Lucene search
K

10 matches found

SUSE CVE
SUSE CVE
added 2023/10/31 2:33 a.m.6 views

SUSE CVE-2019-14906

A flaw was found with the RHSA-2019:3950 erratum, where it did not fix the CVE-2019-13616 SDL vulnerability. This issue only affects Red Hat SDL packages, SDL versions through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow flaw while copying an existing surface into a new optimized...

8.1CVSS9.3AI score0.01752EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/10/17 2:1 p.m.5 views

python-reportlab: code injection in paraparser.py allows code execution

A code injection vulnerability was found in python-reportlab that may allow an attacker to execute code while parsing a unichar element attribute. An application that uses python-reportlab to parse untrusted input files may be vulnerable and could allow remote code execution...

9.8CVSS6.2AI score0.04452EPSS
Exploits0References4
OSV
OSV
added 2022/09/05 9:23 a.m.1 views

SUSE-SU-2022:3020-1 Security update for php-composer2

This update for php-composer2 fixes the following issues: - CVE-2022-24828: Fixed a code injection issue that affected integrators using specific APIs to read untrusted input files bsc1198494...

8.8CVSS8.8AI score0.01841EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/12/28 6:34 p.m.38 views

CVE-2020-35738

WavPack 5.3.0 has an out-of-bounds write in WavpackPackSamples in packutils.c because of an integer overflow in a malloc argument. NOTE: some third-parties claim that there are later "unofficial" releases through 5.3.2, which are also affected. Mitigation If using the wavpack utility, this flaw c...

6.1CVSS5AI score0.01196EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2020/01/24 5:54 a.m.4 views

python-reportlab: code injection in colors.py allows attacker to execute code

A code injection vulnerability in python-reportlab allows an attacker to execute code while parsing a color attribute. An application that uses python-reportlab to parse untrusted input files may be vulnerable to this flaw and allow remote code execution...

9.8CVSS6.2AI score0.10231EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2020/01/21 10:48 p.m.6 views

python-reportlab: code injection in colors.py allows attacker to execute code

A code injection vulnerability in python-reportlab allows an attacker to execute code while parsing a color attribute. An application that uses python-reportlab to parse untrusted input files may be vulnerable to this flaw and allow remote code execution...

9.8CVSS6.2AI score0.10231EPSS
Exploits1References4
NVD
NVD
added 2020/01/07 9:15 p.m.25 views

CVE-2019-14906

A flaw was found with the RHSA-2019:3950 erratum, where it did not fix the CVE-2019-13616 SDL vulnerability. This issue only affects Red Hat SDL packages, SDL versions through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow flaw while copying an existing surface into a new optimized...

9.8CVSS8.3AI score0.01752EPSS
Exploits0References1
Prion
Prion
added 2020/01/07 9:15 p.m.24 views

Heap overflow

A flaw was found with the RHSA-2019:3950 erratum, where it did not fix the CVE-2019-13616 SDL vulnerability. This issue only affects Red Hat SDL packages, SDL versions through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow flaw while copying an existing surface into a new optimized...

7.5CVSS8.4AI score0.03299EPSS
Exploits1References1Affected Software2
Tenable Nessus
Tenable Nessus
added 2019/12/19 12:0 a.m.43 views

Amazon Linux 2 : SDL (ALAS-2019-1375)

A heap-based buffer overflow flaw, in SDL while copying an existing surface into a new optimized one, due to a lack of validation while loading a BMP image, is possible. An application that uses SDL to parse untrusted input files may be vulnerable to this flaw, which could allow an attacker to ma...

9.8CVSS6.9AI score0.03299EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2019/11/27 3:48 p.m.32 views

CVE-2019-14906

A flaw was found with the RHSA-2019:3950 erratum, where it did not fix the CVE-2019-13616 SDL vulnerability. A heap-based buffer overflow flaw, in SDL while copying an existing surface into a new optimized one, due to a lack of validation while loading a BMP image, is possible. An application tha...

9.8CVSS4.1AI score0.03299EPSS
Exploits1References3
Rows per page
Query Builder