EulerOS 2.0 SP10 : uboot-tools (EulerOS-SA-2022-2422)

According to the versions of the uboot-tools packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Das U-Boot through 2022.07-rc5, an integer signedness error and resultant stack-based buffer overflow in the 'i2c md' command enables th...

EulerOS 2.0 SP10 : vim (EulerOS-SA-2022-2423)

According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Use After Free in GitHub repository vim/vim prior to 8.2. CVE-2022-1898, CVE-2022-2042 - Heap-based Buffer Overflow in GitHub repository vim/vim...

EulerOS 2.0 SP5 : vim (EulerOS-SA-2022-2451)

According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Buffer Over-read in GitHub repository vim/vim prior to 8.2. CVE-2022-2124 - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2...

EulerOS 2.0 SP10 : vim (EulerOS-SA-2022-2436)

According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Use After Free in GitHub repository vim/vim prior to 8.2. CVE-2022-1898, CVE-2022-2042 - Heap-based Buffer Overflow in GitHub repository vim/vim...

CVE-2022-3324

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0598...

CVE-2022-3324 Stack-based Buffer Overflow in vim/vim

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0598...

[slackware-security] vim

New vim packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.0594-i586-1slack15.0.txz: Upgraded. Fixed stack-based buffer overflow. Thanks to marav for the heads-up. In addition, Mig21...

Slackware Linux 15.0 / current vim Vulnerability (SSA:2022-269-02)

The version of vim installed on the remote host is prior to 9.0.0594. It is, therefore, affected by a vulnerability as referenced in the SSA:2022-269-02 advisory. - Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577. CVE-2022-3296 Note that Nessus has not tested for this...

CVE-2022-3296 Stack-based Buffer Overflow in vim/vim

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577...

CVE-2022-3296

CVE-2022-3296 is a stack-based buffer overflow in the vim/vim project, affecting vim prior to 9.0.0577. The underlying issue is a stack-based overflow in the affected code path. Impact and exploitability are described in the linked advisories as HIGH severity with local access and user interactio...

CVE-2022-3296 Stack-based Buffer Overflow in vim/vim

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577...

CVE-2022-2972 MZ Automation libIEC61850 Stack-Based Buffer Overflow

MZ Automation's libIEC61850 versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e is vulnerable to a stack-based buffer overflow, which could allow an attacker to crash the device or remotely execute arbitrary code...

EulerOS Virtualization 2.9.0 : vim (EulerOS-SA-2022-2405)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4428. CVE-2022-0696 - Use after free in utfptr2char in GitHub...

Ubuntu 18.04 LTS / 20.04 LTS : libjpeg-turbo vulnerabilities (USN-5631-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5631-1 advisory. It was discovered that libjpeg-turbo incorrectly handled certain EOF characters. An attacker could possibly use this issue to cause...

CVE-2022-41220

md2roff 1.9 has a stack-based buffer overflow via a Markdown file, a different vulnerability than CVE-2022-34913. NOTE: the vendor's position is that the product is not intended for untrusted input...

Stack overflow

DISPUTED md2roff 1.9 has a stack-based buffer overflow via a Markdown file, a different vulnerability than CVE-2022-34913. NOTE: the vendor's position is that the product is not intended for untrusted input...

CVE-2022-41220

CVE-2022-41220 : Red Hat and third‑party sources identify a stack‑based buffer overflow in md2roff 1.9 triggered by processing a Markdown file. The Red Hat entries and related postings confirm this vulnerability is separate from CVE-2022-34913. The exploit demonstrations show an out‑of‑bounds/sta...

Host Engineering Communications Module

1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Exploitable from adjacent network/low attack complexity Vendor: Host Engineering Equipment: H0-ECOM100 Communications Module Vulnerability: Stack-based Buffer overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could crash the...

Security Bulletin: Mitigations are being announced to address CVE-2020-4839 and CVE-2021-29695

Summary IBM products 8335-GCA, 8335-GTA, and 8335-GTB have identified security vulnerabilities. Vulnerability Details CVEID:CVE-2020-4839 DESCRIPTION: IBM Host firmware for LC-class Systems is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A remote privileged...

CVE-2022-2471

CVE-2022-2471 describes a stack-based buffer overflow in EZVIZ’s Motion Detection component used by multiple EZVIZ cameras (CS-CV248, CS-C6N-A0-1C2WFR, CS-DB1C-A0-1E2W2FR, CS-C6N-B0-1G2WF, CS-C3W-A0-3H4WFRL). The underlying flaw allows a remote attacker to execute arbitrary code on the affected d...