CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

335 matches found

Samba•added 2020/01/21 12:0 a.m.•73 views

Use after free during DNS zone scavenging

Description Samba 4.9 introduced an off-by-default feature to tombstone dynamically created DNS records that had reached their expiry time. This feature is controlled by the smb.conf option: dns zone scavenging = yes There is a use-after-free issue in this code, essentially due to a call to reall...

6.5CVSS0.02193EPSS

Exploits0

CVE•added 2020/01/21 12:0 a.m.•237 views

CVE-2019-19344

CVE-2019-19344 affects Samba 4.9.x (before 4.9.18), 4.10.x (before 4.10.12), and 4.11.x (before 4.11.5). The issue is a use-after-free caused by a realloc() call while other local variables still reference the original buffer, impacting Samba AD DC DNS zone scavenging. Connected advisories confir...

6.5CVSS6.3AI score0.02193EPSS

Exploits0References10Affected Software1

RedhatCVE•added 2020/01/10 9:28 p.m.•46 views

CVE-2018-10902

It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc double free in sndrawmidiinputparams and sndrawmidioutputstatus which are part of sndrawmidiioctl handler in rawmidi.c file. A malicious local attacker could possibly use this f...

7.8CVSS2AI score0.00039EPSS

Exploits0References2

RedhatCVE•added 2020/01/09 7:9 p.m.•26 views

CVE-2020-5310

libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc...

8.8CVSS3.6AI score0.00608EPSS

Exploits0References3

OSV•added 2020/01/03 1:15 a.m.•1 views

ALPINE-CVE-2020-5310

libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc...

8.8CVSS6.9AI score0.00608EPSS

Exploits0References1

NVD•added 2020/01/03 1:15 a.m.•15 views

CVE-2020-5310

libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc...

8.8CVSS9.1AI score0.00608EPSS

Exploits0References5

OSV•added 2020/01/03 1:15 a.m.•1 views

DEBIAN-CVE-2020-5310

libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc...

8.8CVSS6.3AI score0.00608EPSS

Exploits0References1

PyPA•added 2020/01/03 1:15 a.m.•5 views

PYSEC-2020-81

libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc...

8.8CVSS6.9AI score0.00608EPSS

Exploits0References6Affected Software1

UbuntuCve•added 2020/01/03 1:15 a.m.•24 views

CVE-2020-5310

libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc...

8.8CVSS6.8AI score0.00608EPSS

Exploits0References3

Cvelist•added 2020/01/03 12:52 a.m.•18 views

CVE-2020-5310

libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc...

9AI score0.00608EPSS

Exploits0References5

CVE•added 2020/01/03 12:52 a.m.•296 views

CVE-2020-5310

CVE-2020-5310 affects Pillow’s TIFF decoding path, specifically libImaging/TiffDecode.c. The root cause is a TIFF decoding integer overflow tied to memory reallocation (realloc), exposing Pillow versions prior to 6.2.2 to potential crash or compromise when processing crafted TIFF images. Affected...

8.8CVSS8.8AI score0.00608EPSS

Exploits0References5Affected Software1

AlpineLinux•added 2020/01/03 12:52 a.m.•40 views

CVE-2020-5310

libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc...

8.8CVSS9.2AI score0.00608EPSS

Exploits0

CNVD•added 2020/01/02 12:0 a.m.•1 views

ezXML Invalid Release Vulnerability

ezXML is a C library for parsing XML documents . An invalid release vulnerability exists in ezXML. The vulnerability stems from an attempt by the ezxmlcharcontent function to use realloc on an unallocated block.An attacker could exploit this vulnerability to cause a segmentation error...

6.5CVSS6.9AI score0.00405EPSS

Exploits1References1

OSV•added 2019/12/31 9:15 p.m.•0 views

UBUNTU-CVE-2019-20202

An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxmlcharcontent tries to use realloc on a block that was not allocated, leading to an invalid free and segmentation fault...

6.5CVSS5.8AI score0.00405EPSS

Exploits1References3

Cvelist•added 2019/12/31 8:30 p.m.•17 views

CVE-2019-20202

An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxmlcharcontent tries to use realloc on a block that was not allocated, leading to an invalid free and segmentation fault...

6.9AI score0.00405EPSS

Exploits1References1

Debian CVE•added 2019/12/31 8:30 p.m.•22 views

CVE-2019-20202

An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxmlcharcontent tries to use realloc on a block that was not allocated, leading to an invalid free and segmentation fault...

6.5CVSS6.3AI score0.00405EPSS

Exploits1

UbuntuCve•added 2019/12/31 12:0 a.m.•20 views

CVE-2019-20202

An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxmlcharcontent tries to use realloc on a block that was not allocated, leading to an invalid free and segmentation fault...

6.5CVSS6.6AI score0.00405EPSS

Exploits1References2

RedHat Linux•added 2019/11/05 10:28 p.m.•3 views

libarchive: Double free in RAR decoder resulting in a denial of service

libarchive version commit 416694915449219d505531b1096384f3237dd6cc onwards release v3.1.0 onwards contains a CWE-415: Double Free vulnerability in RAR decoder - libarchive/archivereadsupportformatrar.c, parsecodes, reallocrar-lzss.window, newsize with newsize = 0 that can result in Crash/DoS. Thi...

8.8CVSS6.5AI score0.01775EPSS

Exploits0References4

OSV•added 2019/10/14 2:15 a.m.•2 views

DEBIAN-CVE-2019-17545

GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogrexpat.cpp when the 10MB threshold is exceeded...

9.8CVSS8.3AI score0.02245EPSS

Exploits0References1

OSV•added 2019/10/14 2:15 a.m.•1 views

UBUNTU-CVE-2019-17545

GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogrexpat.cpp when the 10MB threshold is exceeded...

9.8CVSS7.3AI score0.02245EPSS

Exploits0References4