GSD-2021-1001791 ocfs2: mount fails with buffer overflow in strlen

ocfs2: mount fails with buffer overflow in strlen This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.253 by commit...

UVI-2021-1001791 ocfs2: mount fails with buffer overflow in strlen

ocfs2: mount fails with buffer overflow in strlen This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.253 by commit...

UVI-2021-1001781 ocfs2: mount fails with buffer overflow in strlen

ocfs2: mount fails with buffer overflow in strlen This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.288 by commit...

GSD-2021-1001781 ocfs2: mount fails with buffer overflow in strlen

ocfs2: mount fails with buffer overflow in strlen This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.288 by commit...

GSD-2021-1001770 ocfs2: mount fails with buffer overflow in strlen

ocfs2: mount fails with buffer overflow in strlen This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.290 by commit...

UVI-2021-1001770 ocfs2: mount fails with buffer overflow in strlen

ocfs2: mount fails with buffer overflow in strlen This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.290 by commit...

ALPINE-CVE-2021-42341

checkpath in OpenRC before 0.44.7 uses the direct output of strlen to allocate strings, which does not account for the '\0' byte at the end of the string. This results in memory corruption. CVE-2021-42341 was introduced in git commit 63db2d99e730547339d1bdd28e8437999c380cae, which was introduced ...

CVE-2021-42341

checkpath in OpenRC before 0.44.7 uses the direct output of strlen to allocate strings, which does not account for the '\0' byte at the end of the string. This results in memory corruption. CVE-2021-42341 was introduced in git commit 63db2d99e730547339d1bdd28e8437999c380cae, which was introduced ...

CVE-2021-42341

checkpath in OpenRC before 0.44.7 uses the direct output of strlen to allocate strings, which does not account for the '\0' byte at the end of the string. This results in memory corruption. CVE-2021-42341 was introduced in git commit 63db2d99e730547339d1bdd28e8437999c380cae, which was introduced ...

CVE-2021-42341

checkpath in OpenRC before 0.44.7 uses the direct output of strlen to allocate strings, which does not account for the '\0' byte at the end of the string. This results in memory corruption. CVE-2021-42341 was introduced in git commit 63db2d99e730547339d1bdd28e8437999c380cae, which was introduced ...

CVE-2021-42341

CVE-2021-42341 concerns OpenRC: in versions prior to 0.44.7, checkpath allocates strings based on strlen() output without reserving space for the terminating ‘\0’, causing memory corruption. The vulnerability was introduced in commit 63db2d99e730547339d1bdd28e8437999c380cae as part of OpenRC 0.44...

CVE-2021-38202

fs/nfsd/trace.h in the Linux kernel before 5.13.4 might allow remote attackers to cause a denial of service out-of-bounds read in strlen by sending NFS traffic when the trace event framework is being used for nfsd...

UBUNTU-CVE-2021-38202

fs/nfsd/trace.h in the Linux kernel before 5.13.4 might allow remote attackers to cause a denial of service out-of-bounds read in strlen by sending NFS traffic when the trace event framework is being used for nfsd...

CVE-2021-38202

fs/nfsd/trace.h in the Linux kernel before 5.13.4 might allow remote attackers to cause a denial of service out-of-bounds read in strlen by sending NFS traffic when the trace event framework is being used for nfsd...

Linux kernel 缓冲区错误漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. Linux kernel suffers from a denial of service vulnerability that is caused by an out-of-bounds read flaw in strlen in fs/nfsd/trace.h. A remote attacker can exploit this vulnerability to cause a denial o...

GitHub Security Lab: ihsinme: CPP add query for CWE-788 Access of memory location after the end of a buffer using strlen.

This bug was reported directly to GitHub Security Lab...

CVE-2019-20199

An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxmldecode, while parsing a crafted XML file, performs incorrect memory handling, leading to NULL pointer dereference while running strlen on a NULL pointer...

Null pointer dereference

An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxmldecode, while parsing a crafted XML file, performs incorrect memory handling, leading to NULL pointer dereference while running strlen on a NULL pointer...

CVE-2011-2337

The CVE-2011-2337 entry concerns WebKit in Google Chrome (pre-Blink M12) on 64-bit platforms, where a return value from strlen uses the wrong type. The Connected documents reiterate this same issue across multiple sources, without providing concrete exploit details, impacted versions beyond the C...

Memory Corruption Vulnerability in NAPro

Nanda Aotuo Technology Jiangsu Co., Ltd. specializes in the research, development, production and sales of programmable logic controllers PLC, has formed a large and medium-sized PLC products as the main products, supplemented by small PLC products, remote measurement and control unit RTU, touch...