11 matches found
Astra Linux - уязвимость в ncurses
ncurses 6.3 before patch 20220416 has an out-of-bounds read and segmentation violation in convertstrings in tinfo/readentry.c in the terminfo library...
SUSE CVE-2022-29458
ncurses 6.3 before patch 20220416 has an out-of-bounds read and segmentation violation in convertstrings in tinfo/readentry.c in the terminfo library...
CVE-2022-29458
ncurses 6.3 before patch 20220416 has an out-of-bounds read and segmentation violation in convertstrings in tinfo/readentry.c in the terminfo library...
RUSTSEC-2021-0086 `Read` on uninitialized buffer may cause UB ( `read_entry()` )
Affected versions of this crate passes an uninitialized buffer to a user-provided Read implementation. There are two of such cases gooffsetlog::readentry & offsetlog::readentry. Arbitrary Read implementations can read from the uninitialized buffer memory exposure and also can return incorrect...
Denial Of Service (DoS)
libgit2 is vulnerable to denial of service DoS attacks. The vulnerability exists due to the incorrect return of an error code in readentry of index.c, causing a denial of service DoS through a double free issue when parsing a malicious repository index...
Integer overflow
Integer overflow in the index.c:readentry function while decompressing a compressed prefix length in libgit2 before v0.26.2 allows an attacker to cause a denial of service out-of-bounds read via a crafted repository index file...
DEBIAN-CVE-2018-8099
Incorrect returning of an error code in the index.c:readentry function leads to a double free in libgit2 before v0.26.2, which allows an attacker to cause a denial of service via a crafted repository index file...
CVE-2018-8098
Integer overflow in the index.c:readentry function while decompressing a compressed prefix length in libgit2 before v0.26.2 allows an attacker to cause a denial of service out-of-bounds read via a crafted repository index file...
CVE-2018-8099
Incorrect returning of an error code in the index.c:readentry function leads to a double free in libgit2 before v0.26.2, which allows an attacker to cause a denial of service via a crafted repository index file...
CVE-2018-8098
CVE-2018-8098 affects the libgit2 library: integer overflow in index.c:read_entry() during decompressing a compressed prefix length can cause a denial of service via an out-of-bounds read when processing a crafted repository index file. Affected versions are libgit2 before 0.26.2. Remediation: up...
CVE-2018-8099
CVE-2018-8099 affects the libgit2 library. The issue comes from an incorrect error code return in index.c:read_entry(), which can cause a double free and thus a denial of service when processing a crafted repository index file. The vulnerability is present in libgit2 releases before v0.26.2; mult...