Lucene search
K

73 matches found

OSV
OSV
added 2024/04/17 9:29 a.m.5 views

CLSA-2024-1713346166 ImageMagick: Fix of 6 CVEs

Fix CVE-2022-32546 integer overflow at at coders/pcl.c. - Fix CVE-2022-32545 outside the range of representable values at coders/psd.c. - Fix CVE-2022-32547 misaligned address at MagickCore/property.c. - Fix CVE-2021-20312 integer overflow in WriteTHUMBNAILImage of coders/thumbnail.c - Fix...

7.8CVSS6.8AI score0.0238EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/17 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the allocrange error handling code...

3.3CVSS4.5AI score0.00191EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/11/07 12:0 a.m.7 views

PT-2025-25992 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.19.0 Description: The issue is related to an out-of-range error in the aq vec index in the Linux kernel's Atlantic driver. The final update statement of a for loop exceeds the array range, and the dereference ...

8.8CVSS5.8AI score0.16642EPSS
Exploits27References1048
OSV
OSV
added 2023/10/04 9:15 p.m.3 views

CVE-2023-41094

TouchLink packets processed after timeout or out of range due to Operation on a Resource after Expiration and Missing Release of Resource after Effective Lifetime may allow a device to be added outside of valid TouchLink range or pairing duration This issue affects Ember ZNet 7.1.x from 7.1.3...

9.8CVSS5.8AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/09/17 12:0 a.m.4 views

PT-2022-34058 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.138 Description: The issue is related to an out of range error in the aq vec index. It was introduced in version v4.11 and fixed in version v5.10.138. The actual impact and attack plausibility have not yet...

7.2AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/09/17 12:0 a.m.2 views

PT-2022-33779 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.63 Description: The issue is related to an out of range error in the aq vec index. It was introduced in version v4.11 and fixed in version v5.15.63. The actual impact and attack plausibility have not yet...

7.2AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/09/16 12:0 a.m.2 views

PT-2022-33407 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.4 Description: The issue is related to an out of range error in the aq vec index. It was introduced in version v4.11 and fixed in version v5.19.4. The actual impact and attack plausibility have not yet bee...

7.1AI score
Exploits0References1
OSV
OSV
added 2022/06/16 6:15 p.m.3 views

DEBIAN-CVE-2022-32545

A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned char' at coders/psd.c, when crafted or untrusted input is processed. This leads to a negative impact to application availability or other problems related to undefined behavior...

7.8CVSS6.8AI score0.01327EPSS
Exploits0References1
Prion
Prion
added 2022/06/16 6:15 p.m.25 views

Input validation

A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned long' at coders/pcl.c, when crafted or untrusted input is processed. This leads to a negative impact to application availability or other problems related to undefined behavior...

6.8CVSS6.1AI score0.01339EPSS
Exploits0References4Affected Software4
OSV
OSV
added 2021/05/14 8:15 p.m.1 views

UBUNTU-CVE-2020-27769

In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c...

3.3CVSS6.7AI score0.01056EPSS
Exploits0References5
OSV
OSV
added 2020/12/28 8:15 a.m.4 views

CVE-2020-29243

dhowden tag before 2020-11-19 allows "panic: runtime error: index out of range" via readAPICFrame...

6.5CVSS6.6AI score0.0112EPSS
Exploits4References1
Snyk
Snyk
added 2019/12/06 8:40 p.m.4 views

Arbitrary Code Execution

Overview safer-eval is a safer approach for eval in node and browser. Affected versions of this package are vulnerable to Arbitrary Code Execution via generating a RangeError: Maximum call stack size exceeded. PoC by Jonathan Leitschuh const theFunction = function const f = Buffer.prototype.write...

9.9CVSS7AI score0.02574EPSS
Exploits1References3
Veracode
Veracode
added 2017/06/22 6:25 a.m.14 views

Denial Of Service (DoS)

github.com/cockroachdb/cockroach is vulnerable to denial of service DoS attacks. getPrepareType throws an index out of range error when it is given an empty readBuffer, causing the application to crash. This flaw was exploitable through the v3Conn...

6.4AI score
Exploits0
Rows per page
Query Builder