6890 matches found
OSV-2021-1017 Stack-buffer-overflow in piv_compute_signature
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36200 Crash type: Stack-buffer-overflow WRITE Crash state: pivcomputesignature sccomputesignature usekey...
OSV-2021-1015 Dynamic-stack-buffer-overflow in VP8SetSegmentParams
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36191 Crash type: Dynamic-stack-buffer-overflow WRITE Crash state: VP8SetSegmentParams SetLoopParams OneStatPass...
Amazon Linux 2 : grub2 (ALAS-2021-1684)
The version of grub2 installed on the remote host is prior to 2.06-2. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2021-1684 advisory. 2024-02-29: CVE-2019-14865 was added to this advisory. A flaw was found in the grub2-set-bootflag utility of grub2. A local...
openSUSE 15 Security Update : curl (openSUSE-SU-2021:1762-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1762-1 advisory. - curl 7.7 through 7.76.1 suffers from an information disclosure when the -t command line option, known as CURLOPTTELNETOPTIONS in libcurl, is used ...
EulerOS 2.0 SP5 : cairo (EulerOS-SA-2021-2213)
According to the version of the cairo packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found in cairo's image-compositor.c. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor for...
CVE-2021-34827
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1330 1.13B01 BETA routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the SOAPAction HTTP header. The issue...
OSV-2021-1008 Dynamic-stack-buffer-overflow in clear_opt_map_info
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36155 Crash type: Dynamic-stack-buffer-overflow WRITE Crash state: clearoptmapinfo optimizenodeleft setoptimizeinfofromtree...
OSV-2021-1003 Dynamic-stack-buffer-overflow in mdb_numeric_to_string
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36187 Crash type: Dynamic-stack-buffer-overflow WRITE 16 Crash state: mdbnumerictostring mdbxferbounddata mdbattemptbind...
D-Link DAP-1330 安全漏洞
D-Link DAP-1330 is a network device a WIFI device from AUO D-Link, Taiwan, China. A security vulnerability exists in the D-Link DAP-1330 1.13B01 BETA, which stems from a lack of proper validation of the length of user-supplied data before copying it to a stack-based fixed-length buffer. An attack...
D-Link DAP-1330 安全漏洞
D-Link DAP-1330 is a network device a WIFI device from AUO D-Link, Taiwan, China. A security vulnerability exists in the D-Link DAP-1330 1.13B01 BETA, which stems from a lack of proper validation of the length of user-supplied data before copying it to a stack-based fixed-length buffer. An attack...
OSV-2021-998 Dynamic-stack-buffer-overflow in std::__1::__wrap_iter<char const*>::__wrap_iter
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36137 Crash type: Dynamic-stack-buffer-overflow WRITE 8 Crash state: std::1::wrapiter::wrapiter std::1::basicstring, std::1::allocatorch geos::io::StringTokenizer::StringTokenizer...
OSV-2021-991 Dynamic-stack-buffer-overflow in fmt::v8::detail::dragonbox::umul192_upper64
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36110 Crash type: Dynamic-stack-buffer-overflow WRITE 8 Crash state: fmt::v8::detail::dragonbox::umul192upper64 fmt::v8::detail::dragonbox::cacheaccessor::computemul fmt::v8::detail::dragonbox::decimalfp...
OSV-2021-977 Dynamic-stack-buffer-overflow in std::__1::pair<unsigned int, unsigned int>::pair<unsigned int, unsigned int, fal
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36062 Crash type: Dynamic-stack-buffer-overflow WRITE 4 Crash state: std::1::pair::pair::type, std::1::unw void GFWX::decode...
OSV-2021-975 Dynamic-stack-buffer-overflow in CryptDigestUpdateInt
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36074 Crash type: Dynamic-stack-buffer-overflow WRITE 8 Crash state: CryptDigestUpdateInt ComputeCpHash CheckCommandAudit...
EulerOS Virtualization 2.9.0 : curl (EulerOS-SA-2021-2206)
According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - curl 7.7 through 7.76.1 suffers from an information disclosure when the -t command line option, known as CURLOPTTELNETOPTIONS in...
OSV-2021-958 Dynamic-stack-buffer-overflow in mdb_numeric_to_string
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35972 Crash type: Dynamic-stack-buffer-overflow WRITE 16 Crash state: mdbnumerictostring mdbxferbounddata mdbattemptbind...
OPENSUSE-SU-2021:1958-1 Security update for libjpeg-turbo
This update for libjpeg-turbo fixes the following issues: - CVE-2020-17541: Fixed a stack-based buffer overflow in the 'transform' component bsc1186764...
MGASA-2021-0330 Updated php packages fix security vulnerabilities
Updated php packages provides upstream 8.0.8 and fixes the following security vulnerabilities: - PDOFirebird: Fix Stack buffer overflow in firebirdinfocb CVE-2021-21704. Fix SIGSEGV in firebirdhandledoer CVE-2021-21704. Fix SIGSEGV in firebirdstmtexecute CVE-2021-21704. Fix Crash while parsing bl...
OSV-2021-950 Dynamic-stack-buffer-overflow in std::__1::__wrap_iter<hsql::Expr**>::__wrap_iter
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35944 Crash type: Dynamic-stack-buffer-overflow WRITE 8 Crash state: std::1::wrapiter::wrapiter std::1::vector ::makeiter std::1::vector ::begin...
OSV-2021-947 Dynamic-stack-buffer-overflow in hsql::SQLParserResult::addStatement
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35946 Crash type: Dynamic-stack-buffer-overflow WRITE 8 Crash state: hsql::SQLParserResult::addStatement hsqlparse hsql::SQLParser::parse...