CVE-2026-32854

LibVNCServer versions 0.9.15 and prior fixed in commit dc78dee contain null pointer dereference vulnerabilities in the HTTP proxy handlers within httpProcessInput in httpd.c that allow remote attackers to cause a denial of service by sending specially crafted HTTP requests. Attackers can exploit...

Qualcomm QCMAP Web Code Issue Vulnerability

Qualcomm QCMAP is a data access point for Linux-based cell phones from Qualcomm Incorporated. Qualcomm QCMAP Web October 2020 Release A security vulnerability exists in the client-side binary code that does not validate the return value of the strstr or strchr call in the Tokenizer function, whic...

Heap overflow

An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxmldecode, while parsing a crafted XML file, performs incorrect memory handling, leading to a heap-based buffer over-read while running strchr starting with a pointer after a '\0' character where the processing of a string was...

CVE-2019-20005

The CVE-2019-20005 issue affects ezXML 0.8.3–0.8.6: during ezxml_decode, parsing a crafted XML file triggers incorrect memory handling, causing a heap-based buffer over-read when strchr() is used after a '\0' (end of a string). Multiple advisories (SUSE/SLES15, Mageia, openSUSE, etc.) reference e...

glibc security, bug fix, and enhancement update

2.17-222 - Restore internal GLIBCPRIVATE symbols for use during upgrades 1523119 2.17-221 - CVE-2018-1000001: Fix realpath buffer underflow 1534635 - i386: Fix unwinding for 32-bit C++ application 1529982 - Reduce thread and dynamic loader stack usage 1527904 - x86-64: Use XSAVE/XSAVEC more often...

Null pointer dereference

The devzvolreaddir function in illumos does not check the return value of a strchr call, which allows remote attackers to cause a denial of service NULL pointer dereference and panic via unspecified vectors...

CVE-2012-4507

The strchr function in procmime.c in Claws Mail aka claws-mail 3.8.1 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted email...

DEBIAN-CVE-2012-4507

The strchr function in procmime.c in Claws Mail aka claws-mail 3.8.1 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted email...

CVE-2012-4507

The strchr function in procmime.c in Claws Mail aka claws-mail 3.8.1 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted email...

CVE-2012-4507

The strchr function in procmime.c in Claws Mail aka claws-mail 3.8.1 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted email...

CVE-2012-4507

The CVE-2012-4507 issue affects Claws Mail (claws-mail) up to version 3.8.1, where the strchr function in procmime.c can crash a process via a crafted email, causing a denial of service (NULL pointer dereference). The root cause is a null dereference triggered while processing crafted input. Publ...