205 matches found
MGASA-2023-0023 Updated jpegoptim packages fix security vulnerability
JPEGOPTIM v1.4.7 was discovered to contain a segmentation violation which is caused by a READ memory access at jpegoptim.c. CVE-2022-32325...
Exploit for Out-of-bounds Read in Openssl
Heartbleed CVE-2014-0160 ========== Setup You will requir...
CVE-2022-3917
Improper access control of bootloader function was discovered in Motorola Mobility Motorola e20 prior to version RONS31.267-38-8 allows attacker with local access to read partition or RAM data...
CVE-2022-30673
Adobe InDesign versions 16.4.2 and earlier and 17.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...
CVE-2022-32325
JPEGOPTIM v1.4.7 was discovered to contain a segmentation violation which is caused by a READ memory access at jpegoptim.c...
DEBIAN-CVE-2022-32325
JPEGOPTIM v1.4.7 was discovered to contain a segmentation violation which is caused by a READ memory access at jpegoptim.c...
Design/Logic Flaw
JPEGOPTIM v1.4.7 was discovered to contain a segmentation violation which is caused by a READ memory access at jpegoptim.c...
CVE-2022-32325
JPEGOPTIM v1.4.7 was discovered to contain a segmentation violation which is caused by a READ memory access at jpegoptim.c...
UBUNTU-CVE-2022-32325
JPEGOPTIM v1.4.7 was discovered to contain a segmentation violation which is caused by a READ memory access at jpegoptim.c...
PT-2022-21230 · Jpegoptim +1 · Jpegoptim +1
Name of the Vulnerable Software and Affected Versions: JPEGOPTIM version 1.4.7 Description: A segmentation violation was discovered in JPEGOPTIM, caused by a READ memory access at jpegoptim.c. Recommendations: For JPEGOPTIM version 1.4.7, at the moment, there is no information about a newer versi...
CVE-2022-32325
JPEGOPTIM v1.4.7 is affected by CVE-2022-32325, a segmentation fault caused by a READ memory access in jpegoptim.c. The vulnerability’s exposure is documented across multiple sources, with reported impact described as a segmentation violation. Public advisories indicate fixes have been released (...
CVE-2022-32325
JPEGOPTIM v1.4.7 was discovered to contain a segmentation violation which is caused by a READ memory access at jpegoptim.c...
FFmpeg 缓冲区错误漏洞
FFmpeg is a complete solution for recording, converting and streaming audio and video from the Ffmpeg team. A code execution vulnerability exists in FFmpeg rpzadecodestream, which can be exploited by an attacker to trigger an out-of-bounds read memory access and execute arbitrary code on the syst...
Apache HTTP Server 输入验证错误漏洞
Apache HTTP Server is an open source web server from the Apache Foundation. The server is fast, reliable, and extensible via a simple API. Apache HTTP Server 2.4.53 and earlier versions are vulnerable to an input validation error. An attacker could exploit this vulnerability to read unexpected...
CVE-2022-28066
Removed by vendor...
A flaw was found in postgresql. A purpose-crafted query can read arbitrary bytes of server memory. In the default configuration any authenticated database user can complete this attack at will. The attack does not require the ability to create objects. If server settings include max_worker_processes=0 the known versions of this attack are infeasible. However undiscovered variants of the attack may be independent of that setting.
...
ALPINE-CVE-2021-3677
A flaw was found in postgresql. A purpose-crafted query can read arbitrary bytes of server memory. In the default configuration, any authenticated database user can complete this attack at will. The attack does not require the ability to create objects. If server settings include...
in mruby/mruby
Description commit ecb28f4bf463483cf914c799d086b0cfff997aee Proof of Concept sh ⚡ root@pocas /fuzz/mruby2 master ± echo "P2MKWyoqMCwqKjgsbTowXQSAPRpbAAB7" | base64 -d poc1 ⚡ root@pocas /fuzz/mruby2 master ± ./bin/mruby poc1 AddressSanitizer:DEADLYSIGNAL...
AZL-8579 CVE-2022-0382 affecting package kernel for versions less than 5.15.26.1-1
An information leak flaw was found due to uninitialized memory in the Linux kernel's TIPC protocol subsystem, in the way a user sends a TIPC datagram to one or more destinations. This flaw allows a local user to read some kernel memory. This issue is limited to no more than 7 bytes, and the user...
AZL-8514 CVE-2022-22844 affecting package libtiff for versions less than 4.3.0-2
LibTIFF 4.3.0 has an out-of-bounds read in TIFFmemcpy in tifunix.c in certain situations involving a custom tag and 0x0200 as the second word of the DE field...