CVE-2022-43750
- EPSS 0.33%
- Veröffentlicht 26.10.2022 04:15:13
- Zuletzt bearbeitet 07.05.2025 14:15:37
drivers/usb/mon/mon_bin.c in usbmon in the Linux kernel before 5.19.15 and 6.x before 6.0.1 allows a user-space client to corrupt the monitor's internal memory.
CVE-2022-41704
- EPSS 2.14%
- Veröffentlicht 25.10.2022 17:15:57
- Zuletzt bearbeitet 25.02.2026 18:16:54
A vulnerability in Batik of Apache XML Graphics allows an attacker to run untrusted Java code from an SVG. This issue affects Apache XML Graphics prior to 1.16. It is recommended to update to version 1.16.
CVE-2022-42890
- EPSS 2.32%
- Veröffentlicht 25.10.2022 17:15:57
- Zuletzt bearbeitet 21.11.2024 07:25:32
A vulnerability in Batik of Apache XML Graphics allows an attacker to run Java code from untrusted SVG via JavaScript. This issue affects Apache XML Graphics prior to 1.16. Users are recommended to upgrade to version 1.16.
CVE-2022-43680
- EPSS 2.26%
- Veröffentlicht 24.10.2022 14:15:53
- Zuletzt bearbeitet 30.05.2025 20:15:31
In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.
CVE-2021-46848
- EPSS 2.06%
- Veröffentlicht 24.10.2022 14:15:49
- Zuletzt bearbeitet 07.05.2025 15:15:52
GNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check that affects asn1_encode_simple_der.
- EPSS 0.76%
- Veröffentlicht 21.10.2022 20:15:09
- Zuletzt bearbeitet 21.11.2024 07:19:57
A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfs_new_inode of the file fs/nilfs2/inode.c of the component BPF. The manipulation leads to use after free. It is possible to launch the atta...
CVE-2022-3646
- EPSS 0.81%
- Veröffentlicht 21.10.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 07:19:56
A vulnerability, which was classified as problematic, has been found in Linux Kernel. This issue affects the function nilfs_attach_log_writer of the file fs/nilfs2/segment.c of the component BPF. The manipulation leads to memory leak. The attack may ...
CVE-2022-3598
- EPSS 0.94%
- Veröffentlicht 21.10.2022 16:15:11
- Zuletzt bearbeitet 07.05.2025 21:15:56
LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with co...
CVE-2022-3599
- EPSS 0.95%
- Veröffentlicht 21.10.2022 16:15:11
- Zuletzt bearbeitet 07.05.2025 21:15:56
LibTIFF 4.4.0 has an out-of-bounds read in writeSingleSection in tools/tiffcrop.c:7345, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125.
CVE-2022-3626
- EPSS 0.94%
- Veröffentlicht 21.10.2022 16:15:11
- Zuletzt bearbeitet 07.05.2025 16:15:20
LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c:340 when called from processCropSelections, tools/tiffcrop.c:7619, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff f...