CVE-2021-47650

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-compress: prevent the potentially use of null pointer There is one call trace that sndsocregistercard -sndsocbindcard-socinitpcmruntime -sndsocdaicompressnew-sndsocnewcompress. In the trace the 'codecdai' transfers from...

The vulnerability of the functions input_action_end_dx4() and input_action_end_dx6() in the net/ipv6/seg6_local.c module of the Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the functions inputactionenddx4 and inputactionenddx6 in the net/ipv6/seg6local.c module of the Linux kernel is related to the use of pointers. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2024-5991

CVE-2024-5991 describes a buffer overread in wolfSSL’s domain-name matching. The vulnerability arises when MatchDomainName() treats the input as NULL-terminated even though X509_check_host() accepts a pointer+length without requiring NULL termination, allowing a caller providing a non-NULL-termin...

The vulnerability of the Mozilla Firefox browser, related to the swapping of an untrusted pointer, allows a malicious actor to execute arbitrary code.

The vulnerability of the Mozilla Firefox browser is related to the misuse of an unreliable pointer. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

openssl: X.400 address type confusion in X.509 GeneralName

A type confusion vulnerability was found in OpenSSL when OpenSSL X.400 addresses processing inside an X.509 GeneralName. When CRL checking is enabled for example, the application sets the X509VFLAGCRLCHECK flag, this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call,...

SUSE CVE-2015-9261

huftbuild in archival/libarchive/decompressgunzip.c in BusyBox before 1.27.2 misuses a pointer, causing segfaults and an application crash during an unzip operation on a specially crafted ZIP file...

SUSE CVE-2016-1945

The nsZipArchive function in Mozilla Firefox before 44.0 might allow remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging incorrect use of a pointer during processing of a ZIP archive...

SUSE CVE-2017-17855

kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service memory corruption or possibly have unspecified other impact by leveraging improper use of pointers in place of scalars...

HUAWEI EMUI 安全漏洞

HUAWEI EMUI is an Android-based mobile operating system developed by China's Huawei HUAWEI. version 12.0.0 of HUAWEI EMUI has an information disclosure vulnerability that stems from the improper use of pointers during data transfer in the video framework, which is used by attackers to affect devi...

PT-2022-11134 · Huawei · Emui +2

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: The issue concerns the incorrect use of pointers during data transmission in the video framework, which may impact confidentiality upon successful exploitation. Recommendations: At the...

Denial Of Service (DoS)

busybox is vulnerable to denial of service DoS. huftbuild in archival/libarchive/decompressgunzip.c in BusyBox misuses a pointer, causing segfaults and an application crash during an unzip operation on a specially crafted ZIP file...

CVE-2015-9261

huftbuild in archival/libarchive/decompressgunzip.c in BusyBox before 1.27.2 misuses a pointer, causing segfaults and an application crash during an unzip operation on a specially crafted ZIP file...

CVE-2015-9261

CVE-2015-9261 affects BusyBox before 1.27.2. The vuln is in huft_build, in archival/libarchive/decompress_gunzip.c, where a pointer is misused, causing segfaults and application crashes during unzip of a specially crafted ZIP file. Affected product: BusyBox (generic) with the cited code path. Imp...

CVE-2017-17855

kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service memory corruption or possibly have unspecified other impact by leveraging improper use of pointers in place of scalars...

UBUNTU-CVE-2016-1945

The nsZipArchive function in Mozilla Firefox before 44.0 might allow remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging incorrect use of a pointer during processing of a ZIP archive...

Mozilla Firefox IndexedDatabaseManager Class Denial of Service Vulnerability

Mozilla Firefox is a web browser/email client released by Mozilla. A denial of service vulnerability exists in the Mozilla Firefox IndexedDatabaseManager class, where the IndexedDatabaseManager class treats an IDBDatabase field as a pointer in the implementation of IndexedDB, which can be exploit...

openssl: invalid pointer use in ASN1_TYPE_cmp()

An invalid pointer use flaw was found in OpenSSL's ASN1TYPEcmp function. A remote attacker could crash a TLS/SSL client or server using OpenSSL via a specially crafted X.509 certificate when the attacker-supplied certificate was verified by the application...

kernel: netfilter: nf_conntrack_dccp: incorrect skb_header_pointer API usages

net/netfilter/nfconntrackprotodccp.c in the Linux kernel through 3.13.6 uses a DCCP header pointer incorrectly, which allows remote attackers to cause a denial of service system crash or possibly execute arbitrary code via a DCCP packet that triggers a call to the 1 dccpnew, 2 dccppacket, or 3...

CVE-2004-0080

The login program in util-linux 2.11 and earlier uses a pointer after it has been freed and reallocated, which could cause login to leak sensitive data...