73 matches found
CLSA-2024-1713346166 ImageMagick: Fix of 6 CVEs
Fix CVE-2022-32546 integer overflow at at coders/pcl.c. - Fix CVE-2022-32545 outside the range of representable values at coders/psd.c. - Fix CVE-2022-32547 misaligned address at MagickCore/property.c. - Fix CVE-2021-20312 integer overflow in WriteTHUMBNAILImage of coders/thumbnail.c - Fix...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the allocrange error handling code...
PT-2025-25992 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.19.0 Description: The issue is related to an out-of-range error in the aq vec index in the Linux kernel's Atlantic driver. The final update statement of a for loop exceeds the array range, and the dereference ...
CVE-2023-41094
TouchLink packets processed after timeout or out of range due to Operation on a Resource after Expiration and Missing Release of Resource after Effective Lifetime may allow a device to be added outside of valid TouchLink range or pairing duration This issue affects Ember ZNet 7.1.x from 7.1.3...
PT-2022-34058 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.138 Description: The issue is related to an out of range error in the aq vec index. It was introduced in version v4.11 and fixed in version v5.10.138. The actual impact and attack plausibility have not yet...
PT-2022-33779 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.63 Description: The issue is related to an out of range error in the aq vec index. It was introduced in version v4.11 and fixed in version v5.15.63. The actual impact and attack plausibility have not yet...
PT-2022-33407 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.4 Description: The issue is related to an out of range error in the aq vec index. It was introduced in version v4.11 and fixed in version v5.19.4. The actual impact and attack plausibility have not yet bee...
DEBIAN-CVE-2022-32545
A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned char' at coders/psd.c, when crafted or untrusted input is processed. This leads to a negative impact to application availability or other problems related to undefined behavior...
Input validation
A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned long' at coders/pcl.c, when crafted or untrusted input is processed. This leads to a negative impact to application availability or other problems related to undefined behavior...
UBUNTU-CVE-2020-27769
In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c...
CVE-2020-29243
dhowden tag before 2020-11-19 allows "panic: runtime error: index out of range" via readAPICFrame...
Arbitrary Code Execution
Overview safer-eval is a safer approach for eval in node and browser. Affected versions of this package are vulnerable to Arbitrary Code Execution via generating a RangeError: Maximum call stack size exceeded. PoC by Jonathan Leitschuh const theFunction = function const f = Buffer.prototype.write...
Denial Of Service (DoS)
github.com/cockroachdb/cockroach is vulnerable to denial of service DoS attacks. getPrepareType throws an index out of range error when it is given an empty readBuffer, causing the application to crash. This flaw was exploitable through the v3Conn...