‼ CVE-2021-39569 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function OpAdvance() located in swfaction.c. It allows an attacker to cause code Execution.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-32284 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function ircode_register_pop_context_protect() located in gravity_ircode.c. It allows an attacker to cause Denial of Service.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39593 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function swf_FontExtract_DefineFontInfo() located in swftext.c. It allows an attacker to cause Denial of Service.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39564 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function swf_DumpActions() located in swfaction.c. It allows an attacker to cause code Execution.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39558 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function VectorGraphicOutputDev::drawGeneralImage() located in VectorGraphicOutputDev.cc. It allows an attacker to cause code Execution.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-25741 ‼
📖 Read
via "National Vulnerability Database".
A security issue was discovered in Kubernetes where a user may be able to create a container with subpath volume mounts to access files & directories outside of the volume, including on the host filesystem.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39515 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function SampleInterleavedLSScan::ParseMCU() located in sampleinterleavedlsscan.cpp. It allows an attacker to cause Denial of Service.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39595 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function rfx_alloc() located in mem.c. It allows an attacker to cause code Execution.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39590 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function params_dump() located in abc.c. It allows an attacker to cause Denial of Service.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39533 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in libslax through v0.22.1. slaxLexer() in slaxlexer.c has a heap-based buffer overflow.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39532 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in libslax through v0.22.1. A NULL pointer dereference exists in the function slaxLexer() located in slaxlexer.c. It allows an attacker to cause Denial of Service.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-32268 ‼
📖 Read
via "National Vulnerability Database".
Buffer overflow vulnerability in function gf_fprintf in os_file.c in gpac through 20200801, allows attackers to execute arbitrary code.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-29819 ‼
📖 Read
via "National Vulnerability Database".
IBM Jazz for Service Management and IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 204346.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39574 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function pool_read() located in pool.c. It allows an attacker to cause code Execution.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-20894 ‼
📖 Read
via "National Vulnerability Database".
Buffer Overflow vulnerability in function gaussian_blur in libavfilter/vf_edgedetect.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-32289 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in heif through through v3.6.2. A NULL pointer dereference exists in the function convertByteStreamToRBSP() located in nalutil.cpp. It allows an attacker to cause Denial of Service.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-29809 ‼
📖 Read
via "National Vulnerability Database".
IBM Jazz for Service Management and IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 204270.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-38090 ‼
📖 Read
via "National Vulnerability Database".
Integer Overflow vulnerability in function filter16_roberts in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39514 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in libjpeg through 2020021. An uncaught floating point exception in the function ACLosslessScan::ParseMCU() located in aclosslessscan.cpp. It allows an attacker to cause Denial of Service.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39539 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in pdftools through 20200714. A NULL pointer dereference exists in the function node::BDCNode::~BDCNode() located in bdcnode.cpp. It allows an attacker to cause Denial of Service.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39537 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in ncurses through v6.2-1. _nc_captoinfo in captoinfo.c has a heap-based buffer overflow.📖 Read
via "National Vulnerability Database".