201 matches found
CVE-2024-47598 GHSL-2024-246: GStreamer has an OOB-read in qtdemux_merge_sample_table
GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in the qtdemuxmergesampletable function within qtdemux.c. The problem is that the size of the stts buffer isn’t properly checked before reading sttsduration, allowing the...
CVE-2024-47596 GHSL-2024-244: GStreamer has an OOB-read in FOURCC_SMI_ parsing
GStreamer is a library for constructing graphs of media-handling components. An OOB-read has been discovered in the qtdemuxparsesvq3stsddata function within qtdemux.c. In the FOURCCSMI case, seqhsize is read from the input file without proper validation. If seqhsize is greater than the remaining...
OSV-2024-1312 Heap-buffer-overflow in jv_string_vfmt
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=378836890 Crash type: Heap-buffer-overflow READ 13 Crash state: jvstringvfmt jvstringfmt jvparsesizedcustomflags...
PT-2024-40596 · Git +1 · Fluent-Bit
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A crash occurred due to an unknown read issue. The crash state involves functions such as cfl sds len, unpack meta opts, and cmt mpack unpack map. No...
PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...
NFS: Fix nfs_netfs_issue_read() xarray locking for writeback interrupt
...
PT-2024-40563 · Git +1 · Ghostscript
Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: A crash occurred due to an unknown read issue. The crash state involves functions such as chunk free object, file close file, and sclose. Recommendations: At the moment, there is no...
PT-2024-40857 · Git +1 · Ghostscript
Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: A crash occurred due to an unknown read issue, as reported by OSS-Fuzz. The crash state includes functions such as chunk free object, sclose, and sfclose. No information is available...
CVE-2024-40806
An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing a maliciously crafted file may...
PT-2024-37179 · Github · Github Enterprise Server
Name of the Vulnerable Software and Affected Versions: GitHub Enterprise Server versions prior to 3.14 Description: An Incorrect Authorization issue was identified in GitHub Enterprise Server, allowing read access to issue content via GitHub Projects. This issue was only exploitable in internal...
kernel: hwrng: core - Fix page fault dead lock on mmap-ed hwrng
A vulnerability was found in the hwrng component of the Linux kernel, which caused a deadlock when reading from /dev/hwrng into memory and mmap-ed from /dev/hwrng. This issue is triggered by a recursive read during a page fault and allows a local, authenticated attacker to cause a denial of servi...
PT-2024-25705 · Adobe · Acrobat For Edge
Name of the Vulnerable Software and Affected Versions: Acrobat for Edge versions 126.0.2592.68 and earlier Description: The issue is an out-of-bounds read vulnerability that occurs when parsing a crafted file, potentially resulting in a read past the end of an allocated memory structure. This cou...
PT-2024-35727 · Devika · Devika
Name of the Vulnerable Software and Affected Versions: stitutionai/devika version latest Description: A local file read issue exists due to improper handling of the snapshot path parameter in the "/api/get-browser-snapshot" endpoint. An attacker can exploit this by crafting a request with a...
USN-6766-2 linux-hwe-5.15, linux-raspi vulnerabilities
It was discovered that the Open vSwitch implementation in the Linux kernel could overflow its stack during recursive action operations under certain conditions. A local attacker could use this to cause a denial of service system crash. CVE-2024-1151 Sander Wiebing, Alvise de Faveri Tron, Herbert...
Merative Merge DICOM Toolkit 安全漏洞
Merative Merge DICOM Toolkit is a comprehensive API from Merative that complies with the latest DICOM standards. A security vulnerability exists in Merative Merge DICOM Toolkit C/C++ versions prior to 5.18.0 that stems from the presence of an out-of-bounds read vulnerability...
PT-2024-6083
Name of the Vulnerable Software and Affected Versions OpenSSL versions prior to the next release exact version not specified CPython version 3.9 and earlier Description The issue is related to the OpenSSL API function SSL select next proto which can cause a crash or memory contents to be sent to...
PT-2024-40750 · Git +1 · Jq
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A crash occurred due to an unknown read issue, as reported by OSS-Fuzz. The crash state involves functions such as jvp object free, jv free, and jv equal...
PT-2024-40735 · Git +1 · Jq
Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: A crash occurred due to an unknown read issue. The crash state involves functions such as jv array set, jv set, and jv setpath. No information is available about the estimated number of...
PT-2024-40718 · Git +1 · Jq
Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: A crash occurred due to an unknown read issue, with the crash state involving std:: 1:: POW10 SPLIT 2. Recommendations: At the moment, there is no information about a newer version that...
Memory out-of-bounds read vulnerability in FreeRDP ExtractRunLengthRegular* function
FreeRDP is a freeware program that implements the Remote Desktop Protocol, which is mainly used to connect and manage Windows servers remotely. A memory out-of-bounds read vulnerability exists in FreeRDP versions prior to 3.5.1. The vulnerability arises because the program fails to properly handl...