CVE-2024-29166

CVE-2024-29166 affects HDF5 up to 1.14.3, where a buffer overflow in H5O__linfo_decode can corrupt the instruction pointer, enabling denial of service or potential code execution. A fix is available in HDF5 1.14.4 (per the referenced HDF5 security advisory). Affected products/versions are evidenc...

CVE-2024-29166

HDF5 through 1.14.3 contains a buffer overflow in H5Olinfodecode, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

CVE-2024-29163

CVE-2024-29163: HDF5 (1.14.3 and earlier) has a heap-based overflow in H5T__bit_find that can corrupt the instruction pointer, enabling denial of service or potential code execution. Upgrading to HDF5 1.14.4 (or later) is the documented remediation. Affects HDF5 components as described in the con...

CVE-2024-29160

HDF5 CVE-2024-29160 affects the H5HG__cache_heap_deserialize path in HDF5 up to version 1.14.3, causing a heap-based buffer overflow that can corrupt the instruction pointer and lead to denial of service or potential code execution. The connected IBM Security Bulletin confirms multiple related Ze...

CVE-2024-29158

HDF5 through 1.14.3 contains a stack buffer overflow in H5FLarrmalloc, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

CVE-2024-29157

CVE-2024-29157 affects HDF5 1.14.3 and earlier, with a heap buffer overflow in H5HG_read that can corrupt the instruction pointer and cause denial of service or potential code execution. The IBM/NVD entry notes a fix in 1.14.4 (and references the HDF Group advisory). Practical impact is DoS or po...

CVE-2024-29157

HDF5 through 1.14.3 contains a heap buffer overflow in H5HGread, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

CVE-2023-42079

PDF-XChange Editor J2K File Parsing Uninitialized Variable Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the...

CVE-2024-0825

The Vimeography: Vimeo Video Gallery WordPress Plugin plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.3.2 via deserialization of untrusted input via the vimeographyduplicategalleryserialized in the duplicategallery function. This makes it possibl...

CVE-2023-51779

A flaw was found in the Bluetooth subsystem of the Linux kernel. A race condition between the btsockrecvmsg and btsockioctl functions could lead to a use-after-free on a socket buffer "skb". This flaw allows a local user to cause a denial of service condition or potential code execution...

CVE-2023-37327

A heap-based buffer overflow vulnerability was found in the FLAC parser in GStreamer. This issue occurs when processing malformed image tags, which could allow a malicious third party to induce a crash in the application and potentially execute code by manipulating the heap. Mitigation Mitigation...

PT-2023-18615 · Qualcomm · Qualcomm Chipsets

Name of the Vulnerable Software and Affected Versions: Qualcomm Chipsets affected versions not specified Description: The issue is related to memory corruption in audio when invoking IOCTLs calls from the user-space. This can potentially lead to code execution. Recommendations: At the moment, the...

CVE-2023-45664

stbimage is a single file MIT licensed library for processing images. A crafted image file can trigger stbiloadgifmainoutofmem attempt to double-free the out variable. This happens in stbiloadgifmain because when the layers stride value is zero the behavior is implementation defined, but common...

Oracle Linux 7 : qemu (ELSA-2021-9638)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9638 advisory. - ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packe...

CVE-2021-33798

A null pointer dereference was found in libpano13, version libpano13-2.9.20. The flow allows attackers to cause a denial of service and potential code execute via a crafted file...

CVE-2023-32539 Horner Automation Cscape Out-of-bounds Write

Horner Automation Cscape lacks proper validation of user-supplied data when parsing project files e.g., HMI. This could lead to an out-of-bounds write at CScapeEnvisionRV+0x2e3c04. An attacker could leverage this vulnerability to potentially execute arbitrary code in the context of the current...

USN-6123-1 linux-oem-6.0 vulnerabilities

Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrar...

Design/Logic Flaw

Adobe Dimension versions 3.4.7 and earlier is affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user...

K12896623: glibc vulnerability CVE-2018-1000001

Security Advisory Description In glibc 2.26 and earlier there is confusion in the usage of getcwd by realpath which can be used to write before the destination buffer leading to a buffer underflow and potential code execution. CVE-2018-1000001 Impact There is no impact; F5 products are not affect...

SUSE CVE-2020-12426

Mozilla developers and community members reported memory safety bugs present in Firefox 77. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox 78...