[Forgot Password]
Login  Register Subscribe

24544

 
 

132176

 
 

121593

 
 

909

 
 

100139

 
 

148

 
 
Paid content will be excluded from the download.

Filter
Matches : 435 Download | Alert*

An issue was discovered in elfutils 0.175. A segmentation fault can occur in the function elf64_xlatetom in libelf/elf32_xlatetom.c, due to dwfl_segment_report_module not checking whether the dyn data read from a core file is truncated. A crafted input can cause a program crash, leading to denial-of-service, as demonstrated by eu-stack.

An attempted excessive memory allocation was discovered in the function read_long_names in elf_begin.c in libelf in elfutils 0.174. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted elf input, which leads to an out-of-memory exception.

An issue was discovered in Freeware Advanced Audio Decoder 2 2.8.8. It is a buffer over-read in ps_mix_phase in libfaad/ps_dec.c.

An issue was discovered in phpMyAdmin before 4.8.5. A vulnerability was reported where a specially crafted username can be used to trigger a SQL injection attack through the designer feature.

slirp: heap buffer overflow in tcp_emu

The string component in the GNU C Library through 2.28, when running on the x32 architecture, incorrectly attempts to use a 64-bit register for size_t in assembly codes, which can lead to a segmentation fault or possibly unspecified other impact, as demonstrated by a crash in __memmove_avx_unaligned_erms in sysdeps/x86_64/multiarch/memmove-vec-unaligned-erms.S during a memcpy.

Zone transfer controls for writable DLZ zones were not effective

An issue was discovered in GNU Recutils 1.8. There is a memory leak in rec_buf_new in rec-buf.c when called from rec_parse_rset in rec-parser.c in librec.a.

An issue was discovered in GNU Recutils 1.8. There is a double-free problem in the function rec_mset_elem_destroy in the file rec-mset.c.

An infinite recursion issue was discovered in eval.c in Netwide Assembler through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of "{" characters. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted asm file.


Pages:      Start    1    2    3    4    5    6    7    8    9    10    11    12    13    14    ..   43

© SecPod Technologies