CVE-2024-26726 btrfs: don't drop extent_map for free space inode on write error

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't drop extentmap for free space inode on write error While running the CI for an unrelated change I hit the following panic with generic/648 on btrfsholesspacecache. assertion failed: blockstart != EXTENTMAPHOLE, in...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a write error...

CVE-2023-5941

In versions of FreeBSD 12.4-RELEASE prior to 12.4-RELEASE-p7 and FreeBSD 13.2-RELEASE prior to 13.2-RELEASE-p5 the sflush stdio function in libc does not correctly update FILE objects' write space members for write-buffered streams when the write2 system call returns an error. Depending on the...

PT-2023-6926 · Freebsd · Freebsd

Name of the Vulnerable Software and Affected Versions: FreeBSD versions 12.4-RELEASE prior to 12.4-RELEASE-p7 FreeBSD versions 13.2-RELEASE prior to 13.2-RELEASE-p5 Description: The sflush stdio function in libc does not correctly update FILE objects' write space members for write-buffered stream...

libtiff: out-of-bounds write in extractContigSamplesShifted24bits() in tools/tiffcrop.c

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds write in the extractContigSamplesShifted24bits function in tools/tiffcrop.c, resulting in a Denial of Service and limited data modification...

PT-2023-35999 · Git +1 · Kimageformats

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow write error. Technical details about the crash include the involvement of specific functions:...

AZL-12941 CVE-2023-0054 affecting package vim for versions less than 9.0.1145-1

Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1145...

PT-2022-37201 · Blosc2 · Blosc2

Name of the Vulnerable Software and Affected Versions: blosc2 affected versions not specified Description: The issue is related to a heap-buffer-overflow write error. Technical details about the crash include the do job function, blosc compress context, and blosc2 compress ctx. Recommendations: A...

SUSE: Security Advisory (SUSE-SU-2015:0026-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DEBIAN-CVE-2019-19906

cyrus-sasl aka Cyrus SASL 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash is ultimately caused by an off-by-one error in sasladdstring in common.c in cyrus-sasl...

Security Bulletin: Multiple vulnerabilities in qemu affect PowerKVM

Summary PowerKVM is affected by several vulnerabilities in qemu. These vulnerabilities have been addressed by IBM. Vulnerability Details CVEID: CVE-2016-5338 DESCRIPTION: Qemu, built with the ESP/NCR53C9x controller emulation support, is vulnerable to a denial of service, caused by an out of boun...

Out-of-bounds

OpenCV Open Source Computer Vision Library through 3.3 has an out-of-bounds write error in the function FillColorRow1 in utils.cpp when reading an image file by using cv::imread...

Out-of-bounds

OpenCV Open Source Computer Vision Library through 3.3 has an out-of-bounds write error in the function FillColorRow4 in utils.cpp when reading an image file by using cv::imread...

Out-of-bounds

OpenCV Open Source Computer Vision Library through 3.3 has an out-of-bounds write error in the FillUniColor function in utils.cpp when reading an image file by using cv::imread...

CVE-2017-12605

OpenCV Open Source Computer Vision Library through 3.3 has an out-of-bounds write error in the FillColorRow8 function in utils.cpp when reading an image file by using cv::imread...

[SECURITY] [DLA 693-2] tiff regression update

Package : tiff Version : 4.0.2-6+deb7u10 Debian Bug : 852610 Version 4.0.2-6+deb7u7 introduced changes that resulted in libtiff being unable to write out tiff files when the compression scheme in use relies on codec-specific TIFF tags embedded in the image. This problem manifested itself with...

Debian DLA-693-2 : tiff regression update

Version 4.0.2-6+deb7u7 introduced changes that resulted in libtiff being unable to write out tiff files when the compression scheme in use relies on codec-specific TIFF tags embedded in the image. This problem manifested itself with errors like those: $ tiffcp -r 16 -c jpeg sample.tif out.tif...

SuSE 11.3 Security Update : unzip (SAT Patch Number 10159)

This update fixes the following security issues : - heap overflow condition in the CRC32 verification. CVE-2014-8139 - write error 8349 shows a problem in extract.c:testcompreb. CVE-2014-8140 - read errors 6430, 3422 show problems in process.c:getZip64Data. CVE-2014-8141 %NASLMINLEVEL 70300 C...

glibc: Suid mount helpers fail to anticipate RLIMIT_FSIZE

The addmntent function in the GNU C Library aka glibc or libc6 2.13 and earlier does not report an error status for failed attempts to write to the /etc/mtab file, which makes it easier for local users to trigger corruption of this file, as demonstrated by writes from a process with a small...

glibc security update

2.5-65.el57.3 - Use correct type when casting dtag 767687 - Report write error in addmnt even for cached streams 767687 - ldd: Never run file directly 767687. - Workaround misconfigured system 767687 2.5-65.el57.2 - Check values from TZ file header 767687...