CVE-2022-2519
- EPSS 0.99%
- Veröffentlicht 31.08.2022 16:15:11
- Zuletzt bearbeitet 21.11.2024 07:01:09
There is a double free or corruption in rotateImage() at tiffcrop.c:8839 found in libtiff 4.4.0rc1
CVE-2022-2520
- EPSS 0.94%
- Veröffentlicht 31.08.2022 16:15:11
- Zuletzt bearbeitet 21.11.2024 07:01:09
A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage() at tiffcrop.c:8621 that can cause program crash when reading a crafted input.
CVE-2022-2521
- EPSS 0.99%
- Veröffentlicht 31.08.2022 16:15:11
- Zuletzt bearbeitet 21.11.2024 07:01:10
It was found in libtiff 4.4.0rc1 that there is an invalid pointer free operation in TIFFClose() at tif_close.c:131 called by tiffcrop.c:2522 that can cause a program crash and denial of service while processing crafted input.
- EPSS 0.2%
- Veröffentlicht 31.08.2022 16:15:11
- Zuletzt bearbeitet 21.11.2024 07:18:39
A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem) when multiple calls to xfrm_probe_algs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds wri...
CVE-2022-2132
- EPSS 1.77%
- Veröffentlicht 31.08.2022 16:15:10
- Zuletzt bearbeitet 21.11.2024 07:00:23
A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted Vhost header to DPDK.
CVE-2022-2153
- EPSS 0.44%
- Veröffentlicht 31.08.2022 16:15:10
- Zuletzt bearbeitet 21.11.2024 07:00:26
A flaw was found in the Linux kernel’s KVM when attempting to set a SynIC IRQ. This issue makes it possible for a misbehaving VMM to write to SYNIC/STIMER MSRs, causing a NULL pointer dereference. This flaw allows an unprivileged local attacker on th...
CVE-2022-1271
- EPSS 4.27%
- Veröffentlicht 31.08.2022 16:15:09
- Zuletzt bearbeitet 09.06.2025 15:15:26
An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name (for example, a crafted file name), this can overwrite an attacker's content to an arbitrary attacker-selected file....
CVE-2022-1354
- EPSS 0.53%
- Veröffentlicht 31.08.2022 16:15:09
- Zuletzt bearbeitet 21.11.2024 06:40:33
A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffinfo tool, triggering a heap buffer overflow issue and causing a crash that leads ...
CVE-2022-1355
- EPSS 0.53%
- Veröffentlicht 31.08.2022 16:15:09
- Zuletzt bearbeitet 21.11.2024 06:40:33
A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a cras...
CVE-2021-46837
- EPSS 1.82%
- Veröffentlicht 30.08.2022 07:15:07
- Zuletzt bearbeitet 21.11.2024 06:34:47
res_pjsip_t38 in Sangoma Asterisk 16.x before 16.16.2, 17.x before 17.9.3, and 18.x before 18.2.2, and Certified Asterisk before 16.8-cert7, allows an attacker to trigger a crash by sending an m=image line and zero port in a response to a T.38 re-inv...