5 matches found
kernel: Linux kernel: Denial of Service in authencesn due to too-short AAD
A flaw was found in the Linux kernel's authencesn authenticated encryption with associated data implementation. A remote attacker can exploit this vulnerability by providing a specially crafted Associated Additional Data with a length shorter than the expected minimum. This can lead to a NULL...
The vulnerability of the put_qpel_fallback() function in the h.265 Libde265 implementation allows a perpetrator to trigger a service failure.
The vulnerability of the putqpelfallback function in the h.265 Libde265 implementation is related to the issue where the operation’s output goes beyond the buffer in memory when processing the unsigned short data type. Exploiting this vulnerability can allow a malicious actor to cause service...
golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service
An uncontrolled resource consumption flaw was found in Golang math/big. A too-short encoded message can cause a panic in Float.GobDecode and Rat.GobDecode in math/big in Go, potentially allowing an attacker to create a denial of service, impacting availability...
CVE-2020-12717
The COVIDSafe Australia app 1.0 and 1.1 for iOS allows a remote attacker to crash the app, and consequently interfere with COVID-19 contact tracing, via a Bluetooth advertisement containing manufacturer data that is too short. This occurs because of an erroneous OpenTrace manuData.subdata call. T...
UBUNTU-CVE-2017-11450
coders/jpeg.c in ImageMagick before 7.0.6-1 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via JPEG data that is too short...