CVE-2022-24754 Buffer overflow in pjsip

PJSIP is a free and open source multimedia communication library written in C language. In versions prior to and including 2.12 PJSIP there is a stack-buffer overflow vulnerability which only impacts PJSIP users who accept hashed digest credentials credentials with datatype PJSIPCREDDATADIGEST...

RHEL 8 : .NET 5.0 (RHSA-2022:0830)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0830 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...

CVE-2022-24754

The CVE-2022-24754 entry concerns PJSIP (pjproject) embedded in Ring. A stack-buffer overflow affects PJSIP users that accept hashed digest credentials (data_type PJSIP_CRED_DATA_DIGEST) in versions up to 2.12. The issue is resolved in the master branch and will be included in the next release; u...

CVE-2022-24754

PJSIP is a free and open source multimedia communication library written in C language. In versions prior to and including 2.12 PJSIP there is a stack-buffer overflow vulnerability which only impacts PJSIP users who accept hashed digest credentials credentials with datatype PJSIPCREDDATADIGEST...

CVE-2021-46408

Tenda AX12 v22.03.01.21 was discovered to contain a stack buffer overflow in the function sub422CE4. This vulnerability allows attackers to cause a Denial of Service DoS via the strcpy parameter...

Stack overflow

Tenda AX12 v22.03.01.21 was discovered to contain a stack buffer overflow in the function sub422CE4. This vulnerability allows attackers to cause a Denial of Service DoS via the strcpy parameter...

dotnet: double parser stack buffer overrun

A flaw was found in dotnet, where a buffer overrun exists in the double parse routine, which could lead to remote code execution. This flaw allows an attacker to execute code remotely on the system, leading to some system compromise...

dotnet: double parser stack buffer overrun

A flaw was found in dotnet, where a buffer overrun exists in the double parse routine, which could lead to remote code execution. This flaw allows an attacker to execute code remotely on the system, leading to some system compromise...

.NET 5.0 security and bugfix update

An update is available for dotnet5.0. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list .NET is a managed-software framework. It implements a subset of the .NET...

.NET 6.0 security and bugfix update

An update is available for dotnet6.0. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list .NET is a managed-software framework. It implements a subset of the .NET...

PT-2022-7199 · Libtiff +8 · Libtiff +8

Name of the Vulnerable Software and Affected Versions: LibTIFF affected versions not specified Description: A stack buffer overflow flaw was found in Libtiff's tiffcp.c in the main function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer...

ROS-20220310-01

PJSIP multimedia communication library vulnerability is related to a boundary error in the PJSUA API during the pjsuaplaylistcreate call. Exploitation of the vulnerability could allow an attacker acting remotely, cause a stack buffer overflow and execute arbitrary code on the target system The...

HUAWEI EMUI/Magic UI 缓冲区错误漏洞

Huawei Emui is a mobile operating system developed on Android. Magic Ui is a mobile operating system developed on Android. Huawei Emui and Magic UI video framework are vulnerable to a stack buffer overflow vulnerability that can be exploited by attackers to impact usability...

CVE-2021-46408

Tenda AX12 v22.03.01.21 was discovered to contain a stack buffer overflow in the function sub422CE4. This vulnerability allows attackers to cause a Denial of Service DoS via the strcpy parameter...

CVE-2021-46408

CVE-2021-46408 affects Tenda AX12 v22.03.01.21. A stack buffer overflow in the function sub_422CE4 allows attackers to trigger a Denial of Service via the strcpy parameter. Multiple connected sources (CNVD/CNNVD/NVD/CVE records) corroborate the DoS impact and the vulnerable component, but none pr...

Tenda-AX3 Buffer Overflow Vulnerability (CNVD-2022-20157)

Tenda-AX3 is a dual-band wireless router from Tenda, China. The Tenda-AX3 suffers from a buffer overflow vulnerability that originates from a stack buffer overflow vulnerability in the formSetPPTPServer function of the Tenda-AX3 Router V16.03.12.10CN. No detailed vulnerability details are provide...

Tenda-AX3 Buffer Overflow Vulnerability

Tenda-AX3 is a dual-band wireless router from Tenda China.A buffer error vulnerability exists in Tenda-AX3, which stems from a stack buffer overflow vulnerability in the formSetPPTPServer function of Tenda-AX3 router V16.03.12.10CN. No detailed vulnerability details are currently available...

OSV-2022-220 Stack-buffer-overflow in load_regex_matcher

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=45247 Crash type: Stack-buffer-overflow WRITE 1 Crash state: loadregexmatcher cliloadpdb cliload...

Autodesk AutoCAD 缓冲区错误漏洞

Autodesk AutoCAD is a suite of professional 3D drawing software from Autodesk, Inc. A buffer error vulnerability exists in Autodesk AutoCAD that stems from a lack of proper validation of the length of user-supplied data before copying it to a stack-based buffer...

OSV-2022-217 Stack-buffer-overflow in msgpack_sbuffer_write

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=45208 Crash type: Stack-buffer-overflow READ Crash state: msgpacksbufferwrite flbpackmsgpacktojsonformat flbjsonfuzzer.c...