32 matches found
CVE-2016-8617
The base64 encode function in curl before version 7.51.0 is prone to a buffer being under allocated in 32bit systems if it receives at least 1Gb as input via CURLOPTUSERNAME...
CVE-2016-8617
CVE-2016-8617 affects libcurl’s base64 encoding path. The output buffer is allocated as insize * 4 / 3 + 4 without checks, which on 32‑bit user-space systems can wrap when input size reaches ≥1 GB. This under-allocated buffer may be overflowed as the full encoded data is written. Systems with 64‑...
CVE-2016-8617
The base64 encode function in curl before version 7.51.0 is prone to a buffer being under allocated in 32bit systems if it receives at least 1Gb as input via CURLOPTUSERNAME...
F5 Networks BIG-IP : libcurl vulnerability (K44503763)
The base64 encode function in curl before version 7.51.0 is prone to a buffer being under allocated in 32bit systems if it receives at least 1Gb as input via CURLOPTUSERNAME. CVE-2016-8617 Impact This vulnerability may allow an attacker to overwrite memory behind the output buffer. C Tenable...
CVE-2016-8617
The base64 encode function in curl before version 7.51.0 is prone to a buffer being under allocated in 32bit systems if it receives at least 1Gb as input via CURLOPTUSERNAME...
CVE-2016-8617
The base64 encode function in curl before version 7.51.0 is prone to a buffer being under allocated in 32bit systems if it receives at least 1Gb as input via CURLOPTUSERNAME...
Microsoft Windows FAT32 Disk Partition Driver Privilege Escalation Vulnerability (2998579)
This host is missing an important security update according to Microsoft Bulletin MS14-063. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
boost: ordered_malloc() overflow
Integer overflow in the orderedmalloc function in boost/pool/pool.hpp in Boost Pool before 3.9 makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large memory chunk size value, which causes less memory to be allocated than expected...
DEBIAN-CVE-2005-4895
Multiple integer overflows in TCMalloc tcmalloc.cc in gperftools before 0.4 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large size value, which causes less memory to be allocated than expected...
Adobe Acrobat Reader U3D Texture Parser ILBM Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
IBM Informix Dynamic Server librpc.dll Integer Overflow Remote Code Execution Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of IBM Informix Dynamic Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the RPC protocol parsing library, librpc.dll, utilized by the ISM Portmapper...
lcms: unsigned -> signed integer cast issue in cmsAllocGamma
Integer signedness error in the cmsAllocGamma function in src/cmsgamma.c in Little cms color engine aka lcms before 1.17 allows attackers to have an unknown impact via a file containing a certain "number of entries" value, which is interpreted improperly, leading to an allocation of insufficient...