Lucene search
K

63 matches found

CNVD
CNVD
added 2019/01/17 12:0 a.m.4 views

GNU Recutils memory leak vulnerability (CNVD-2019-22426)

GNU Recutils is a set of tools and libraries for accessing human-editable plain text databases called recfiles. A memory leak vulnerability exists in recextracttype in rec-utils.c in librec.a in GNU Recutils 1.8. No details of the vulnerability are provided at this time...

6.5CVSS6.6AI score0.01298EPSS
Exploits1References1
OSV
OSV
added 2019/01/16 6:29 p.m.1 views

UBUNTU-CVE-2019-6459

An issue was discovered in GNU Recutils 1.8. There is a memory leak in recextracttype in rec-utils.c in librec.a...

6.5CVSS6.9AI score0.01298EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2018/04/11 12:0 a.m.27 views

CVE-2018-1100

zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the utils.c:checkmailpath function. A local attacker could exploit this to execute arbitrary code in the context of another user...

7.8CVSS7.6AI score0.00544EPSS
Exploits0References3
CNVD
CNVD
added 2018/02/28 12:0 a.m.1 views

zsh buffer overflow vulnerability

zsh is an interactive command interpreter and command programming language used on Linux systems. A buffer overflow vulnerability exists in the utils.c file in versions of zsh prior to 5.4. An attacker could exploit this vulnerability to execute code or cause a denial of service...

9.8CVSS9.6AI score0.03223EPSS
Exploits0References1
Prion
Prion
added 2018/02/27 10:29 p.m.16 views

Buffer overflow

In utils.c in zsh before 5.4, symlink expansion had a buffer overflow...

7.5CVSS9.3AI score0.03223EPSS
Exploits0References6Affected Software2
Prion
Prion
added 2018/02/27 10:29 p.m.13 views

Buffer overflow

In utils.c in zsh before 5.0.6, there is a buffer overflow when scanning very long directory paths for symbolic links...

7.5CVSS7.4AI score0.02676EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2018/02/27 10:0 p.m.105 views

CVE-2014-10072

CVE-2014-10072 is a buffer overflow in zsh when scanning very long directory paths for symbolic links, occurring in code path utils.c and affecting zsh before 5.0.6 . Multiple connected Nessus/NVD-derived entries corroborate the vulnerability alongside related zsh CVEs, indicating a high-severity...

9.8CVSS6.5AI score0.02676EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2018/02/27 12:0 a.m.3 views

UBUNTU-CVE-2014-10072

In utils.c in zsh before 5.0.6, there is a buffer overflow when scanning very long directory paths for symbolic links...

9.8CVSS7.1AI score0.02676EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2018/02/06 12:0 a.m.19 views

uwsgi -- a stack-based buffer overflow

Uwsgi developers report: It was discovered that the uwsgiexpandpath function in utils.c in Unbit uWSGI, an application container server, has a stack-based buffer overflow via a large directory length that can cause a denial-of-service application crash or stack corruption...

9.8CVSS8.8AI score0.02086EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/12/14 4:29 p.m.26 views

CVE-2017-17517

libsylph/utils.c in Sylpheed through 3.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...

8.8CVSS7.2AI score0.01221EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2017/11/02 3:51 p.m.4 views

liblouis: Buffer overflow in the function _lou_showString()

There is a buffer overflow in Liblouis 3.2.0, triggered in the function loushowString in utils.c, that will lead to a remote denial of service attack...

6.5CVSS6.1AI score0.01845EPSS
Exploits0References4
Prion
Prion
added 2017/09/09 8:29 a.m.24 views

Null pointer dereference

The avcolorprimariesname function in libavutil/pixdesc.c in FFmpeg 3.3.3 may return a NULL pointer depending on a value contained in a file, but callers do not anticipate this, as demonstrated by the avcodecstring function in libavcodec/utils.c, leading to a NULL pointer dereference. It is also...

6.8CVSS8.5AI score0.02568EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2017/08/30 12:0 a.m.0 views

Liblouis Denial of Service Vulnerability

Liblouis is an open source Braille translator and back translator. A denial of service vulnerability exists in the loushowString function in utils.c in Liblouis, which can be exploited by a remote attacker to cause a denial of service...

6.5CVSS7AI score0.01845EPSS
Exploits0References1
OSV
OSV
added 2017/08/29 6:29 a.m.3 views

UBUNTU-CVE-2017-13743

There is a buffer overflow in Liblouis 3.2.0, triggered in the function loushowString in utils.c, that will lead to a remote denial of service attack...

6.5CVSS7.5AI score0.01845EPSS
Exploits0References3
OSV
OSV
added 2017/04/14 4:59 a.m.21 views

CVE-2017-7865

FFmpeg before 2017-01-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the ipvideodecodeblockopcode0xA function in libavcodec/interplayvideo.c and the avcodecaligndimensions2 function in libavcodec/utils.c...

9.8CVSS7.2AI score
Exploits0References4
NVD
NVD
added 2017/04/14 4:59 a.m.17 views

CVE-2017-7865

FFmpeg before 2017-01-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the ipvideodecodeblockopcode0xA function in libavcodec/interplayvideo.c and the avcodecaligndimensions2 function in libavcodec/utils.c...

9.8CVSS9.8AI score0.02564EPSS
Exploits0References4
CVE
CVE
added 2017/03/01 3:0 p.m.47 views

CVE-2016-9825

CVE-2016-9825 affects libav (libswscale/utils.c) in version 11.8, where remote input can trigger a denial of service by performing a left shift on a negative value. This is described across multiple connected sources as a vulnerability in Libav’s libswscale component that can crash affected appli...

5.5CVSS5.3AI score0.00936EPSS
Exploits1References2Affected Software1
CNVD
CNVD
added 2016/09/09 12:0 a.m.4 views

File Roller 'src/file-utils.c' Directory Traversal Vulnerability

File Roller is for the Gnome desktop environment provides a graphical interface to operate the compressed, archived files, similar to the KDE desktop environment, Ark. A target traversal vulnerability exists in File Roller 3.5.4-3.20.2. If the target user opens a malicious document, it can cause...

7.5CVSS6.8AI score0.03328EPSS
Exploits1References1
Prion
Prion
added 2015/09/06 2:59 a.m.22 views

Design/Logic Flaw

The swsinitcontext function in libswscale/utils.c in FFmpeg before 2.7.2 does not initialize certain pixbuf data structures, which allows remote attackers to cause a denial of service segmentation violation or possibly have unspecified other impact via crafted video data...

7.5CVSS7.9AI score0.02412EPSS
Exploits0References5Affected Software2
Debian CVE
Debian CVE
added 2013/11/23 6:0 p.m.17 views

CVE-2013-0861

The avcodecdecodeaudio4 function in libavcodec/utils.c in FFmpeg before 1.0.4 and 1.1.x before 1.1.1 allows remote attackers to trigger memory corruption via vectors related to the channel layout...

5CVSS6.7AI score0.02257EPSS
Exploits0
Rows per page
Query Builder