86 matches found
Astra Linux - уязвимость в djvulibre
In DjVuLibre 3.5.27, the DjVmDir.cpp file within the DJVU reader component allows attackers to cause a denial-of-service attack resulting in a crash of the application by creating a DJVU file that triggers a heap-based buffer overflow attack in the GStringRep::strdup function within...
Astra Linux - уязвимость в linux-5.10, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: objtool: A memory leak has been fixed in the createStaticcallsections function. strdup allocates memory for keyname. We need to release this allocated memory in the following error-prone code paths. Add free to avoid the memory...
DEBIAN-CVE-2026-30656
A NULL pointer dereference vulnerability exists in fio Flexible I/O Tester v3.41 when parsing job files containing the fdppli option. The callback function strfdpplicb does not validate the input pointer and calls strdup on a NULL value when the option is specified without an argument. This resul...
CVE-2026-30656
A NULL pointer dereference vulnerability exists in fio Flexible I/O Tester v3.41 when parsing job files containing the fdppli option. The callback function strfdpplicb does not validate the input pointer and calls strdup on a NULL value when the option is specified without an argument. This resul...
CVE-2026-30656
The CVE-2026-30656 entry affects fio (Flexible I/O Tester) v3.41. A NULL pointer dereference occurs when parsing job files that contain the fdp_pli option; the callback str_fdp_pli_cb() calls strdup() on a NULL input when the option is provided without an argument, causing a segmentation fault an...
CVE-2026-30656
A NULL pointer dereference vulnerability exists in fio Flexible I/O Tester v3.41 when parsing job files containing the fdppli option. The callback function strfdpplicb does not validate the input pointer and calls strdup on a NULL value when the option is specified without an argument. This resul...
CVE-2025-68138
EVerest is an EV charging software stack, and EVerest libocpp is a C++ implementation of the Open Charge Point Protocol. In libocpp prior to version 0.30.1, pointers returned by the strdup calls are never freed. At each connection attempt, the newly allocated memory area will be leaked, potential...
EUVD-2025-206321
EVerest is an EV charging software stack, and EVerest libocpp is a C++ implementation of the Open Charge Point Protocol. In libocpp prior to version 0.30.1, pointers returned by the strdup calls are never freed. At each connection attempt, the newly allocated memory area will be leaked, potential...
CVE-2025-68138 EVerest affected by memory exhaustion in libocpp
EVerest is an EV charging software stack, and EVerest libocpp is a C++ implementation of the Open Charge Point Protocol. In libocpp prior to version 0.30.1, pointers returned by the strdup calls are never freed. At each connection attempt, the newly allocated memory area will be leaked, potential...
CVE-2025-68138 EVerest affected by memory exhaustion in libocpp
EVerest is an EV charging software stack, and EVerest libocpp is a C++ implementation of the Open Charge Point Protocol. In libocpp prior to version 0.30.1, pointers returned by the strdup calls are never freed. At each connection attempt, the newly allocated memory area will be leaked, potential...
libocpp security vulnerabilities
Libocpp is an open-source Open Charge Point Protocol developed by EVerest. Versions of Libocpp prior to 0.30.1 contained security vulnerabilities. These vulnerabilities stemmed from pointers returned by strdup that were not released, which could lead to memory exhaustion and denial of service...
PT-2026-3851
EVerest is an EV charging software stack, and EVerest libocpp is a C++ implementation of the Open Charge Point Protocol. In libocpp prior to version 0.30.1, pointers returned by the strdup calls are never freed. At each connection attempt, the newly allocated memory area will be leaked, potential...
EUVD-2020-11648
Malware in sbrugna...
EUVD-2024-30419
Malicious code in bioql PyPI...
CVE-2023-53423 objtool: Fix memory leak in create_static_call_sections()
In the Linux kernel, the following vulnerability has been resolved: objtool: Fix memory leak in createstaticcallsections strdup allocates memory for keyname. We need to release the memory in the following error paths. Add free to avoid memory leak...
CVE-2023-53423 objtool: Fix memory leak in create_static_call_sections()
In the Linux kernel, the following vulnerability has been resolved: objtool: Fix memory leak in createstaticcallsections strdup allocates memory for keyname. We need to release the memory in the following error paths. Add free to avoid memory leak...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not freeing memory allocated by strdup, which could lead to a memory leak...
PT-2025-38442
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak was identified and resolved in the create static call sections function within the Linux kernel's objtool. The strdup function allocates memory for key name, and the fix ad...
Linux Distros Unpatched Vulnerability : CVE-2020-19750
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in gpac 0.8.0. The strdup function in boxcodebase.c has a heap-based buffer over-read. CVE-2020-19750 Note that Nessus relies on the...
PT-2025-26910 · Git +1 · Ndpi
Name of the Vulnerable Software and Affected Versions: ndpi affected versions not specified Description: The software contains a use-of-uninitialized-value issue. This occurs within the ndpi strdup function, which is called during ndpi detection process packet processing, as reported in fuzzing...