16 matches found
softmmu/physmem.c in QEMU through 7.0.0 can perform an uninitialized read on the translate_fail path leading to an io_readx or io_writex crash. NOTE: a third party states that the Non-virtualization Use Case in the qemu.org reference applies here i.e. "Bugs affecting the non-virtualization use case are not considered security bugs at this time.
...
Denial Of Service
upx-ucl:sid is vulnerable to Denial Of Service. The vulnerability due to a failed crafted file passed to the the readx function unsignedlen getSize. It leads to allows attackers to cause a denial of service...
CVE-2021-46179
Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of service via crafted file passed to the the readx function...
CVE-2021-46179
Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of service via crafted file passed to the the readx function...
CVE-2021-46179
Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of service via crafted file passed to the the readx function...
Authentication flaw
Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of service via crafted file passed to the the readx function...
UBUNTU-CVE-2021-46179
Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of service via crafted file passed to the the readx function...
Denial of Service (DoS)
Overview Affected versions of this package are vulnerable to Denial of Service DoS via crafted file passed to the the readx function. Details Denial of Service DoS describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users. Unlike other...
CVE-2021-46179
Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of service via crafted file passed to the the readx function...
UPX 安全漏洞
UPX is a portable and extensible executable compression program. A security vulnerability exists in versions of UPX prior to 4.0.0, which stems from a vulnerability that allows an attacker to cause a denial of service DoS by designing a file passed to the readx function...
CVE-2021-46179
CVE-2021-46179 is a Reachable Assertion vulnerability in upx before 4.0.0 that can cause a denial of service when a crafted file is passed to the readx function. Public sources across multiple feeds confirm the flaw exists in upx’s handling of input that triggers an assertion, with the impact des...
CVE-2021-46179
Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of service via crafted file passed to the the readx function...
CVE-2022-35414
softmmu/physmem.c in QEMU through 7.0.0 can perform an uninitialized read on the translatefail path, leading to an ioreadx or iowritex crash. NOTE: a third party states that the Non-virtualization Use Case in the qemu.org reference applies here, i.e., "Bugs affecting the non-virtualization use ca...
DEBIAN-CVE-2022-35414
softmmu/physmem.c in QEMU through 7.0.0 can perform an uninitialized read on the translatefail path, leading to an ioreadx or iowritex crash. NOTE: a third party states that the Non-virtualization Use Case in the qemu.org reference applies here, i.e., "Bugs affecting the non-virtualization use ca...
Atomicparsley 缓冲区错误漏洞
Atomicparsley is an open source, lightweight command line program for reading, parsing, and setting metadata into MPEG-4 files, specifically iTunes-style metadata. A security vulnerability exists in Atomicparsley 20210124.204813.840499f, which stems from a stack buffer overflow via APar readX due...
PT-2021-21588 · Unknown +1 · Atomicparsley +1
Name of the Vulnerable Software and Affected Versions: Atomicparsley version 20210124.204813.840499f Description: A stack-buffer-overflow issue occurs while parsing a crafted mp4 file due to a missing boundary check in the APar readX function in src/util.cpp. Recommendations: For Atomicparsley...