PT-2023-35999 · Git +1 · Kimageformats

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow write error. Technical details about the crash include the involvement of specific functions:...

kernel: cls_flower: out-of-bounds write in fl_set_geneve_opt()

A flaw was found in the TC flower classifier clsflower in the Networking subsystem of the Linux kernel. This issue occurs when sending two TCAFLOWERKEYENCOPTSGENEVE packets with a total size of 252 bytes, which results in an out-of-bounds write when the third packet enters flsetgeneveopt,...

CVE-2023-25732

When encoding data from an inputStream in xpcom the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory write. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

SUSE CVE-2017-8911

An integer underflow has been identified in the unicodetoutf8 function in tnef 1.4.14. This might lead to invalid write operations, controlled by an attacker...

PT-2023-13625 · Unknown · Gpu Driver

Name of the Vulnerable Software and Affected Versions: gpu driver affected versions not specified Description: The issue is related to a missing bounds check in the gpu driver, which could lead to a possible out of bounds write. This might result in a local denial of service in the kernel...

AZL-12941 CVE-2023-0054 affecting package vim for versions less than 9.0.1145-1

Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1145...

PT-2023-13088 · Mdp · Mdp

Name of the Vulnerable Software and Affected Versions: mdp affected versions not specified Description: The issue is related to incorrect error handling, which can cause an out of bounds write. This could potentially lead to local escalation of privilege. System execution privileges are required...

kernel: openvswitch: integer underflow leads to out-of-bounds write in reserve_sfa_size()

An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and reserving memory for a new action of a new flow, the reservesfasize function does not return -EMSGSIZE as expected, potentially leading to an out-of-bounds write...

PT-2022-24953 · Wasmtime · Wasmtime

Name of the Vulnerable Software and Affected Versions: Wasmtime versions prior to 2.0.2 Description: There is a bug in Wasmtime's C API implementation where the definition of the wasmtime trap code does not match its declared signature in the wasmtime/trap.h header file. This discrepancy causes t...

Adobe Illustrator Multiple Vulnerabilities (APSB21-24) - Windows

Adobe Illustrator is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you c...

Adobe Media Encoder Arbitrary Code Execution Vulnerability (APSB20-10) - Windows

Adobe Media Encoder is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

UBUNTU-CVE-2022-38791

In MariaDB before 10.9.2, compresswrite in extra/mariabackup/dscompress.cc does not release datamutex upon a stream write failure, which allows local users to trigger a deadlock...

PT-2022-37201 · Blosc2 · Blosc2

Name of the Vulnerable Software and Affected Versions: blosc2 affected versions not specified Description: The issue is related to a heap-buffer-overflow write error. Technical details about the crash include the do job function, blosc compress context, and blosc2 compress ctx. Recommendations: A...

DEBIAN-CVE-2022-2476

A null pointer dereference bug was found in wavpack-5.4.0 The results from the ASAN log: AddressSanitizer:DEADLYSIGNAL ===================================================================84257==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 pc 0x561b47a970c6 bp 0x7fff13952fb0 sp...

CVE-2022-34273

A vulnerability has been identified in PADS Standard/Plus Viewer All versions. The affected application contains an out of bounds write past the end of an allocated structure while parsing specially crafted PCB files. This could allow an attacker to execute code in the context of the current...

Adobe InDesign RCE Vulnerabilities (APSB22-30) - Mac OS X

Adobe Indesign is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:indesignserver";...

Qualcomm 芯片安全漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way of miniaturizing circuits mainly semiconductor devices, but also passive components, etc., and from time to time manufactured on the surface of semiconductor wafers. A security vulnerability exists in a number of Qualcomm products th...

CLSA-2022-1648136371 Fix of CVE: CVE-2022-22721, CVE-2022-23943, CVE-2022-22719, CVE-2022-22720

CVE-2022-22719: modlua: error out if luareadbody or luawritebody fail - CVE-2022-22720: simpler connection close logic if discarding the request body fails - CVE-2022-22721: make sure and check that LimitXMLRequestBody fits in system memory - CVE-2022-23943: modsed: use sizet to allow for larger...

Mageia: Security Advisory (MGASA-2018-0308)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Google Chrome Security Updates (stable-channel-update-for-desktop-2021-02) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...