116 matches found
Suricata 安全漏洞
Suricata is a network IDS, IPS and NSM engine from the Open Information Security Foundation. A security vulnerability exists in Suricata versions prior to 7.0.8, which stems from an unsigned integer underflow, where a specially crafted TCP stream may cause a very large buffer overflow when padded...
SUSE CVE-2017-9214
In Open vSwitch OvS 2.7.0, while parsing an OFPTQUEUEGETCONFIGREPLY type OFP 1.0 message, there is a buffer over-read that is caused by an unsigned integer underflow in the function ofputilpullqueuegetconfigreply10 in lib/ofp-util.c...
LibTIFF 数字错误漏洞
LibTIFF is a library for reading and writing TIFF Tagged Image File Format files. The library contains some command line tools for working with TIFF files. A numeric error vulnerability exists in the LibTIFF tiffcrop utility, which stems from having a uint32t underflow, which can lead to...
LibTIFF 数字错误漏洞
LibTIFF is a library for reading and writing TIFF Tagged Image File Format files. The library contains a number of command-line tools for working with TIFF files.The LibTIFF tiffcrop utility suffers from a buffer overflow vulnerability that stems from having a uint32t underflow that could lead to...
CVE-2021-43083
Apache PLC4X - PLC4C Only the C language implementation was effected was vulnerable to an unsigned integer underflow flaw inside the tcp transport. Users should update to 0.9.1, which addresses this issue. However, in order to exploit this vulnerability, a user would have to actively connect to a...
gd: Unsigned integer underflow _gdContributionsAlloc()
Integer underflow in the gdContributionsAlloc function in gdinterpolation.c in the GD Graphics Library aka libgd before 2.2.4 allows remote attackers to have unspecified impact via vectors related to decrementing the u variable...
UBUNTU-CVE-2016-10377
In Open vSwitch OvS 2.5.0, a malformed IP packet can cause the switch to read past the end of the packet buffer due to an unsigned integer underflow in lib/flow.c in the function miniflowextract, permitting remote bypass of the access control list enforced by the switch...
DEBIAN-CVE-2016-10377
In Open vSwitch OvS 2.5.0, a malformed IP packet can cause the switch to read past the end of the packet buffer due to an unsigned integer underflow in lib/flow.c in the function miniflowextract, permitting remote bypass of the access control list enforced by the switch...
DEBIAN-CVE-2017-9214
In Open vSwitch OvS 2.7.0, while parsing an OFPTQUEUEGETCONFIGREPLY type OFP 1.0 message, there is a buffer over-read that is caused by an unsigned integer underflow in the function ofputilpullqueuegetconfigreply10 in lib/ofp-util.c...
UBUNTU-CVE-2017-9214
In Open vSwitch OvS 2.7.0, while parsing an OFPTQUEUEGETCONFIGREPLY type OFP 1.0 message, there is a buffer over-read that is caused by an unsigned integer underflow in the function ofputilpullqueuegetconfigreply10 in lib/ofp-util.c...
Fedora 25 : gd (2017-bab5698540)
Version 2.2.4 - 2017-01-18 Security - gdImageCreate doesn't check for oversized images and as such is prone to DoS vulnerabilities. CVE-2016-9317 - double-free in gdImageWebPtr CVE-2016-6912 - potential unsigned underflow in gdinterpolation.c - DOS vulnerability in gdImageCreateFromGd2Ctx Fixed -...
Debian: Security Advisory (DSA-3746-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-651-1 : graphicsmagick security update
Various security issues were found and fixed in graphicsmagick in Debian wheezy LTS. CVE-2016-7446 Heap buffer overflow issue in MVG/SVG rendering. CVE-2016-7447 Heap overflow of the EscapeParenthesis function CVE-2016-7449 TIFF related problems due to use of strlcpy use. CVE-2016-7800 Fix unsign...
[SECURITY] [DLA 651-1] graphicsmagick security update
Package : graphicsmagick Version : 1.3.16-1.1+deb7u4 CVE ID : CVE-2016-7446 CVE-2016-7447 CVE-2016-7449 CVE-2016-7800 Debian Bug : Various security issues were found and fixed in graphicsmagick in Debian wheezy LTS. CVE-2016-7446 Heap buffer overflow issue in MVG/SVG rendering. CVE-2016-7447 Heap...
DLA-651-1 graphicsmagick - security update
Bulletin has no description...
MGASA-2016-0337 The updated packages fix a security vulnerability
Unsigned underflow leading to heap overflow when parsing 8BIM chunk CVE-2016-7800. Two issues in the WPG reader CVE-2016-7996, CVE-2016-7997...