Lucene search
K

121 matches found

OSV
OSV
added 2023/10/23 8:15 p.m.5 views

CVE-2023-46603

In International Color Consortium DemoIccMAX 79ecb74, there is an out-of-bounds read in the CIccPRMG::GetChroma function in IccProfLib/IccPrmg.cpp in libSampleICC.a...

8.8CVSS5.8AI score0.00535EPSS
Exploits1References1
OSV
OSV
added 2023/10/21 12:15 a.m.2 views

DEBIAN-CVE-2023-45662

stbimage is a single file MIT licensed library for processing images. When stbisetflipverticallyonload is set to TRUE and reqcomp is set to a number that doesn’t match the real number of components per pixel, the library attempts to flip the image vertically. A crafted image file can trigger memc...

8.1CVSS7AI score0.00691EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/09/21 12:0 a.m.1 views

PT-2023-6036 · Apple · Macos Monterey +4

Name of the Vulnerable Software and Affected Versions: macOS Monterey versions prior to 12.7 iOS versions prior to 17 iPadOS versions prior to 17 macOS Ventura versions prior to 13.6 iOS versions prior to 16.7 iPadOS versions prior to 16.7 Description: An out-of-bounds read issue was addressed wi...

5.5CVSS4.7AI score0.00296EPSS
Exploits0References15
OSV
OSV
added 2023/09/05 4:15 p.m.4 views

DEBIAN-CVE-2023-4778

Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.3-DEV...

5.5CVSS5.5AI score0.00253EPSS
Exploits1References1
OSV
OSV
added 2023/04/19 8:15 p.m.5 views

CVE-2023-20935

In deserialize of multiple files, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12...

5.5CVSS6.2AI score0.00087EPSS
Exploits0References1
OSV
OSV
added 2023/03/24 8:15 p.m.3 views

UBUNTU-CVE-2023-21031

In setPowerMode of HWC2.cpp, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-242688355...

4.7CVSS5.9AI score0.00081EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:15 a.m.4 views

SUSE CVE-2006-2935

The dvdreadbca function in the DVD handling code in drivers/cdrom/cdrom.c in Linux kernel 2.2.16, and later versions, assigns the wrong value to a length variable, which allows local users to execute arbitrary code via a crafted USB Storage device that triggers a buffer overflow...

4.6CVSS7.7AI score0.00575EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 6:3 a.m.3 views

SUSE CVE-2009-2846

The eisaeepromread function in the parisc isa-eeprom component drivers/parisc/eisaeeprom.c in the Linux kernel before 2.6.31-rc6 allows local users to access restricted memory via a negative ppos argument, which bypasses a check that assumes that ppos is positive and causes an out-of-bounds read ...

7.8CVSS6.3AI score0.08156EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:41 a.m.4 views

SUSE CVE-2017-12599

OpenCV Open Source Computer Vision Library through 3.3 has an out-of-bounds read error in the function icvCvtBGRA2BGR8uC4C3R when reading an image file by using cv::imread...

8.8CVSS6.3AI score0.0197EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:25 a.m.6 views

SUSE CVE-2022-30780

Lighttpd 1.4.56 through 1.4.58 allows a remote attacker to cause a denial of service CPU consumption from stuck connections because connectionreadheadermore in connections.c has a typo that disrupts use of multiple read operations on large headers...

7.5CVSS7.4AI score0.56418EPSS
Exploits3References3
Positive Technologies
Positive Technologies
added 2023/02/14 12:0 a.m.5 views

PT-2023-6666 · Siemens · Solid Edge

Name of the Vulnerable Software and Affected Versions: Solid Edge SE2022 versions prior to V222.0MP12 Solid Edge SE2023 versions prior to V223.0Update2 Description: A vulnerability has been identified that involves an out of bounds read past the end of an allocated structure while parsing special...

7.8CVSS7.5AI score0.00217EPSS
Exploits0References4
OSV
OSV
added 2022/11/11 11:4 a.m.5 views

OESA-2022-2067 libtiff security update

This provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libtiff...

7.1CVSS6.9AI score0.01542EPSS
Exploits4References5
OSV
OSV
added 2022/09/20 9:15 p.m.1 views

CVE-2022-32912

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Safari 16, iOS 16, iOS 15.7 and iPadOS 15.7. Processing maliciously crafted web content may lead to arbitrary code execution...

8.8CVSS6AI score
Exploits0References10
OSV
OSV
added 2021/06/07 8:15 p.m.1 views

UBUNTU-CVE-2021-30536

Out of bounds read in V8 in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page...

8.1CVSS7.3AI score0.01185EPSS
Exploits1References2
OSV
OSV
added 2021/06/07 11:2 a.m.2 views

OESA-2021-1204 exiv2 security update

Exiv2 is a Cross-platform C++ library and a command line utility to manage image metadata. It provides fast and easy read and write access to the Exif, IPTC and XMP metadata and the ICC Profile embedded within digital images in various formats. Security Fixes: Exiv2 is a C++ library and a...

5.5CVSS6.8AI score0.01174EPSS
Exploits0References3
OSV
OSV
added 2021/03/05 11:2 a.m.4 views

OESA-2021-1057 luajit security update

LuaJIT is a Just-In-Time Compiler JIT for the Lua programming language. Lua is a powerful, dynamic and light-weight programming language. It may be embedded or used as a general-purpose, stand-alone language. Security Fixes: LuaJIT through 2.1.0-beta3 has an out-of-bounds read in ljerrrun in...

7.5CVSS6.9AI score0.01469EPSS
Exploits1References2
OSV
OSV
added 2021/02/25 6:31 a.m.11 views

USN-4750-1 linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gke-5.4, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities

Bodong Zhao discovered a use-after-free in the Sun keyboard driver implementation in the Linux kernel. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2020-25669 It was discovered that the jfs file system implementation in the Linux kernel...

8.8CVSS6.8AI score0.01129EPSS
Exploits6References11
RedHat Linux
RedHat Linux
added 2020/11/04 1:25 a.m.3 views

freerdp: Stream pointer out of bounds in update_recv_secondary_order could lead out of bounds read later

libfreerdp/core/update.c in FreeRDP versions 1.1 through 2.0.0-rc4 has an Out-of-bounds Read...

3.5CVSS5.8AI score0.02003EPSS
Exploits1References4
OSV
OSV
added 2020/10/14 1:18 a.m.11 views

USN-4576-1 linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-hwe-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities

Hadar Manor discovered that the DCCP protocol implementation in the Linux kernel improperly handled socket reuse, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2020-16119 Jay Shin...

7.8CVSS7AI score0.00422EPSS
Exploits1References7
Veracode
Veracode
added 2020/09/21 6:39 a.m.29 views

Information Disclosure

graphicsmagick is vulnerablet o information disclosure. The DescribeImage function of the magick/describe.c file contains a heap-based buffer over-read bug...

6.5CVSS2.3AI score0.13679EPSS
Exploits3References53Affected Software1
Rows per page
Query Builder