SUSE-SU-2024:2926-1 Security update for zziplib

This update for zziplib fixes the following issues: - CVE-2024-39134: Fixed a stack buffer overflow via the zzipfetchdisktrailer bsc1227178...

SUSE-SU-2024:2925-1 Security update for zziplib

This update for zziplib fixes the following issues: - CVE-2024-39134: Fixed a stack buffer overflow via the zzipfetchdisktrailer bsc1227178...

The vulnerability of the RemoveEnding() function in the Espeak speech synthesiser allows a hacker to trigger a service failure.

The vulnerability of the RemoveEnding function in the Espeak speech synthesizer is related to stack buffer overflow. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2023-50809

CVE-2023-50809 affects Sonos devices (Amp, Arc, Arc SL, Beam, Beam Gen 2, Beam SL, Five) due to a stack buffer overflow in the mt_7615.ko wireless driver during WPA2 four-way handshake negotiation. The root cause is improper validation of an information element, enabling remote code execution wit...

json-c: Buffer Overflow

Background json-c is a JSON implementation in C. Description Please review the CVE identifier referenced below for details. Impact A stack-buffer-overflow exists in the auxiliary sample program jsonparse which is located in the function parseit. Workaround There is no known workaround at this tim...

DEBIAN-CVE-2024-7538

oFono CUSD AT Command Stack-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploit this...

OSV-2024-695 Stack-buffer-overflow in gf_vvc_parse_nalu_bs

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70549 Crash type: Stack-buffer-overflow WRITE 4 Crash state: gfvvcparsenalubs gfinspectdumpnaluinternal inspectprocess...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : espeak-ng (SUSE-SU-2024:2632-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2632-1 advisory. - CVE-2023-49990: Fixed buffer overflow in SetUpPhonemeTable function at synthdata.c bsc1218010 ...

SUSE-SU-2024:2632-1 Security update for espeak-ng

This update for espeak-ng fixes the following issues: - CVE-2023-49990: Fixed buffer overflow in SetUpPhonemeTable function at synthdata.c bsc1218010 - CVE-2023-49991: Fixed stack-buffer-underflow exists in the function CountVowelPosition in synthdata.c bsc1218006 - CVE-2023-49992: Fixed...

CVE-2024-6874

libcurl's URL API function curlurlget offers punycode conversions, to and from IDN. Asking to convert a name that is exactly 256 bytes, libcurl ends up reading outside of a stack based buffer when built to use the macidn IDN backend. The conversion function then fills up the provided buffer exact...

CVE-2024-6874

libcurl's URL API function curlurlget offers punycode conversions, to and from IDN. Asking to convert a name that is exactly 256 bytes, libcurl ends up reading outside of a stack based buffer when built to use the macidn IDN backend. The conversion function then fills up the provided buffer exact...

The vulnerability of the microprogrammed software of AutomationDirect P3-550E, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.

The vulnerability of the microprogrammed software in AutomationDirect P3-550E controllers is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the microprogrammed software of AutomationDirect P3-550E, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.

The vulnerability of the microprogrammed software in AutomationDirect P3-550E controllers is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

D-Link DAP-1325 Stack Buffer Overflow Vulnerability (CNVD-2024-33901)

The D-Link DAP-1325 is a wireless access point/bridge from China's AUO D-Link, which is primarily used to provide wireless network coverage and has a bridging function that allows you to convert a wired network to a wireless network or connect two wireless networks together. The D-Link DAP-1325...

NETGEAR RAX30 Stack Buffer Overflow Vulnerability (CNVD-2024-33904)

The NETGEAR RAX30 is a dual-band wireless router from NETGEAR. The NETGEAR RAX30 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code...

D-Link DAP-1325 SetAPLanSettings Stack Buffer Overflow Vulnerability

D-Link DAP-1325 is a wireless access point/bridge made by D-Link, which is mainly used to extend the wireless network coverage, support the conversion of wired network to wireless network or connect to different wireless networks. The D-Link DAP-1325 suffers from a stack buffer overflow...

PDF-XChange Editor stack buffer overflow vulnerability (CNVD-2024-33502)

PDF-XChange Editor is a PDF-XChange company running on Microsoft Windows systems in the PDF file viewer software. PDF-XChange Editor suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code...

TP-LINK Tapo C210 Stack Buffer Overflow Vulnerability

TP-LINK Tapo C210 is a webcam device from China P&L TP-LINK. The TP-LINK Tapo C210 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on an affected device...

Tenda AX1806 sub_519F4 function stack buffer overflow vulnerability

The Tenda AX1806 is a WiFi6 wireless router from Tenda, a Chinese company. A stack buffer overflow vulnerability exists in the Tenda AX1806 sub519F4 function, which originates when /goform/SetStaticRouteCfg fails to properly validate the length and size of the input data, and can be exploited by ...

The vulnerability of the fromNatlimit function (/goform/Natlimit) in the Tenda F1202 router microprogramming system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the fromNatlimit function /goform/Natlimit in the Tenda F1202 router microprogramming system is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected informatio...