Lucene search
K

7 matches found

Cvelist
Cvelist
added 2026/03/02 4:9 p.m.38 views

CVE-2026-23865

An integer overflow in the ttvarloaditemvariationstore function of the Freetype library in versions 2.13.2 and 2.13.3 may allow for an out of bounds read operation when parsing HVAR/VVAR/MVAR tables in OpenType variable fonts. This issue is fixed in version 2.14.2...

5.3CVSS0.00141EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/01/04 9:30 p.m.22 views

Duplicate Advisory: Integer overflow in cmark-gfm table parsing extension leads to heap memory corruption

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-fmx4-26r3-wxpf. This link is maintained to preserve external references. Original Description CommonMarker versions prior to 0.23.4 are at risk of an integer overflow vulnerability. This vulnerability can result...

9.8CVSS7.9AI score0.0145EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2024/01/04 9:15 p.m.1 views

DEBIAN-CVE-2024-22051

CommonMarker versions prior to 0.23.4 are at risk of an integer overflow vulnerability. This vulnerability can result in possibly unauthenticated remote attackers to cause heap memory corruption, potentially leading to an information leak or remote code execution, via parsing tables with marker...

9.8CVSS8.7AI score0.0145EPSS
Exploits0References1
Prion
Prion
added 2024/01/04 9:15 p.m.15 views

Integer overflow

CommonMarker versions prior to 0.23.4 are at risk of an integer overflow vulnerability. This vulnerability can result in possibly unauthenticated remote attackers to cause heap memory corruption, potentially leading to an information leak or remote code execution, via parsing tables with marker...

7.5CVSS7.8AI score0.0145EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2024/01/04 8:27 p.m.20 views

CVE-2024-22051 CommonMarker Integer Overflow Vulnerability

CommonMarker versions prior to 0.23.4 are at risk of an integer overflow vulnerability. This vulnerability can result in possibly unauthenticated remote attackers to cause heap memory corruption, potentially leading to an information leak or remote code execution, via parsing tables with marker...

9.8CVSS7.4AI score0.0145EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2024/01/04 8:27 p.m.32 views

CVE-2024-22051

CommonMarker versions prior to 0.23.4 are at risk of an integer overflow vulnerability. This vulnerability can result in possibly unauthenticated remote attackers to cause heap memory corruption, potentially leading to an information leak or remote code execution, via parsing tables with marker...

9.8CVSS8.9AI score0.0145EPSS
Exploits0
Veracode
Veracode
added 2022/03/04 8:54 a.m.11 views

Remote Code Execution

commonmarker is vulnerable to remote code execution. cmark-gfm may cause heap memory corruption when parsing tables who's marker rows contain more than UINT16MAX columns. The vulnerability allows remote authenticated attackers to inject and execute malicious code on the system...

6.2AI score
Exploits0
Rows per page
Query Builder