6881 matches found
Buffer Overflow
strongswan is vulnerable to Buffer Overflow. The vulnerability is due to charon-tkm version of the charon IKE daemon doesn't properly check the length of received Diffie-Hellman public values before copying them to a fixed-size buffer on the stack. This potentially leads to a buffer overflow and...
Tenda AC Router Stack Buffer Overflow (CVE-2021-31755)
The firmware version of the Tenda AC Router is an AC11 device with firmware 02.03.01.104CN or below. It is, therefore, affected by a stack buffer overflow vulnerability. An unauthenticated, remote attacker can exploit this, via a crafted POST request, to execute arbitrary code on the system. Note...
OSV-2023-1228 Stack-buffer-overflow in asn1_decode_entry
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64522 Crash type: Stack-buffer-overflow READ 8 Crash state: asn1decodeentry asn1decode scasn1decode...
OSV-2023-1227 Stack-buffer-overflow in io_memory_read
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64529 Crash type: Stack-buffer-overflow WRITE 11 Crash state: iomemoryread riopluginread riodescread...
PT-2023-30765 · Unknown +1 · Clickhouse
Name of the Vulnerable Software and Affected Versions: ClickHouse affected versions not specified Description: The issue is an integer underflow resulting in a crash due to a stack buffer overflow in the decompression of the FPC codec. It can be triggered and exploited by an unauthenticated...
CVE-2023-5055 L2CAP: Possible Stack based buffer overflow in le_ecred_reconf_req()
Possible variant of CVE-2021-3434 in function leecredreconfreq...
CLSA-2023-1700164647 squid: Fix of CVE-2023-46847
CVE-2023-46847: Fix stack buffer overflow when parsing Digest Authorization...
CLSA-2023-1700164396 squid: Fix of CVE-2023-46847
CVE-2023-46847: Fix stack buffer overflow when parsing Digest Authorization...
squid: Fix of CVE-2023-46847
CVE-2023-46847: Fix stack buffer overflow when parsing Digest Authorization...
CLSA-2023-1700160647 Fix CVE(s): CVE-2023-46847
SECURITY UPDATE: Denial of Service in HTTP Digest Authentication - debian/patches/CVE-2023-46847.patch: fix stack buffer overflow when parsing Digest Authorization - CVE-2023-46847...
KB5032921 - A possible stack buffer overflow from a remote code execution vulnerability has been exposed in the OLEDB provider for DB2.
KB5032921 - A possible stack buffer overflow from a remote code execution vulnerability has been exposed in the OLEDB provider for DB2. Host Integration Server 2020 Introduction A possible stack buffer overflow from a remote code execution has been exposed in the OLEDB provider for DB2. This fix...
Huawei EulerOS: Security Advisory for json-c (EulerOS-SA-2023-3216)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability of the microprogrammed software of IP cameras Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 arises from buffer overflows in the stack. This allows intruders to execute arbitrary code.
The vulnerability of the microprogrammed software for IP cameras Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 arises due to buffer overflows in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code upon...
Huawei EulerOS: Security Advisory for json-c (EulerOS-SA-2023-3181)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OSV-2023-1122 Stack-buffer-overflow in dxf_header_read
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63919 Crash type: Stack-buffer-overflow READ Crash state: dxfheaderread dwgreaddxf llvmfuzz.c...
kernel: cpufreq: qcom: fix writes in read-only memory region
In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom: fix writes in read-only memory region This commit fixes a kernel oops because of a write in some read-only memory: 9.068287 Unable to handle kernel write to read-only memory at virtual address ffff800009240ad8...
kernel: netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one
In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one Eric Dumazet says: nfconntrackdccppacket has an unique: dh = skbheaderpointerskb, dataoff, sizeofdh, &dh; And nothing more is 'pulled' from the...
Moderate: LibRaw security update
LibRaw is a library for reading RAW files obtained from digital photo cameras CRW/CR2, NEF, RAF, DNG, and others. Security Fixes: LibRaw: stack buffer overflow in LibRawbufferdatastream::gets in src/librawdatastream.cpp CVE-2021-32142 For more details about the security issues, including the...
Low: gdb security update
The GNU Debugger GDB allows users to debug programs written in various programming languages including C, C++, and Fortran. Security Fixes: libiberty: Heap/stack buffer overflow in the dlanglname function in d-demangle.c CVE-2021-3826 For more details about the security issues, including the...
Rocky Linux 8 : shim (RLSA-2021:1734)
The remote Rocky Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RLSA-2021:1734 advisory. - A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw...