Lucene search
+L

103 matches found

Debian CVE
Debian CVE
added 2021/07/20 6:47 a.m.25 views

CVE-2020-36430

libass 0.15.x before 0.15.1 has a heap-based buffer overflow in decodechars called from decodefont and processtext because the wrong integer data type is used for subtraction...

7.8CVSS7.8AI score0.01075EPSS
Exploits0
CNNVD
CNNVD
added 2021/07/20 12:0 a.m.7 views

libass 缓冲区错误漏洞

libass is a subtitle renderer based on the ASS/SSA format by an individual developer. A security vulnerability exists in libass that stems from a heap-based buffer overflow because the wrong integer data type is used for subtraction...

7.8CVSS7.5AI score0.01075EPSS
Exploits0References8
Code423n4
Code423n4
added 2021/07/07 12:0 a.m.11 views

Exposure.sortVaultsByDelta can underflow

Handle cmichel Vulnerability details Vulnerability Details The sortVaultsByDelta function performs an unsafe subtraction on two uint256 before casting them to int256. The subtraction can underflow and the cast to int256 can either fail and revert the transaction if greater than typeint256.max, or...

6.9AI score
Exploits0
Code423n4
Code423n4
added 2021/07/07 12:0 a.m.9 views

Buoy3Pool.safetyCheck can underflow

Handle cmichel Vulnerability details Vulnerability Details The safetyCheck function performs an unsafe subtraction on two uint256 before casting them to int256. The subtraction can underflow and the cast to int256 can either fail and revert the transaction if greater than typeint256.max, or, fit...

7.1AI score
Exploits0
Code423n4
Code423n4
added 2021/06/30 12:0 a.m.8 views

Logic error in fee subtraction

Handle 0xsanson Vulnerability details Impact In LibBalances.applyTrade we need to collect a fee from the trade. The current code however subtracts a fee from the short position and adds it to the long. The correct implementation is to subtract a fee to both see TracerPerpetualSwaps.solL272. This...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for mercurial (EulerOS-SA-2019-2214)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.02643EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/31 12:0 a.m.30 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : mercurial Multiple Vulnerabilities (NS-SA-2019-0234)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has mercurial packages installed that are affected by multiple vulnerabilities: - Mercurial version 4.5 and earlier contains a Incorrect Access Control CWE-285 vulnerability in Protocol server that can result in Unauthorized da...

9.8CVSS7.3AI score0.02687EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/12/02 12:0 a.m.34 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : mercurial Multiple Vulnerabilities (NS-SA-2019-0216)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has mercurial packages installed that are affected by multiple vulnerabilities: - Mercurial version 4.5 and earlier contains a Incorrect Access Control CWE-285 vulnerability in Protocol server that can result in Unauthorized da...

9.8CVSS7.3AI score0.02687EPSS
Exploits0References4
Cvelist
Cvelist
added 2019/06/30 10:20 p.m.25 views

CVE-2019-13109

An integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service SIGSEGV via a crafted PNG image file, because PngImage::readMetadata mishandles a chunkLength - iccOffset subtraction...

6.4AI score0.01579EPSS
Exploits1References3
0day.today
0day.today
added 2018/10/09 12:0 a.m.118 views

Linux Kernel - Pointer Leak via BPF Exploit

Exploit for linux platform in category dos / poc / Commit 82abbf8d2fc46d79611ab58daa7c608df14bb3ee "bpf: do not allow root to mangle valid pointers", first in v4.15 included the following snippet: ========= @@ -2319,43 +2307,29 @@ static int adjustregminmaxvalsstruct bpfverifierenv env, if...

0.2AI score
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2018/07/28 4:4 p.m.35 views

Security update for mercurial (moderate)

This update for mercurial fixes the following issues: Security issues fixed: - CVE-2018-13346: Fix mpatchapply function in mpatch.c that incorrectly proceeds in cases where the fragment start is past the end of the original data bsc1100354. - CVE-2018-13347: Fix mpatch.c that mishandles integer...

1.3AI score0.02643EPSS
Exploits0References3
OPENSUSE Linux
OPENSUSE Linux
added 2018/07/20 3:15 a.m.74 views

Security update for mercurial (moderate)

This update for mercurial fixes the following issues: Security issues fixed: - CVE-2018-13348: Fix the mpatchdecode function in mpatch.c that mishandles certain situations where there should be at least 12 bytes remaining after thecurrent position in the patch data boo1100353. - CVE-2018-13347: F...

2AI score0.02643EPSS
Exploits0References3
Prion
Prion
added 2018/07/06 12:29 a.m.18 views

Authentication flaw

mpatch.c in Mercurial before 4.6.1 mishandles integer addition and subtraction, aka OVE-20180430-0002...

7.5CVSS9.3AI score0.02643EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2018/07/06 12:0 a.m.20 views

CVE-2018-13347

mpatch.c in Mercurial before 4.6.1 mishandles integer addition and subtraction, aka OVE-20180430-0002...

9.1AI score0.02643EPSS
Exploits0References5
Talos
Talos
added 2016/03/31 12:0 a.m.36 views

Lhasa lha decode_level3_header Heap Corruption Vulnerability

SUMMARY An exploitable integer underflow exists during calculation size for all headers in decodelevel3header function of Lhasa lha application. Smaller value of headerlen than LEVEL3HEADERLEN 32 cause during subtraction integer underflow and lead later to memory corruption via heap based buffer...

7.8CVSS8AI score0.03228EPSS
Exploits1
NVD
NVD
added 2014/09/29 1:55 a.m.11 views

CVE-2014-6786

The Math for Kids - Subtraction aka it.tinytap.attsa.deepsub application 1.2.10 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References3
Prion
Prion
added 2014/09/29 1:55 a.m.17 views

Information disclosure

The Math for Kids - Subtraction aka it.tinytap.attsa.deepsub application 1.2.10 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2014/09/29 1:0 a.m.33 views

CVE-2014-6786

The CVE refers to The Math for Kids - Subtraction (aka it.tinytap.attsa.deepsub) Android app version 1.2.10, where the SSL/TLS trust check is not performed (does not verify X.509 certificates). This allows man-in-the-middle attackers to spoof servers and potentially obtain sensitive information v...

5.4CVSS6AI score0.00266EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/09/29 1:0 a.m.23 views

CVE-2014-6786

The Math for Kids - Subtraction aka it.tinytap.attsa.deepsub application 1.2.10 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00266EPSS
Exploits0References3
NVD
NVD
added 2013/01/31 9:55 p.m.28 views

CVE-2012-5958

Stack-based buffer overflow in the uniqueservicename function in ssdp/ssdpserver.c in the SSDP parser in the portable SDK for UPnP Devices aka libupnp, formerly the Intel SDK for UPnP devices before 1.6.18 allows remote attackers to execute arbitrary code via a UDP packet with a crafted string th...

10CVSS7.7AI score0.82807EPSS
Exploits6References18
Rows per page
Query Builder