Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-1702)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.2.0 : libtiff (EulerOS-SA-2023-1702)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Null source pointer passed as an argument to memcpy function within TIFFFetchStripThing in tifdirread.c in libtiff versions from...

openSUSE 15 Security Update : editorconfig-core-c (openSUSE-SU-2023:0102-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2023:0102-1 advisory. - A stack buffer overflow exists in the ecglob function of editorconfig-core-c before v0.12.6 which allowed an attacker to arbitrarily write to the stack...

CVE-2023-31284

illumos illumos-gate before 676abcb has a stack buffer overflow in /dev/net, leading to privilege escalation via a stat on a long file name in /dev/net...

CVE-2023-31284

illumos illumos-gate before 676abcb has a stack buffer overflow in /dev/net, leading to privilege escalation via a stat on a long file name in /dev/net...

CVE-2023-31284

illumos illumos-gate before 676abcb has a stack buffer overflow in /dev/net, leading to privilege escalation via a stat on a long file name in /dev/net...

PT-2023-23271 · Illumos · Illumos

Name of the Vulnerable Software and Affected Versions: illumos illumos-gate versions before 676abcb Description: The issue is a stack buffer overflow in /dev/net, which can lead to privilege escalation. This can be achieved via a stat on a long file name in /dev/net. Recommendations: For versions...

CVE-2023-31284

CVE-2023-31284 describes a stack buffer overflow in illumos illumos-gate’s /dev/net, allowing privilege escalation via a stat on a long file name in /dev/net. The issue affects illumos-gate before commit 676abcb. Red Hat entry and Oracle Solaris references align the CVE as equivalent to CVE-2023-...

GLSA-202305-01 : AtomicParsley: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202305-01 AtomicParsley: Multiple Vulnerabilities - A stack-buffer-overflow occurs in Atomicparsley 20210124.204813.840499f through AParreadX in src/util.cpp while parsing a crafted mp4 file because of the missing boundary check...

GLSA-202305-21 : Cairo: Buffer Overflow Vulnerability

The remote host is affected by the vulnerability described in GLSA-202305-21 Cairo: Buffer Overflow Vulnerability - A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor for...

OSV-2023-353 Stack-buffer-overflow in pdfi_read_cff_dict

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58405 Crash type: Stack-buffer-overflow WRITE 1 Crash state: pdfireadcffdict pdfireadcffdict pdfireadcfffont...

PT-2023-35801 · Git +1 · Ghostscript

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-overflow crash. Technical details about the crash include the crash type being a Stack-buffer-overflow WRITE 1. Th...

CVE-2023-27910

A user may be tricked into opening a malicious FBX file that may exploit a stack buffer overflow vulnerability in Autodesk® FBX® SDK 2020 or prior which may lead to code execution...

CVE-2023-27910

A user may be tricked into opening a malicious FBX file that may exploit a stack buffer overflow vulnerability in Autodesk® FBX® SDK 2020 or prior which may lead to code execution...

CVE-2023-27910

A user may be tricked into opening a malicious FBX file that may exploit a stack buffer overflow vulnerability in Autodesk® FBX® SDK 2020 or prior which may lead to code execution...

Stack overflow

A maliciously crafted XB file when parsed through Autodesk® AutoCAD® 2023 can be used to write beyond the allocated buffer causing a Stack Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or read sensitive data or execute arbitrary code in the context of the...

PT-2023-21414 · Autodesk · Autodesk Autocad

Name of the Vulnerable Software and Affected Versions: Autodesk AutoCAD version 2023 Description: A maliciously crafted X B file can be used to write beyond the allocated buffer, causing a Stack Buffer Overflow when parsed through Autodesk AutoCAD. This can be leveraged by a malicious actor to...

CVE-2023-27914

Autodesk AutoCAD 2023 is affected by CVE-2023-27914 due to parsing a malicious X_B file, which can cause a stack buffer overflow. The underlying issue is a write beyond the allocated buffer, leading to crashes, potential data leakage, or arbitrary code execution within the process context. The pu...

CVE-2023-26383

Adobe Substance 3D Stager version 2.0.1 and earlier is affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

Rocket Software Unidata udadmin_server Stack Buffer Overflow in Password

This modlue exploits an authentication bypass vulnerability in the Linux version of udadminserver, which is an RPC service that comes with the Rocket Software UniData server, which runs as root. This vulnerability affects UniData versions 8.2.4 build 3003 and earlier for Linux, but this module...