CVE-2022-36660

xhyve commit dfbe09b was discovered to contain a stack buffer overflow via the component pcivtrndnotify...

Amazon Linux 2022 : libtiff, libtiff-devel, libtiff-static (ALAS2022-2022-094)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-094 advisory. A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped function. This flaw allows an attacker to pass a crafted TIFF file to the tiffinfo tool, triggering a hea...

OSV-2022-842 Stack-buffer-overflow in wc_Shake256_Final

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50946 Crash type: Stack-buffer-overflow WRITE Crash state: wcShake256Final wced448signmsgex wced448signmsg...

PT-2022-37248 · Git +1 · Wolfssl

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-overflow crash. Technical details include the involvement of specific function names such as wc Shake256 Final, wc...

Denial Of Service (DoS)

libtiff.so is vulnerable to denial of service. The vulnerability exists due to the stack buffer overflow in the main function of tiffcp.c, allowing an attacker to crash the application by providing a maliciously crafted TIFF file to the tiffcp tool...

OSV-2022-810 Stack-buffer-overflow in CBS_stow

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50791 Crash type: Stack-buffer-overflow READ Crash state: CBSstow i2cASN1INTEGER asn1exi2c...

Realtek eCos Stack Buffer Overflow (CVE-2022-27255)

A stack-based buffer overflow exists in Realtek eCos. Successful exploitation could lead to arbitrary code execution...

PT-2022-37234 · Git +1 · Libressl

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-overflow read crash. The crash state involves several functions, including CBS stow, i2c ASN1 INTEGER, and asn1 ex...

CVE-2022-1355

A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service...

CVE-2022-1355

A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service...

CVE-2022-1355

A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service...

CVE-2022-1355

CVE-2022-1355 affects libtiff/tiffcp: a stack-buffer-overflow in tiffcp.c (main()) allows crafting TIFF files to crash the tiffcp tool, causing DoS. Multiple advisories confirm the issue and provide fixes for libtiff, with Debian/Red Hat/Amazon Linux advisories detailing patched versions (e.g., D...

CVE-2022-1355

A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service...

CVE-2021-3826

A vulnerability was found in Libiberty. A heap and stack buffer overflow found in the dlanglname function in d-demangle.c leads to a denial of service...

OSV-2022-801 Stack-buffer-overflow in sc_hsm_decode_ecdsa_signature

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50683 Crash type: Stack-buffer-overflow WRITE Crash state: schsmdecodeecdsasignature schsmcomputesignature sccomputesignature...

PT-2022-37227 · Git +1 · Opensc

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-overflow crash. Technical details about the crash include the function names sc hsm decode ecdsa signature, sc hsm...

Ubuntu: Security Advisory (USN-2442-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OSV-2022-770 Stack-buffer-overflow in get_transaction

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50477 Crash type: Stack-buffer-overflow READ 2 Crash state: gettransaction dissectasp calldissectorworkerror...

PT-2022-37211 · Git +1 · Wireshark

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-overflow read error. Technical details about the crash include the get transaction, dissect asp, and call dissecto...

Security Bulletin: Multiple Security Vulnerabilities in IBM Tivoli Storage Manager FastBack

Summary IBM Tivoli Storage Manager FastBack is affected by multiple security vulnerabilities such as stack based buffer overflow, command injection and remote code execution. These vulnerabilities may cause the server to crash, elevate privileges, or disclose information. Vulnerability Details...