Updated x11-server packages fix security vulnerability

Buffer overflow in function GetCountedString of the file xkb/xkb.c. CVE-2022-3550 Memory leak in the function ProcXkbGetKbdByName of the file xkb/xkb.c. CVE-2022-3551...

Updated python-ujson packages fix security vulnerability

UltraJSON aka ujson through 5.1.0 has a stack-based buffer overflow in BufferAppendIndentUnchecked called from encode. Exploitation can, for example, use a large amount of indentation. CVE-2021-45958...

CVE-2022-24578

GPAC 1.0.1 is affected by a heap-based buffer overflow in SFSAddString at bifs/scriptdec.c...

CVE-2021-3872

vim is vulnerable to Heap-based Buffer Overflow...

Important: Red Hat Security Advisory: libsndfile security update

An update for libsndfile is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

CVE-2021-34185

Miniaudio 0.10.35 has an integer-based buffer overflow caused by an out-of-bounds left shift in drwavbytestou32 in miniaudio.h...

Google Android Buffer Overflow Vulnerability (CNVD-2021-19683)

Google Android is a Linux-based open source operating system from the USGoogleOpen Handheld Alliance Google. Google Android/Pixel suffers from a security vulnerability that could allow out-of-bounds writes due to a lack of boundary checking. No details of the vulnerability are available at this...

SUSE-SU-2021:0652-1 Security update for java-1_8_0-ibm

This update for java-180-ibm fixes the following issues: - Update to Java 8.0 Service Refresh 6 Fix Pack 25 bsc1182186, bsc1181239, CVE-2020-27221, CVE-2020-14803 CVE-2020-27221: Potential for a stack-based buffer overflow when the virtual machine or JNI natives are converting from UTF-8 characte...

CVE-2020-14410

SDL Simple DirectMedia Layer through 2.0.12 has a heap-based buffer over-read in Blit3or4to3or4inversedrgb in video/SDLblitN.c via a crafted .BMP file...

CVE-2020-29443

ideatapicmdreplyend in hw/ide/atapi.c in QEMU 5.1.0 allows out-of-bounds read access because a buffer index is not validated...

Updated pngcheck package fixes security vulnerability

Multiple buffer overflow flaws were found in pngcheck 2.4.0 and older rhbz1902806...

SUSE-SU-2020:2498-1 Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP3)

This update for the Linux Kernel 4.4.180-94113 fixes several issues. The following security issues were fixed: - CVE-2020-14331: Fixed a buffer over-write in vgaconscroll bsc1174247. - CVE-2019-16746: Fixed a buffer overflow in net/wireless/nl80211.c bsc1173659. - CVE-2019-9458: Fixed a...

Heap overflow

Ming aka libming 0.4.8 has a heap-based buffer over-read 8 bytes in the function decompileIF in decompile.c...

Arbitrary Code Execution

java i svulnerable to arbitrary code execution. A buffer overflow flaw was found in how GIF images were processed. A remote attacker could extend privileges to read and write local files, as well as execute local applications with the privileges of the user running the java process...

CVE-2019-19630

HTMLDOC 1.9.7 allows a stack-based buffer overflow in the hdstrlcpy function in string.c when called from rendercontents in ps-pdf.cxx via a crafted HTML document...

CVE-2013-7088

ClamAV before 0.97.7 has buffer overflow in the libclamav component...

CVE-2019-17266

libsoup from versions 2.65.1 until 2.68.1 have a heap-based buffer over-read because soupntlmparsechallenge in soup-auth-ntlm.c does not properly check an NTLM message's length before proceeding with a memcpy...

ChaosPro 2.0 - SEH Buffer Overflow Exploit

!C:\Python27\python.exe Title : ChaosPro 2.0 Twitter : @securitychops Blog Post : https://securitychops.com/2019/08/24/retro-exploit-series-episode-one-chaospro-3-1.html this needs to be a backwards jump to give us room to call stack jump code jmpback80 = "\x40\x75\x80\x75" jmpforward06 =...

Heap overflow

In GPAC before 0.8.0, isomedia/isomread.c in libgpac.a has a heap-based buffer over-read, as demonstrated by a crash in gfm2tssync in mediatools/mpegts.c...

CVE-2018-13443

EOS.IO jit-wasm 4.1 has a heap-based buffer overflow via a crafted wast file...