The _xrealloc function in xlsp_xmalloc.c in OpenSLP 2.0.0 allows remote attackers to cause a denial of service

...

Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities

Summary IBM Security Guardium has addressed these vulnerabilities with an update. Vulnerability Details CVEID:CVE-2024-29857 DESCRIPTION: The Bouncy Castle Crypto Package For Java is vulnerable to a denial of service, caused by improper input validation. By importing an EC certificate with crafte...

glibc: netgroup cache may terminate daemon on memory allocation failure

A flaw was found in the glibc netgroup cache. The netgroup cache uses xmalloc/xrealloc and may terminate the process due to a memory allocation failure...

glibc: netgroup cache may terminate daemon on memory allocation failure

A flaw was found in the glibc netgroup cache. The netgroup cache uses xmalloc/xrealloc and may terminate the process due to a memory allocation failure...

glibc: netgroup cache may terminate daemon on memory allocation failure

A flaw was found in the glibc netgroup cache. The netgroup cache uses xmalloc/xrealloc and may terminate the process due to a memory allocation failure...

SUSE CVE-2008-1803

Integer signedness error in the xrealloc function rdesktop.c in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channelprocess function was not specified by the original researcher...

SUSE CVE-2016-4912

The xrealloc function in xlspxmalloc.c in OpenSLP 2.0.0 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a large number of crafted packets, which triggers a memory allocation failure...

CVE-2016-4912

The xrealloc function in xlspxmalloc.c in OpenSLP 2.0.0 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a large number of crafted packets, which triggers a memory allocation failure...

AZL-7319 CVE-2016-4912 affecting package openslp 2.0.0-26

The xrealloc function in xlspxmalloc.c in OpenSLP 2.0.0 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a large number of crafted packets, which triggers a memory allocation failure...

OpenSLP Denial of Service Vulnerability

OpenSLP Service Location Protocol is an IETF standard protocol developed by the OpenSLP project for dynamic service discovery within the Internet. The protocol supports looking up services in the network by their types and attributes. A denial of service vulnerability exists in the 'xrealloc'...

Oracle Linux 5 : rdesktop (ELSA-2008-0575)

The remote Oracle Linux 5 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2008-0575 advisory. 1.4.1-6 - Update the prototype for xrealloc as well. - Fix bug 452978, cve-2008-1803 - Fix bug 452978, cve-2008-1801 Tenable has extracted the precedin...

rdesktop: channel_process() Integer Signedness Vulnerability

Integer signedness error in the xrealloc function rdesktop.c in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channelprocess function was not specified by the original researcher...

rdesktop security update

1.4.1-6 - Update the prototype for xrealloc as well. - Fix bug 452978, cve-2008-1803 - Fix bug 452978, cve-2008-1801...

DEBIAN-CVE-2008-1803

Integer signedness error in the xrealloc function rdesktop.c in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channelprocess function was not specified by the original researcher...

CVE-2008-1803

CVE-2008-1803 affects rdesktop 1.5.0, describing an integer signedness error in xrealloc() that can cause a heap-based overflow and remote code execution. The connected advisories confirm related fixes in multiple distributions (e.g., RHSA-2008-0575; CentOS CES A-2008:0575; Ubuntu USN-646-1), ind...

CVE-2008-1803

Integer signedness error in the xrealloc function rdesktop.c in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channelprocess function was not specified by the original researcher...