309 matches found
NativeKey continues handling key messages after widget is destroyed — Mozilla
Mozilla developer Masayuki Nakano discovered that the NativeKey widget continues handling key messages even when it is destroyed by dispatched event listeners. This could result in some key events being applied to other objects or plugins if the widget memory is reallocated to them, leading to a...
Oracle Linux 5 : libxml2 (ELSA-2012-0017)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-0017 advisory. - Fix the semantic of XPath axis for namespace/attribute nodes CVE-2010-4008 - Fix an off by one error in encoding CVE-2011-0216 - Fix some potential...
Nova information leakage
LVM images are not cleared on reallocation...
Ubuntu 8.04 LTS : python2.5 vulnerabilities (USN-1613-1)
It was discovered that Python would prepend an empty string to sys.path under certain circumstances. A local attacker with write access to the current working directory could exploit this to execute arbitrary code. CVE-2008-5983 It was discovered that the audioop module did not correctly perform...
CVE-2012-2804
Unspecified vulnerability in libavcodec/indeo3.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.5 has unknown impact and attack vectors, related to "reallocation code" and the luma height and width...
CVE-2012-2804
Unspecified vulnerability in libavcodec/indeo3.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.5 has unknown impact and attack vectors, related to "reallocation code" and the luma height and width...
Design/Logic Flaw
Unspecified vulnerability in libavcodec/indeo3.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.5 has unknown impact and attack vectors, related to "reallocation code" and the luma height and width...
CVE-2012-2804
Unspecified vulnerability in libavcodec/indeo3.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.5 has unknown impact and attack vectors, related to "reallocation code" and the luma height and width...
CVE-2012-2804
CVE-2012-2804 describes an unspecified vulnerability in libavcodec/indeo3.c affecting FFmpeg up to 0.11 and Libav up to 0.8.5, with an issue related to the reallocation code affecting luma height/width. The connected docs identify FFmpeg/Libav as the affected software and reference multiple vendo...
CVE-2012-4358
Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 do not validate the return value of the realloc function, which allows remote attackers to cause a denial of service invalid 0x00 write operation and daemon crash or possibly have unspecified other impact via a...
RedHat Update for pango RHSA-2011:0309-01
Check for the Version of pango OpenVAS Vulnerability Test RedHat Update for pango RHSA-2011:0309-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
RedHat Update for pango RHSA-2011:0309-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Memory corruption
Memory leak in the poolGrow function in expat/lib/xmlparse.c in expat before 2.1.0 allows context-dependent attackers to cause a denial of service memory consumption via a large number of crafted XML files that cause improperly-handled reallocation failures when expanding entities...
CVE-2012-1148
Memory leak in the poolGrow function in expat/lib/xmlparse.c in expat before 2.1.0 allows context-dependent attackers to cause a denial of service memory consumption via a large number of crafted XML files that cause improperly-handled reallocation failures when expanding entities...
CVE-2012-1148
Memory leak in the poolGrow function in expat/lib/xmlparse.c in expat before 2.1.0 allows context-dependent attackers to cause a denial of service memory consumption via a large number of crafted XML files that cause improperly-handled reallocation failures when expanding entities...
expat: Memory leak in poolGrow
A memory leak flaw was found in Expat. If an XML file processed by an application linked against Expat triggered a memory re-allocation failure, Expat failed to free the previously allocated memory. This could cause the application to exit unexpectedly or crash when all available memory is...
Integer overflow
Multiple integer overflows in the Microsoft 1 JScript 5.6 through 5.8 and 2 VBScript 5.6 through 5.8 scripting engines allow remote attackers to execute arbitrary code via a crafted web page, aka "Scripting Memory Reallocation Vulnerability."...
PT-2011-2540 · Microsoft · Jscript +1
Name of the Vulnerable Software and Affected Versions: Microsoft JScript versions 5.6 through 5.8 Microsoft VBScript versions 5.6 through 5.8 Description: The issue is related to multiple integer overflows in the scripting engines, which allow remote attackers to execute arbitrary code via a...
Fedora 14 : pango-1.28.1-5.fc14 (2011-3194)
It was discovered that pango did not check for memory reallocation failures in hbbufferensure function. This could trigger a NULL pointer dereference in hbbufferaddglyph, where possibly untrusted input is used as an index used for accessing members of the incorrectly reallocated array, resulting ...
CVE-2011-0064
The hbbufferensure function in hb-buffer.c in HarfBuzz, as used in Pango 1.28.3, Firefox, and other products, does not verify that memory reallocations succeed, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash or possibly execute arbitrary...