Samsung SMR MAY-2021 缓冲区错误漏洞

The Samsung libsapeextractor library is a component of Samsung Samsung mobile devices. The Samsung libsapeextractor library suffers from an input validation error vulnerability that stems from faulty input validation logic in scmn mfal read in the libsapeextractor library, which can be exploited ...

CVE-2021-30045

SerenityOS 2021-03-27 contains a buffer overflow vulnerability in the EndOfCentralDirectory::read function...

Buffer overflow

SerenityOS 2021-03-27 contains a buffer overflow vulnerability in the EndOfCentralDirectory::read function...

CVE-2021-30045

SerenityOS 2021-03-27 contains a buffer overflow vulnerability in the EndOfCentralDirectory::read function...

SerenityOS 缓冲区错误漏洞

SerenityOS is a graphical Unix-like operating system for x86 computers. SerenityOS 2021-03-27 A buffer error vulnerability exists that stems from a buffer overflow in the EndOfCentralDirectory::read function...

Red Hat Package Manager 数据伪造问题漏洞

Red Hat Package Manager is a packaging and installation tool for Internet downloadable packages from Red Hat USA. It is included in some Linux distributions. It generates files with the .RPM extension. It is similar to Dpkg. Red Hat Package Manager suffers from a data forgery issue vulnerability...

RUSTSEC-2021-0087 columnar: `Read` on uninitialized buffer may cause UB (ColumnarReadExt::read_typed_vec())

Affected versions of this crate passes an uninitialized buffer to a user-provided Read implementation ColumnarReadExt::readtypedvec. Arbitrary Read implementations can read from the uninitialized buffer memory exposure and also can return incorrect number of bytes written to the buffer. Reading...

Updated libsndfile packages fix security vulnerabilities

Updated libsndfile packages fix security vulnerabilities: An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2ulawarray in ulaw.c that will lead to a denial of service CVE-2018-19661. An issue was discovered in libsndfile 1.0.28. There is a buffer over-read...

Socat 1.7.3.4 - Heap-Based Overflow (PoC)

Exploit Title: Socat 1.7.3.4 - Heap Based Overflow PoC Date: 2020-02-03 Exploit Author: hieubl from HPT Cyber Security Vendor Homepage: http://www.dest-unreach.org/ Software Link: http://www.dest-unreach.org/socat/ Version: 1.7.3.4 Tested on: Ubuntu 16.04.6 LTS CVE : Heap-Based Overflow due to...

GPAC Resource Management Error Vulnerability (CNVD-2020-00527)

GPAC is an open source multimedia framework. A resource management error vulnerability exists in the 'trakRead' function of the isomedia/boxcodebase.c file in GPAC versions 0.8.0 and 0.9.0-development-20191109. The vulnerability stems from a mismanagement of system resources e.g., memory, disk...

DEBIAN-CVE-2019-14464

XMFile::read in XMFile.cpp in milkyplay in MilkyTracker 1.02.00 has a heap-based buffer overflow...

Stack overflow

An issue was discovered in libmatio.a in matio aka MAT File I/O Library 1.5.13. There is a stack-based buffer over-read in the function InflateDimensions in inflate.c when called from ReadNextCell in mat5.c...

CVE-2019-9029

An issue was discovered in libmatio.a in matio aka MAT File I/O Library 1.5.13. There is an out-of-bounds read with a SEGV in the function MatVarReadNextInfo5 in mat5.c...

Google Chrome Information Disclosure Vulnerability (CNVD-2019-03548)

Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in Google Chrome prior to version 66.0.3359.117, which originates in the File API, where the 'readAsText' function reads a user-selected file multiple times. The vulnerability can be...

CVE-2018-19543

An issue was discovered in JasPer 2.0.14. There is a heap-based buffer over-read of size 8 in the function jp2decode in libjasper/jp2/jp2dec.c...

libreoffice: Out of bounds write in filter/ww8/ww8toolbar.cxx:SwCTBWrapper class allows for denial of service with crafted document

The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx in LibreOffice before 5.4.6.1 and 6.x before 6.0.2.1 does not validate a customizations index, which allows remote attackers to cause a denial of service heap-based buffer overflow with write access or possibly have unspecifie...

CVE-2018-14454

An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the function RIFF::Chunk::Read in RIFF.cpp...

Libwav infinite loop vulnerability

libwav is a wav encoding library written in C language. A security vulnerability exists in the 'wavread' function of the libwav.c file in libwav 2017-04-20 and earlier versions. An attacker can exploit the vulnerability to cause an infinite loop...

UBUNTU-CVE-2018-13874

An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer overflow in the function H5FDsec2read in H5FDsec2.c, related to HDmemset...

CVE-2018-13866

An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer over-read in the function H5Faddrdecodelen in H5Fint.c...