65 matches found
AZL-68976 CVE-2025-21750 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Check the return value of ofpropertyreadstringindex Somewhen between 6.10 and 6.11 the driver started to crash on my MacBookPro14,3. The property doesn't exist and 'tmp' remains uninitialized, so we pass a random...
Access of Uninitialized Pointer
Overview Affected versions of this package are vulnerable to Access of Uninitialized Pointer in the AMF3ReadString function in amf.c. Remediation There is no fixed version for rudloff/rtmpdump-bin. References - Talos Vulnerability Report - Vulnerable Code Credit: Dave McDaniel...
PT-2025-34375 · Spim +1 · Spim +1
Name of the Vulnerable Software and Affected Versions: spim versions prior to 9.1.24 Description: spimsimulator spim is susceptible to a buffer overflow in the READ STRING SYSCALL function. Recommendations: Update to a version newer than 9.1.24...
CVE-2023-33718
mp4v2 v2.1.3 was discovered to contain a memory leak via MP4File::ReadString at mp4fileio.cpp...
UBUNTU-CVE-2023-33718
mp4v2 v2.1.3 was discovered to contain a memory leak via MP4File::ReadString at mp4fileio.cpp...
SUSE CVE-2017-11423
The cabdreadstring function in mspack/cabd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2 and other products, allows remote attackers to cause a denial of service stack-based buffer over-read and application crash via a crafted CAB file...
SUSE CVE-2022-39832
An issue was discovered in PSPP 1.6.2. There is a heap-based buffer overflow at the function readstring in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service application crash or possibly have unspecified other impact...
UBUNTU-CVE-2022-39832
An issue was discovered in PSPP 1.6.2. There is a heap-based buffer overflow at the function readstring in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service application crash or possibly have unspecified other impact...
PT-2022-25023 · Pspp +1 · Pspp +1
Name of the Vulnerable Software and Affected Versions: PSPP version 1.6.2 Description: An issue was discovered that allows attackers to cause a denial of service or possibly have other unspecified impacts due to a heap-based buffer overflow at the read string function in utilities/pspp-dump-sav.c...
dotnet: Denial of service via untrusted input
An integer overflow condition was found in dotnet and dotnet3.1's BinaryReader Read7BitEncodedInt method. This method is used by BinaryReader's ReadString method, and given a certain input, and cause a denial of service to dotnet applications using BinaryReader. The exploitation of this flaw...
Multiple Point-by-Point Vulnerabilities in UltraVNC
UltraVNC is an open source remote terminal control software for the Windows platform. A security vulnerability exists in the VNC client code in UltraVNC version 1206, which stems from the program incorrectly using the 'ClientConnection::ReadString' function. An attacker could exploit the...
The vulnerability of the Simple Network Management Protocol (SNMP) subsystem of the Cisco IOS operating system, which allows a hacker to inject code or trigger a system reboot.
Many vulnerabilities in the Simple Network Management Protocol SNMP subsystem of the Cisco IOS operating system are caused by buffer overflows. Exploitation of these vulnerabilities allows a malicious actor to inject code into the system or cause it to restart by sending specially created SNMP...
The vulnerability of the Simple Network Management Protocol (SNMP) subsystem of the Cisco IOS operating system, which allows a hacker to inject code or trigger a system reboot.
Many vulnerabilities in the Simple Network Management Protocol SNMP subsystem of the Cisco IOS operating system are caused by buffer overflows. Exploiting these vulnerabilities allows a malicious actor to inject code into the system or cause it to restart by sending specially created SNMP packets...
The vulnerability of the Simple Network Management Protocol (SNMP) subsystem of the Cisco IOS operating system, which allows a hacker to inject code or trigger a system reboot.
Many vulnerabilities in the Simple Network Management Protocol SNMP subsystem of the Cisco IOS operating system are caused by buffer overflows. Exploitation of these vulnerabilities allows a malicious actor to inject code into the system or cause it to restart by sending specially created SNMP...
ClamAV 'cabd_read_string' Function Denial of Service Vulnerability
ClamAV Clam AntiVirus is a free and open source antivirus program developed by the ClamAV team. The software is used to detect Trojans, viruses, malware and other malicious threats. libmspack is one of the libraries that compresses and decompresses files in formats such as Microsoft CAB, CHM and...
ALPINE-CVE-2017-11423
The cabdreadstring function in mspack/cabd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2 and other products, allows remote attackers to cause a denial of service stack-based buffer over-read and application crash via a crafted CAB file...
UBUNTU-CVE-2017-11423
The cabdreadstring function in mspack/cabd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2 and other products, allows remote attackers to cause a denial of service stack-based buffer over-read and application crash via a crafted CAB file...
PT-2017-12005
Name of the Vulnerable Software and Affected Versions libmspack version 0.5alpha ClamAV version 0.99.2 Description The issue allows remote attackers to cause a denial of service, resulting in a stack-based buffer over-read and application crash, via a crafted CAB file. This is due to a problem in...
DEBIAN-CVE-2015-8270
The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service invalid pointer dereference and process crash...
Apache Subversion Integer Overflow Vulnerability
Apache Subversion is the United States Apache Apache Software Foundation, a set of open source version control system , the system can be compatible with concurrent versioning system CVS. An integer overflow vulnerability exists in the 'readstring' function in the libsvnrasvn/marshal.c file in...