80 matches found
Mageia: Security Advisory (MGASA-2024-0145)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2024-0145 Updated editorconfig-core-c packages fix security vulnerability
pointer overflow in STRINGCAT and a few more stack buffer overflows...
Updated editorconfig-core-c packages fix security vulnerability
pointer overflow in STRINGCAT and a few more stack buffer overflows...
Fedora 38 : editorconfig (2024-0f08e59f25)
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-0f08e59f25 advisory. Update to 0.12.7: fix pointer overflow in STRINGCAT; fix a few more stack buffer overflows. Tenable has extracted the preceding description block directly fr...
Fedora 39 : editorconfig (2024-deddae25dd)
The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-deddae25dd advisory. Update to 0.12.7: fix pointer overflow in STRINGCAT; fix a few more stack buffer overflows. Tenable has extracted the preceding description block directly fr...
The vulnerability of microprogramming software in embedded Qualcomm chips allows a hacker to execute arbitrary code with elevated privileges.
The vulnerability of microprogramming software in embedded Qualcomm chips is related to the pointer shifting beyond the allocated memory range. Exploiting this vulnerability allows an attacker to execute arbitrary code with elevated privileges using the IOCTLKGSLGPUAUXCOMMAND command...
xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters (i.e. neither alphanumeric nor underscore) aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature.
...
CVE-2023-40359
xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters i.e., neither alphanumeric nor underscore, aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature...
AZL-27957 CVE-2023-40359 affecting package xterm for versions less than 380-1
xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters i.e., neither alphanumeric nor underscore, aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature...
DEBIAN-CVE-2023-40359
xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters i.e., neither alphanumeric nor underscore, aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature...
CVE-2023-40359
xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters i.e., neither alphanumeric nor underscore, aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature...
Buffer overflow
xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters i.e., neither alphanumeric nor underscore, aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature...
UBUNTU-CVE-2023-40359
xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters i.e., neither alphanumeric nor underscore, aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature...
CVE-2023-40359
CVE-2023-40359 affects xterm versions before 380 where ReGIS reporting can mishandle character-set names containing characters outside alphanumeric/underscore, causing a pointer/overflow. Root cause: compile-time enabled experimental ReGIS feature. Impact is described as high-severity in the init...
CVE-2023-40359
xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters i.e., neither alphanumeric nor underscore, aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature...
CVE-2023-40359
xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters i.e., neither alphanumeric nor underscore, aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature...
The vulnerability of the mb_charlen function (mbyte.c) in the Vim text editor, which allows a hacker to cause a service failure
The vulnerability of the mbcharlen function mbyte.c in the Vim text editor is related to the pointer being moved beyond the allocated memory range. Exploiting this vulnerability could allow an attacker to cause a system failure...
Mageia: Security Advisory (MGASA-2014-0354)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
in thisistherk/fast_obj
✍️ Description Whilst experimenting with the test code built from commit d97389 with Clang 11 +UBSan on Ubuntu 20.04.2 LTS, we discovered an OBJ file which produces a signed integer overflow and a pointer overflow followed by a SIGSEGV 🕵️♂️ Proof of Concept echo...
Monero: CVE-2019-13132 - libzmq 4.1 series is vulnerable
Summary: A pointer overflow, with code execution, was discovered in ZeroMQ libzmq aka 0MQ 4.2.x and 4.3.x before 4.3.1. A v2decoder.cpp zmq::v2decodert::sizeready integer overflow allows an authenticated attacker to overwrite an arbitrary amount of bytes beyond the bounds of a buffer, which can b...