19 matches found
Glib: off-by-one error in glib/gkeyfile.c via "g_key_file_get_locale_string_list"
...
Linux Distros Unpatched Vulnerability : CVE-2026-58014
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in GLib. An off-by-one error can occur in the gkeyfilegetlocalestringlist function in the gkeyfile.c file when loading a key file with an empty...
CVE-2026-58014
A flaw was found in GLib. An off-by-one error can occur in the gkeyfilegetlocalestringlist function in the gkeyfile.c file when loading a key file with an empty value. This flaw can cause an out-of-bounds access of 1 byte or a denial of service when the out-of-bounds access crosses a page boundar...
UBUNTU-CVE-2026-58014
A flaw was found in GLib. An off-by-one error can occur in the gkeyfilegetlocalestringlist function in the gkeyfile.c file when loading a key file with an empty value. This flaw can cause an out-of-bounds access of 1 byte or a denial of service when the out-of-bounds access crosses a page boundar...
EUVD-2026-40316
A flaw was found in GLib. An off-by-one error can occur in the gkeyfilegetlocalestringlist function in the gkeyfile.c file when loading a key file with an empty value. This flaw can cause an out-of-bounds access of 1 byte or a denial of service when the out-of-bounds access crosses a page boundar...
CVE-2026-58014
GLib contains an off-by-one flaw in g_key_file_get_locale_string_list (gkeyfile.c) that triggers when loading a key file with an empty value. The issue allows an out-of-bounds access of one byte and can cause denial of service if the access crosses a page boundary. Affected component is GLib’s ke...
CVE-2026-58014 Glib: off-by-one error in glib/gkeyfile.c via "g_key_file_get_locale_string_list"
A flaw was found in GLib. An off-by-one error can occur in the gkeyfilegetlocalestringlist function in the gkeyfile.c file when loading a key file with an empty value. This flaw can cause an out-of-bounds access of 1 byte or a denial of service when the out-of-bounds access crosses a page boundar...
CVE-2026-58014
A flaw was found in GLib. An off-by-one error can occur in the gkeyfilegetlocalestringlist function in the gkeyfile.c file when loading a key file with an empty value. This flaw can cause an out-of-bounds access of 1 byte or a denial of service when the out-of-bounds access crosses a page boundar...
PT-2026-53873
Name of the Vulnerable Software and Affected Versions glib2 affected versions not specified mingw-glib2 affected versions not specified Description An off-by-one error exists in the g key file get locale string list function within the gkeyfile.c file. This issue occurs when the software loads a...
CVE-2024-33255
Jerryscript commit cefd391 was discovered to contain an Assertion Failure via ECMASTRINGISREFEQUALSTOONE stringp in ecmafreestringlist...
UBUNTU-CVE-2024-33255
Jerryscript commit cefd391 was discovered to contain an Assertion Failure via ECMASTRINGISREFEQUALSTOONE stringp in ecmafreestringlist...
JerryScript 安全漏洞
JerryScript is a lightweight JavaScript engine from the Jerryscript project. A security vulnerability exists in JerryScript that stems from a failure to include assertions in ECMASTRINGISREFEQUALSTOONE stringp in ecmafreestringlist...
CVE-2024-33255
Jerryscript commit cefd391 was discovered to contain an Assertion Failure via ECMASTRINGISREFEQUALSTOONE stringp in ecmafreestringlist...
PT-2024-25171 · Unknown · Jerryscript
Name of the Vulnerable Software and Affected Versions: Jerryscript version cefd391 Description: An Assertion Failure was discovered in Jerryscript via ECMA STRING IS REF EQUALS TO ONE string p in ecma free string list. Recommendations: For Jerryscript version cefd391, at the moment, there is no...
CVE-2024-33255
CVE-2024-33255 affects JerryScript. The issue is an assertion failure in ECMA_STRING_IS_REF_EQUALS_TO_ONE (string_p) within ecma_free_string_list, associated with commit cefd391 of JerryScript. Connected sources provide the exact vulnerable component and commit but do not specify affected product...
SUSE CVE-2009-0945
Array index error in the insertItemBefore method in WebKit, as used in Apple Safari before 3.2.3 and 4 Public Beta, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome Stable before 1.0.154.65, and possibly other products allows remote attackers to execute...
PYSEC-2020-307
In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes a list of strings to dlpack.todlpack there is a memory leak following an expected validation failure. The issue occurs because the status argument during validation failures is not properly checked. Since each of the above methods ca...
CVE-2020-15192
In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes a list of strings to dlpack.todlpack there is a memory leak following an expected validation failure. The issue occurs because the status argument during validation failures is not properly checked. Since each of the above methods ca...
UBUNTU-CVE-2012-4428
openslp: SLPIntersectStringList' Function has a DoS vulnerability...