40 matches found
EUVD-2018-3617
Malware in sbrugna...
EUVD-2018-3620
Malware in sbrugna...
EUVD-2018-3615
Malware in sbrugna...
EUVD-2018-3622
Malware in sbrugna...
EUVD-2018-3616
Malware in sbrugna...
EUVD-2018-3618
Malware in sbrugna...
CVE-2018-11598
Espruino before 1.99 allows attackers to cause a denial of service application crash and a potential Information Disclosure with user crafted input files via a Buffer Overflow or Out-of-bounds Read during syntax parsing of certain for loops in jsparse.c...
CVE-2018-11591
Espruino before 1.98 allows attackers to cause a denial of service application crash with a user crafted input file via a NULL pointer dereference during syntax parsing. This was addressed by adding validation for a debug trace print statement in jsvar.c...
CVE-2018-11593
Espruino before 1.99 allows attackers to cause a denial of service application crash and potential Information Disclosure with a user crafted input file via a Buffer Overflow during syntax parsing because strncpy is misused in jslex.c...
CVE-2018-11592
Espruino before 1.98 allows attackers to cause a denial of service application crash with a user crafted input file via an Out-of-bounds Read during syntax parsing in which certain height validation is missing in libs/graphics/jswrapgraphics.c...
[SECURITY] Fedora 35 Update: ghc-cmark-gfm-0.2.5-1.fc35
This package provides Haskell bindings for , the reference parser for , a fully specified variant of Markdown. It includes sources for libcmark-gfm 0.29.0.gfm.6 and does not require prior installation of the C library...
CVE-2019-6740
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samsung Galaxy S9 prior to January 2019 Security Update SMR-JAN-2019 - SVE-2018-13467. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or...
Espruino Buffer Overflow Vulnerability (CNVD-2018-10888)
Espruino is a JavaScript interpreter for microcontrollers. A buffer overflow vulnerability exists in Espruino prior to 1.99. The vulnerability arises due to the misuse of strncat during syntax parsing. An attacker can exploit this vulnerability via a specially crafted input file to cause a denial...
Buffer overflow
Espruino before 1.99 allows attackers to cause a denial of service application crash with a user crafted input file via a Buffer Overflow during syntax parsing of "VOID" tokens in jsparse.c...
CVE-2018-11597
Espruino before 1.99 allows attackers to cause a denial of service application crash with a user crafted input file via a Buffer Overflow during syntax parsing because of a missing check for stack exhaustion with many '' characters in jsparse.c...
CVE-2018-11595
Espruino before 1.99 allows attackers to cause a denial of service application crash and a potential Escalation of Privileges with a user crafted input file via a Buffer Overflow during syntax parsing, because strncat is misused...
CVE-2018-11596
Espruino before 1.99 allows attackers to cause a denial of service application crash with a user crafted input file via a Buffer Overflow during syntax parsing because a check for '\0' is made for the wrong array element in jsvar.c...
Integer overflow
Espruino before 1.99 allows attackers to cause a denial of service application crash with a user crafted input file via an integer overflow during syntax parsing. This was addressed by fixing stack size detection on Linux in jsutils.c...
Buffer overflow
Espruino before 1.99 allows attackers to cause a denial of service application crash and potential Information Disclosure with a user crafted input file via a Buffer Overflow during syntax parsing because strncpy is misused in jslex.c...
Buffer overflow
Espruino before 1.99 allows attackers to cause a denial of service application crash with a user crafted input file via a Buffer Overflow during syntax parsing because a check for '\0' is made for the wrong array element in jsvar.c...