CVE-2020-24119

A heap buffer overflow read was discovered in upx 4.0.0, because the check in plxelf.cpp is not perfect...

CVE-2021-29586

TensorFlow is an end-to-end open source platform for machine learning. Optimized pooling implementations in TFLite fail to check that the stride arguments are not 0 before calling...

CVE-2021-29575

TensorFlow is an end-to-end open source platform for machine learning. The implementation of tf.rawops.ReverseSequence allows for stack overflow and/or CHECK-fail based denial of service. The...

CVE-2021-20326

A user authorized to performing a specific type of find query may trigger a denial of service. This issue affects MongoDB Server v4.4 versions prior to 4.4.4...

OSV-2021-695 Stack-buffer-overflow in XCFImageFormat::loadTileRLE

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=33742 Crash type: Stack-buffer-overflow WRITE 1 Crash state: XCFImageFormat::loadTileRLE XCFImageFormat::loadLevel XCFImageFormat::loadHierarchy...

CVE-2020-35982

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function gfhintertrackfinalize in mediatools/isomhinter.c...

Insecure Validation

github.com/filecoin-project/lotus uses insecure validation. The vulnerability exists due to the system wrongly validating the signature in their other forms even though the methods accepts both in either form...

Cisco IOS XE Software Plug Play Privilege Escalation (cisco-sa-ios-xe-pnp-priv-esc-AmG3kuVL)

According to its self-reported version, Cisco IOS-XE Software is affected by a vulnerability. Please see the included Cisco BIDs and Cisco Security Advisory for more information. TRUSTED...

CVE-2020-15690

In Nim before 1.2.6, the standard library asyncftpclient lacks a check for whether a message contains a newline character...

OSV-2018-204 UNKNOWN WRITE in __msan_memcpy.part.51

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=9845 Crash type: UNKNOWN WRITE Crash state: msanmemcpy.part.51 QuickOpen::ReadRaw QuickOpen::ReadNext...

OSV-2017-17 Use-of-uninitialized-value in QuickOpen::Seek

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=4522 Crash type: Use-of-uninitialized-value Crash state: QuickOpen::Seek Archive::Seek QuickOpen::Load...

OPENSUSE-SU-2020:2111-1 Security update for fontforge

This update for fontforge fixes the following issues: - fix for Use-after-free heap in the SFDGetFontMetaData function and the crash bsc1178308 CVE-2020-25690. This update was imported from the SUSE:SLE-15:Update update project...

PYSEC-2020-75

petl before 1.68, in some configurations, allows resolution of entities in an XML document...

SUSE-SU-2020:3413-1 Security update for xen

This update for xen fixes the following issues: Security issue fixed: - CVE-2020-28368: Fixed the Intel RAPL sidechannel attack, aka PLATYPUS attack, aka XSA-351 bsc1178591. Non-security issues fixed: - Updated to Xen 4.12.4 bug fix release bsc1027519. - Fixed a panic during MSI cleanup on AMD...

CVE-2020-24387

An issue was discovered in the yhcreatesession function of yubihsm-shell through 2.0.2. The function does not explicitly check the returned session id from the device. An invalid session id would lead to out-of-bounds read and write operations in the session array. This could be used by an attack...

PYSEC-2020-279

In Tensorflow before version 2.3.1, the RaggedCountSparseOutput does not validate that the input arguments form a valid ragged tensor. In particular, there is no validation that the splits tensor has the minimum required number of elements. Code uses this quantity to initialize a different data...

CVE-2020-8201

Node.js 12.18.4 and 14.11 can be exploited to perform HTTP desync attacks and deliver malicious payloads to unsuspecting users. The payloads can be crafted by an attacker to hijack user sessions, poison cookies, perform clickjacking, and a multitude of other attacks depending on the architecture ...

libyal:libbde_volume_fuzzer: Use-of-uninitialized-value in libfsapfs_snapshot_metadata_tree_get_snapshots_from_leaf_node

Detailed Report: https://oss-fuzz.com/testcase?key=5661267751337984 Project: libyal Fuzzing Engine: libFuzzer Fuzz Target: libbdevolumefuzzer Job Type: libfuzzermsanlibyal Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State:...

OSV-2020-1356 Segv on unknown address in vips_XYZ2Lab_line

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24290 Crash type: Segv on unknown address Crash state: vipsXYZ2Labline vipscolourgen vipsregiongenerate...

OSV-2020-1307 Heap-buffer-overflow in pcpp::IPv6Extension::getExtensionLen

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22636 Crash type: Heap-buffer-overflow READ 1 Crash state: pcpp::IPv6Extension::getExtensionLen pcpp::IPv6Layer::parseExtensions pcpp::IPv6Layer::IPv6Layer...