CVE-2020-36558

A race condition in the Linux kernel before 5.5.7 involving VTRESIZEX could lead to a NULL pointer dereference and general protection fault...

AZL-44088 CVE-2022-0562 affecting package openjpeg2 2.3.1-12

Null source pointer passed as an argument to memcpy function within TIFFReadDirectory in tifdirread.c in libtiff versions from 4.0 to 4.3.0 could lead to Denial of Service via crafted TIFF file. For users that compile libtiff from sources, a fix is available with commit 561599c...

PYSEC-2021-767

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in tf.rawops.RaggedTensorToSparse. The implementation has an incomplete validation of the splits values: it does not check...

VVE-2021-0001: Memory corruption using function calls within arrays

Impact When performing a function call inside an array, there is a memory corruption issue that occurs because of an incorrect pointer to the the tip of the stack. Patches This issue was partially fixed in VVE-2020-0004, however the fix did not update similar code for arrays, which had a similar...

Mouse Pointer Disappears in ICA Session from Linux Receiver

This article is intended for Citrix administrators and technical teams only. Non-admin users must contact their company's Help Desk/IT support team and can refer to CTX297149 for more information. Mouse pointer randomly disappears from the ICA receiver window and reappears afterit is moved off th...

SUSE-SU-2021:0793-1 Security update for compat-openssl098

This update for compat-openssl098 fixes the following issues: - CVE-2021-23840: Fixed an Integer overflow in CipherUpdate bsc1182333 - CVE-2021-23841: Fixed a Null pointer dereference in X509issuerandserialhash bsc1182331...

CVE-2021-22639

CVE-2021-22639 affects Fuji Electric Tellus Lite V‑Simulator and V‑Server Lite (versions before 4.0.10.0). The issue is an uninitialized pointer in how the application processes project files, which may allow an attacker to craft a special project file to achieve arbitrary code execution in the a...

Industrial Light And Magic OpenEXR 代码问题漏洞

Industrial Light and Magic Academy Software Foundation OpenEXR is an image file format from Industrial Light and Magic for High Dynamic Range HDR images.A code issue vulnerability exists in Industrial Light and Magic Academy Software Foundation OpenEXR, which stems from A null pointer compliance...

CVE-2020-25573

An issue was discovered in the linked-hash-map crate before 0.5.3 for Rust. It creates an uninitialized NonNull pointer, which violates a non-null constraint...

SUSE-SU-2020:0920-2 Security update for libxslt

This update for libxslt fixes the following issue: - CVE-2019-18197: Fixed a dangling pointer in xsltCopyText which may have led to information disclosure bsc1154609...

CVE-2019-14215

An issue was discovered in Foxit PhantomPDF before 8.3.11. The application could crash when calling xfa.event.rest XFA JavaScript due to accessing a wild pointer...

SUSE SLED15 / SLES15 Security Update : libX11 (SUSE-SU-2018:2955-1)

This update for libX11 fixes the following security issues : CVE-2018-14599: The function XListExtensions was vulnerable to an off-by-one error caused by malicious server responses, leading to DoS or possibly unspecified other impact bsc1102062 CVE-2018-14600: The function XListExtensions...

MGASA-2018-0444 Updated libtiff packages fix security vulnerability

An issue was discovered in LibTIFF 4.0.9. There is a NULL pointer dereference in the function LZWDecode in the file tiflzw.c. CVE-2018-18661...

SUSE-SU-2018:2778-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: The following security vulnerabilities were fixed: - CVE-2018-16329: Prevent NULL pointer dereference in the GetMagickProperty function leading to DoS bsc1106858 - CVE-2018-16323: ReadXBMImage left data uninitialized when processing an XBM...

SUSE-SU-2018:0281-1 Security update for the Linux Kernel (Live Patch 14 for SLE 12 SP2)

This update for the Linux Kernel 4.4.90-9245 fixes several issues. The following security issues were fixed: - CVE-2017-17712: The rawsendmsg function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges bsc1073230. -...

CVE-2017-7614

CVE-2017-7614 affects GNU Binutils’ Binary File Descriptor library (libbfd). The issue is a NULL pointer dereference in elflink.c (described as a “member access within null pointer” UB) that could allow a remote attacker to crash the target program (denial of service). The description in connecte...

MGASA-2016-0123 Updated krb5 packages fix security vulnerability

It was reported that in all versions of MIT krb5, an authenticated attacker with permission to modify a principal entry can cause kadmind to dereference a null pointer by supplying an empty DB argument to the modifyprincipal command, if kadmind is configured to use the LDAP KDB module...

MGASA-2014-0497 Updated flash-player-plugin packages fix CVE-2014-8439

Adobe Flash Player 11.2.202.424 contains additional hardening against a vulnerability in the handling of a dereferenced memory pointer that could lead to code execution CVE-2014-8439. A mitigation was previously introduced for this issue in a previous update MGASA-2014-0448...

openSUSE Security Update : python-pymongo / python3-pymongo (openSUSE-SU-2013:1064-1)

This update of pymongo fixes a NULL pointer issue. - Add Fix-null-pointer-when-decoding-invalid-DBRef.patch - Fixed user-triggerable NULL pointer dereference due to utter plebbery CVE-2013-2132, bnc822798 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks...

CVE-2013-2477

The CSN.1 dissector in Wireshark 1.8.x before 1.8.6 does not properly manage function pointers, which allows remote attackers to cause a denial of service application crash via a malformed packet...