radare2 'parseOperands' function stack buffer overflow vulnerability

radare2 is a set of libraries and tools for working with binary files. A stack buffer overflow vulnerability exists in the 'parseOperands' function in the libr/asm/arch/arm/armass64.c file in radare2 versions prior to 3.1.2. An attacker can exploit this vulnerability to cause a denial of service...

UBUNTU-CVE-2018-20460

In radare2 prior to 3.1.2, the parseOperands function in libr/asm/arch/arm/armass64.c allows attackers to cause a denial-of-service application crash caused by stack-based buffer overflow by crafting an input file...

Tiny C Compiler Out-of-Bounds Write Vulnerability

Tiny C Compiler is a C compiler for x86, X86-64 and ARM processors created by Fabrice Bellard. An out-of-bounds write vulnerability exists in the asmparsedirective function in tccasm.c in Tiny C Compiler also known as TinyCC or TCC 0.9.27, which can be exploited by an attacker via a specially...

LibRaw stack buffer overflow vulnerability (CNVD-2018-26473)

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A stack-based buffer overflow vulnerability exists in the 'parsemakernote' function of the dcrawcommon.cpp file in LibRaw version 0.19.1. An attacker can exploit this...

DEBIAN-CVE-2018-20376

An issue was discovered in Tiny C Compiler aka TinyCC or TCC 0.9.27. Compiling a crafted source file leads to an 8 byte out of bounds write in the asmparsedirective function in tccasm.c...

UBUNTU-CVE-2018-20376

An issue was discovered in Tiny C Compiler aka TinyCC or TCC 0.9.27. Compiling a crafted source file leads to an 8 byte out of bounds write in the asmparsedirective function in tccasm.c...

DEBIAN-CVE-2018-20337

There is a stack-based buffer overflow in the parsemakernote function of dcrawcommon.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact...

UBUNTU-CVE-2018-20337

There is a stack-based buffer overflow in the parsemakernote function of dcrawcommon.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact...

LibRaw 'parse_rollei()' function denial of service vulnerability

LibRaw is a C++ library for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A denial of service vulnerability exists in the LibRaw 'parserollei' function. An attacker can exploit the vulnerability to cause a DoS Denial of Service...

PT-2022-11257 · Gpac +1 · Gpac +1

Name of the Vulnerable Software and Affected Versions: Gpac versions through 1.0.1 Description: A null pointer dereference vulnerability exists via the gf avc parse nalu function in av parsers.c when using mp4box, which causes a denial of service. This issue leads to a segmentation fault...

PT-2023-15159 · Unknown +1 · Gpac Mp4Box +1

Name of the Vulnerable Software and Affected Versions: GPAC MP4Box version 2.1-DEV-rev574-g9d5bb184b Description: The issue is related to a segmentation violation via the function gf sm load init swf at scene manager/swf parse.c. No information is provided about the estimated number of potentiall...

PT-2022-11253 · Gpac +1 · Gpac +1

Name of the Vulnerable Software and Affected Versions: gpac versions 1.0.1 and earlier Description: A null pointer deference issue exists via the naludmx parse nal avc function in reframe nalu, allowing a denial of service. Recommendations: For gpac versions 1.0.1 and earlier, consider disabling...

PT-2023-15453 · Unknown +1 · Gpac Mp4Box +1

Name of the Vulnerable Software and Affected Versions: GPAC MP4Box version 2.1-DEV-rev644-g5c4df2a67 Description: The issue is related to a buffer overflow in the hevc parse vps extension function, located in the media tools/av parsers.c file at line 7662. This buffer overflow can be exploited,...

PT-2022-11256 · Gpac +1 · Gpac +1

Name of the Vulnerable Software and Affected Versions: Gpac versions through 1.0.2 Description: A Segmentation fault caused by null pointer dereference exists in Gpac via the avc parse slice function in av parsers.c when using mp4box, which causes a denial of service. Recommendations: For Gpac...

PT-2023-3416 · Gpac +3 · Gpac +3

Name of the Vulnerable Software and Affected Versions: gpac versions prior to 2.2.2 Description: The issue is related to a stack-based buffer overflow in the gpac multimedia platform, specifically in the xml sax parse function. This overflow can lead to a denial of service. Recommendations: For...

PT-2023-15168 · Unknown +1 · Gpac Mp4Box +1

Name of the Vulnerable Software and Affected Versions: GPAC MP4box version 2.1-DEV-rev574-g9d5bb184b Description: The issue is related to a buffer overflow in the hevc parse vps extension function of media tools/av parsers.c. This function is used for parsing video parameters, and the buffer...

CVE-2018-20027

The yamlparse.load method in Pylearn2 allows code injection...

Lisa-lab/pylearn2 inventory in command execution vulnerability

The Pylearn2/config/yamlparse.load function suffers from a command execution vulnerability in its implementation, which allows an attacker to perform arbitrary code operations...

Google Android Buffer Overflow Vulnerability (CNVD-2019-27574)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A buffer overflow vulnerability exists in the 'impdparsefiltblock' function of the impddrcdynamicpayload.c file in Android version 9, which stems from a lack of boundary checking ...

Google Android Buffer Overflow Vulnerability (CNVD-2019-27582)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A buffer overflow vulnerability exists in the 'impdparsesplitdrccharacteristic' function of the impddrcstaticpayload.c file in Android version 9, which stems from a lack of bounda...