rather than a security issue, as yasm is a...

PT-2023-35787 · Git +1 · Libheif

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow read issue is identified, potentially causing a crash. The crash occurs in the RegionGeometry Polygon::parse function, which is...

OSV-2023-328 Heap-buffer-overflow in RegionItem::parse

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58152 Crash type: Heap-buffer-overflow READ 1 Crash state: RegionItem::parse heif::HeifContext::interpretheiffile heif::HeifContext::read...

PT-2023-35786 · Heif · Heif

Name of the Vulnerable Software and Affected Versions: heif affected versions not specified Description: A heap buffer overflow issue was identified, which can cause a crash. The issue occurs in the RegionItem::parse function, specifically when heif::HeifContext interprets a HEIF file or reads fr...

CVE-2023-21090

In parseUsesPermission of ParsingPackageUtils.java, there is a possible boot loop due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

Google Android 资源管理错误漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from a resource management error vulnerability that stems from uncontrolled resource consumption in the parseUsesPermission of the ParsingPackageUtils.java component, which can be exploited by an...

protobuf-c before 1.4.1 has an unsigned integer overflow in parse_required_member.

...

OESA-2023-1227 python3 security update

Python combines remarkable power with very clear syntax. It has modules, classes, exceptions, very high level dynamic data types, and dynamic typing. There are interfaces to many system calls and libraries, as well as to various windowing systems. New built-in modules are easily written in C or C...

PT-2023-35776 · Git +1 · Systemd

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A crash occurred due to an unknown read issue, as reported by OSS-Fuzz. The crash involves the udev rule parse value function and is related to the...

DEBIAN-CVE-2022-48468

protobuf-c before 1.4.1 has an unsigned integer overflow in parserequiredmember...

Integer overflow

protobuf-c before 1.4.1 has an unsigned integer overflow in parserequiredmember...