Bug in SliceDeque::move_head_unchecked corrupts its memory

Affected versions of this crate entered a corrupted state if mem::sizeof:: % allocationgranularity != 0 and a specific allocation pattern was used: sufficiently shifting the deque elements over the mirrored page boundary. This allows an attacker that controls controls both element insertion and...

DEBIAN-CVE-2019-9810

Incorrect alias information in IonMonkey JIT compiler for Array.prototype.slice method may lead to missing bounds check and a buffer overflow. This vulnerability affects Firefox 66.0.1, Firefox ESR 60.6.1, and Thunderbird 60.6.1...

UBUNTU-CVE-2019-10871

An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc...

Mozilla: IonMonkey MArraySlice has incorrect alias information

Incorrect alias information in IonMonkey JIT compiler for Array.prototype.slice method may lead to missing bounds check and a buffer overflow. This vulnerability affects Firefox 66.0.1, Firefox ESR 60.6.1, and Thunderbird 60.6.1...

Mozilla: IonMonkey MArraySlice has incorrect alias information

Incorrect alias information in IonMonkey JIT compiler for Array.prototype.slice method may lead to missing bounds check and a buffer overflow. This vulnerability affects Firefox 66.0.1, Firefox ESR 60.6.1, and Thunderbird 60.6.1...

Mozilla: IonMonkey MArraySlice has incorrect alias information

Incorrect alias information in IonMonkey JIT compiler for Array.prototype.slice method may lead to missing bounds check and a buffer overflow. This vulnerability affects Firefox 66.0.1, Firefox ESR 60.6.1, and Thunderbird 60.6.1...

CVE-2019-10019

An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PSOutputDev::checkPageSlice at PSOutputDev.cc for nStripes...

UBUNTU-CVE-2019-9810

Incorrect alias information in IonMonkey JIT compiler for Array.prototype.slice method may lead to missing bounds check and a buffer overflow. This vulnerability affects Firefox 66.0.1, Firefox ESR 60.6.1, and Thunderbird 60.6.1...

PT-2022-11256 · Gpac +1 · Gpac +1

Name of the Vulnerable Software and Affected Versions: Gpac versions through 1.0.2 Description: A Segmentation fault caused by null pointer dereference exists in Gpac via the avc parse slice function in av parsers.c when using mp4box, which causes a denial of service. Recommendations: For Gpac...

PT-2022-11260 · Gpac +1 · Gpac +1

Name of the Vulnerable Software and Affected Versions: Gpac versions through 1.0.1 Description: A buffer overflow issue exists via a malformed MP4 file in the svc parse slice function in av parsers.c, allowing attackers to cause a denial of service, potentially execute code, and escalate...

Information Disclosure

Microsoft ChakraCore is vulnerable to information disclosure. A lack of validation of the length in IsMissingItem function can result in heap over-read during slice which reads into unauthorized memory space and allows a remote attacker to retrieve confidential information which would aids in...

i18n gem for Ruby Denial of Service Vulnerability

The i18n gem for Ruby is a Ruby-based framework for providing multi-language support in applications. A security vulnerability exists in the hashslice in the lib/i18n/coreext/hash.rb file in versions of the i18n gem prior to 0.8.0 for Ruby-based platforms. A remote attacker could exploit this...

Denial Of Service (DoS)

i18n is vulnerable to denial-of-service DoS attacks. The vulnerability exists in the Hashslice method where there may be more keys present in keepkeys, and not in the hash itself, causing certain applications to crash...

Code injection

Hashslice in lib/i18n/coreext/hash.rb in the i18n gem before 0.8.0 for Ruby allows remote attackers to cause a denial of service application crash via a call in a situation where :somekey is present in keepkeys but not present in the hash...

DEBIAN-CVE-2014-10077

Hashslice in lib/i18n/coreext/hash.rb in the i18n gem before 0.8.0 for Ruby allows remote attackers to cause a denial of service application crash via a call in a situation where :somekey is present in keepkeys but not present in the hash...

UBUNTU-CVE-2014-10077

Hashslice in lib/i18n/coreext/hash.rb in the i18n gem before 0.8.0 for Ruby allows remote attackers to cause a denial of service application crash via a call in a situation where :somekey is present in keepkeys but not present in the hash...

Teradek Slice 7.3.15 CSRF Change Password Exploit

Summary Built on the award-winning Cube platform, Slice is a rack mount HEVC / H.264 codec designed to fit seamlessly into your broadcast studio. Like the Cube, Slice encoders and decoders includes 3G-SDI and HDMI I/O, Ethernet and WiFi connectivity, and full duplex IFB. Description The applicati...

Teradek Slice 7.3.15 Change Password Cross Site Request Forgery

...

Teradek Slice 7.3.15 (snapshot.cgi) Stream Disclosure

Teradek Slice 7.3.15 snapshot.cgi Stream Disclosure Vendor: Teradek, LLC Product web page: https://www.teradek.com Affected version: Firmware Version:7.3.15 build 31735 Hardware Version: 2.1 Summary: Built on the award-winning Cube platform, Slice is a rack mount HEVC / H.264 codec designed to fi...

Teradek Slice 7.3.15 CSRF Change Password Exploit

Summary Built on the award-winning Cube platform, Slice is a rack mount HEVC / H.264 codec designed to fit seamlessly into your broadcast studio. Like the Cube, Slice encoders and decoders includes 3G-SDI and HDMI I/O, Ethernet and WiFi connectivity, and full duplex IFB. Description The applicati...