ncurses: segfaulting OOB read

A segmentation fault vulnerability was found in ncurses's convertstrings function of tinfo/readentry.c file. This flaw occurs due to corrupted terminfo data, triggering an out-of-bounds read error...

exfatprogs Security Vulnerabilities

exfatprogs is exfatprogs open source an exFAT file system user space utility. A security vulnerability exists in exfatprogs versions prior to 1.2.2, which stems from an out-of-bounds memory access vulnerability in readfileentryset...

SUSE CVE-2017-9815

In LibTIFF 4.0.7, the TIFFReadDirEntryLong8Array function in libtiff/tifdirread.c mishandles a malloc operation, which allows attackers to cause a denial of service memory leak within the function TIFFmalloc in tifunix.c via a crafted file...

SUSE CVE-2018-8098

Integer overflow in the index.c:readentry function while decompressing a compressed prefix length in libgit2 before v0.26.2 allows an attacker to cause a denial of service out-of-bounds read via a crafted repository index file...

SUSE CVE-2018-8099

Incorrect returning of an error code in the index.c:readentry function leads to a double free in libgit2 before v0.26.2, which allows an attacker to cause a denial of service via a crafted repository index file...

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the convertstrings function in tinfo/readentry.c, which allows attackers to crash the service when processing corrupt terminfo data. Remediation Upgrade ncurses to version 6.3 or higher. References - GitHub Commit ...

OESA-2022-1635 ncurses security update

The ncurses new curses library is a free software emulation of curses in System V Release 4.0 SVr4, and more. It uses terminfo format, supports pads and color and multiple highlights and forms characters and function-key mapping, and has all the other SVr4-curses enhancements over BSD curses. SVr...

ncurses 6.3 before patch 20220416 has an out-of-bounds read and segmentation violation in convert_strings in tinfo/read_entry.c in the terminfo library.

...

DEBIAN-CVE-2022-29458

ncurses 6.3 before patch 20220416 has an out-of-bounds read and segmentation violation in convertstrings in tinfo/readentry.c in the terminfo library...

ALPINE-CVE-2022-29458

ncurses 6.3 before patch 20220416 has an out-of-bounds read and segmentation violation in convertstrings in tinfo/readentry.c in the terminfo library...

UBUNTU-CVE-2022-29458

ncurses 6.3 before patch 20220416 has an out-of-bounds read and segmentation violation in convertstrings in tinfo/readentry.c in the terminfo library...

CVE-2021-45684

An issue was discovered in the flumedb crate through 2021-01-07 for Rust. readentry may read from uninitialized memory locations...

Rust flumedb crate 安全漏洞

Rust flumedb crate is a new architecture in which the Sunrise choir sink is a rewrite of JavaScript flumedb into rust to gain better performance and flexibility. a security vulnerability exists in Rust flumedb crate that stems from the fact that readentry can read data from an uninitialized memor...

PT-2021-6518 · Gpac · Gpac

Name of the Vulnerable Software and Affected Versions: GPAC version 1.0.1 Description: The issue is related to a memory leak in the gf isom oinf read entry function of the MP4Box component in the GPAC multimedia platform. This leak is caused by incorrect memory deallocation before removing the la...

CVE-2018-8098

Integer overflow in the index.c:readentry function while decompressing a compressed prefix length in libgit2 before v0.26.2 allows an attacker to cause a denial of service out-of-bounds read via a crafted repository index file...

Double free

Incorrect returning of an error code in the index.c:readentry function leads to a double free in libgit2 before v0.26.2, which allows an attacker to cause a denial of service via a crafted repository index file...

UBUNTU-CVE-2018-8098

Integer overflow in the index.c:readentry function while decompressing a compressed prefix length in libgit2 before v0.26.2 allows an attacker to cause a denial of service out-of-bounds read via a crafted repository index file...

libgit2 Double Release Vulnerability

libgit2 is a portable, pure C implementation of the Git core development kit , you can use it to write custom Git applications . A double release vulnerability exists in versions of libgit2 prior to 0.26.2. The vulnerability arises because the index.c:readentry function fails to return the correc...

Libgit2 Integer Overflow Vulnerability

libgit2 is a portable, pure C implementation of the Git core development kit , you can use it to write custom Git applications . An integer overflow vulnerability exists in the index.c:readentry function in versions of libgit2 prior to 0.26.2 when decompressing the length of a compressed prefix. ...

Silicon Graphics LibTIFF 'libtiff/tif_dirread.c' Denial of Service Vulnerability

Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains a number of command-line tools for processing TIFF files. A security vulnerability exists in Silicon Graphics LibTIFF version 4.0.7, which stems from...