openSUSE Security Advisory (openSUSE-SU-2024:0106-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE 15 Security Update : sngrep (openSUSE-SU-2024:0106-1)

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0106-1 advisory. - A buffer overflow vulnerability exists in all versions of sngrep since v0.4.2, due to improper handling of 'Call-ID' and 'X-Call-ID' SIP header...

CVE-2024-3120

A stack-buffer overflow vulnerability exists in all versions of sngrep since v1.4.1. The flaw is due to inadequate bounds checking when copying 'Content-Length' and 'Warning' headers into fixed-size buffers in the sipvalidatepacket and sipparseextraheaders functions within src/sip.c. This...

CVE-2024-3120

A stack-buffer overflow vulnerability exists in all versions of sngrep since v1.4.1. The flaw is due to inadequate bounds checking when copying 'Content-Length' and 'Warning' headers into fixed-size buffers in the sipvalidatepacket and sipparseextraheaders functions within src/sip.c. This...

CVE-2024-3120

CVE-2024-3120 affects all versions of sngrep since v1.4.1. A stack-buffer overflow arises from inadequate bounds checking when copying the SIP headers ‘Content-Length’ and ‘Warning’ into fixed-size buffers in src/sip.c (sip_validate_packet and sip_parse_extra_headers). This allows remote attacker...

CVE-2024-3120 Stack-Buffer Overflow in 'Content-Length' and 'Warning' Header Processing in sngrep

A stack-buffer overflow vulnerability exists in all versions of sngrep since v1.4.1. The flaw is due to inadequate bounds checking when copying 'Content-Length' and 'Warning' headers into fixed-size buffers in the sipvalidatepacket and sipparseextraheaders functions within src/sip.c. This...

CVE-2024-3120

A stack-buffer overflow vulnerability exists in all versions of sngrep since v1.4.1. The flaw is due to inadequate bounds checking when copying 'Content-Length' and 'Warning' headers into fixed-size buffers in the sipvalidatepacket and sipparseextraheaders functions within src/sip.c. This...

CVE-2023-49913

A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can make an...

Lenovo: CVE-2024-23594 Stack buffer overflow in Lenovo system recovery boot manager

...

openSUSE Security Advisory (SUSE-SU-2024:1103-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2024-23843

Name of the Vulnerable Software and Affected Versions sngrep versions 1.4.1 and later Description A stack-buffer overflow issue exists due to inadequate bounds checking when copying Content-Length and Warning headers into fixed-size buffers in the sip validate packet and sip parse extra headers...

ROS-20240408-10

GNU FriBidi library vulnerability is caused by a buffer overflow on the stack. Exploiting the vulnerability could allow an attacker acting remotely to execute arbitrary code Vulnerability in the fribidicaprtltounicode function of the GNU FriBidi library is caused by a buffer overflow in dynamic...

GHSA-W5W5-8VFH-XCJQ whoami stack buffer overflow on several Unix platforms

With versions of the whoami crate = 0.5.3 and = 0.5.3 and 1.0.1, calling any of the above functions also leads to a stack buffer overflow on these platforms: - Bitrig - DragonFlyBSD - FreeBSD - NetBSD - OpenBSD This occurs because of an incorrect definition of the passwd struct on those platforms...

whoami stack buffer overflow on several Unix platforms

With versions of the whoami crate = 0.5.3 and = 0.5.3 and 1.0.1, calling any of the above functions also leads to a stack buffer overflow on these platforms: - Bitrig - DragonFlyBSD - FreeBSD - NetBSD - OpenBSD This occurs because of an incorrect definition of the passwd struct on those platforms...

CVE-2024-30166

In Mbed TLS 3.3.0 through 3.5.2 before 3.6.0, a malicious client can cause information disclosure or a denial of service because of a stack buffer over-read of less than 256 bytes in a TLS 1.3 server via a TLS 3.1 ClientHello...

CVE-2024-30166

In Mbed TLS 3.3.0 through 3.5.2 before 3.6.0, a malicious client can cause information disclosure or a denial of service because of a stack buffer over-read of less than 256 bytes in a TLS 1.3 server via a TLS 3.1 ClientHello...

Tenda FH1205 Stack Buffer Overflow Vulnerability (CNVD-2025-21467)

The Tenda FH1205 is a wireless router from Tenda China. The Tenda FH1205 suffers from a stack buffer overflow vulnerability that originates from the page parameter of the fromDhcpListClient method failing to properly validate the length of the input data, which can be exploited by an attacker to...

Tenda F1202 fromAddressNat Method Stack Buffer Overflow Vulnerability

The Tenda F1202 is an enterprise-grade dual-band wireless router that supports dual bands of 2.4GHz and 5GHz with a maximum transfer rate of 1200Mbps. The Tenda F1202 suffers from a stack buffer overflow vulnerability that stems from the page parameter of the fromAddressNat method failing to...

Tenda FH1205 Stack Buffer Overflow Vulnerability (CNVD-2025-21465)

The Tenda FH1205 is a wireless router from Tenda China. The Tenda FH1205 suffers from a stack buffer overflow vulnerability that arises from the page parameter of the fromAddressNat method failing to properly validate the length of the input data, which can be exploited by an attacker to execute...

Tenda FH1205 Stack Buffer Overflow Vulnerability

The Tenda FH1205 is a wireless router from Tenda China. The Tenda FH1205 suffers from a stack buffer overflow vulnerability that arises from the entrys parameter of the fromAddressNat method failing to properly validate the length of the input data, which can be exploited by an attacker to execut...