17 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-16225
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in py-lmdb 0.97. For certain values of mpflags, mdbpagetouch does not properly set up mc-mcpgmc-top, leading to an invalid write...
py-lmdb numeric error vulnerability
py-lmdb is an LMDB an embedded transactional database for Python. A numeric error vulnerability exists in py-lmdb version 0.97. The vulnerability arises from a number generated by a networked system or product that does not properly compute or convert the number. An attacker could exploit this...
py-lmdb buffer overflow vulnerability (CNVD-2019-39377)
py-lmdb is an LMDB an embedded transactional database for Python. A buffer overflow vulnerability exists in py-lmdb version 0.97. An attacker can exploit this vulnerability to cause invalid write operations...
py-lmdb buffer overflow vulnerability (CNVD-2019-39380)
py-lmdb is an LMDB an embedded transactional database for Python. A buffer overflow vulnerability exists in py-lmdb version 0.97. The vulnerability stems from a networked system or product that performs operations in memory without properly validating data boundaries, resulting in incorrect read...
py-lmdb buffer overflow vulnerability
py-lmdb is an LMDB an embedded transactional database for Python. A buffer error vulnerability exists in py-lmdb version 0.97. An attacker can exploit this vulnerability to cause an invalid write operation...
py-lmdb buffer overflow vulnerability (CNVD-2019-39376)
py-lmdb is an LMDB an embedded transactional database for Python. A buffer overflow vulnerability exists in py-lmdb version 0.97. An attacker can exploit this vulnerability to cause an invalid write operation...
Divide By Zero
Overview lmdb is an Universal Python binding for the LMDB 'Lightning' Database. Affected versions of this package are vulnerable to Divide By Zero. An issue was discovered in py-lmdb 0.97. There is a divide-by-zero error in the function mdbenvopen2 if mdbenvreadheader obtains a zero value for a...
Out-of-bounds Write
Overview lmdb is an Universal Python binding for the LMDB 'Lightning' Database. Affected versions of this package are vulnerable to Out-of-bounds Write. An issue was discovered in py-lmdb 0.97. For certain values of mdflags, mdbnodeadd does not properly set up a memcpy destination, leading to an...
Out-of-bounds Write
Overview lmdb is an Universal Python binding for the LMDB 'Lightning' Database. Affected versions of this package are vulnerable to Out-of-bounds Write. An issue was discovered in py-lmdb 0.97. For certain values of mnflags, mdbcursorset triggers a memcpy with an invalid write operation within...
PYSEC-2019-237
An issue was discovered in py-lmdb 0.97. For certain values of mpflags, mdbpagetouch does not properly set up mc-mcpgmc-top, leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker...
PT-2019-14587
Name of the Vulnerable Software and Affected Versions py-lmdb version 0.97 Description An issue was discovered in py-lmdb where for certain values of md flags, the mdb node add function does not properly set up a memcpy destination, leading to an invalid write operation. This issue occurs when...
PT-2019-6373
Name of the Vulnerable Software and Affected Versions py-lmdb version 0.97 Description The issue is related to the mdb node del function in the py-lmdb module, which does not properly validate a memmove operation when encountering an unexpected node-mn hi value. This can lead to an invalid write...
br.net.woodstock.rockframework:rockframework-core (>=1.2.1 <=1.2.4), com.day.cq.dam:cq-dam-commons (>=5.4.0 <=5.5.0) +84 more potentially affected by CVE-2018-17201 via org.apache.sanselan:sanselan (=0.97-incubator)
org.apache.sanselan:sanselan MAVEN version =0.97-incubator is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.sanselan:sanselan and may be impacted: - br.net.woodstock.rockframework:rockframework-core =1.2.1, =5.4.0, =0.3.11, =2.0.0-alpha,...
Mandriva Update for clamav MDVA-2011:007 (clamav)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
ClamAV < 0.97 Double Free Memory Corruption Vulnerability
ClamAV is prone to a double-free memory corruption vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:clamav:clamav";...
PT-2005-2836 · Lutelwall · Lutelwall
Name of the Vulnerable Software and Affected Versions: LutelWall versions 0.97 and earlier Description: The issue allows local users to overwrite arbitrary files via a symlink attack on a temporary file created by a system call to wget. This is a result of a symlink attack vulnerability...
[Full-disclosure] LutelWall <= 0.97 insecure temporary file creation
LutelWall insecure temporary file creation Vendor: http://firewall.lutel.pl/index.php Advisory: http://www.zataz.net/adviso/lutelwall-05222005.txt Vendor informed: yes Exploit available: yes Impact : medium Exploitation : low The vulnerability is caused due to temporary file being created...