CVE-2018-18606
- EPSS 2.32%
- Veröffentlicht 23.10.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 03:56:14
An issue was discovered in the merge_strings function in merge.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. There is a NULL pointer dereference in _bfd_add_merge_section when attempting to merge sec...
CVE-2018-18607
- EPSS 2.32%
- Veröffentlicht 23.10.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 03:56:14
An issue was discovered in elf_link_input_bfd in elflink.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. There is a NULL pointer dereference in elf_link_input_bfd when used for finding STT_TLS symbols ...
CVE-2018-16837
- EPSS 0.35%
- Veröffentlicht 23.10.2018 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:53:24
Ansible "User" module leaks any data which is passed on as a parameter to ssh-keygen. This could lean in undesirable situations such as passphrases credentials passed as a parameter for the ssh-keygen executable. Showing those credentials in clear te...
CVE-2018-18584
- EPSS 3.09%
- Veröffentlicht 23.10.2018 02:29:00
- Zuletzt bearbeitet 21.11.2024 03:56:12
In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write.
CVE-2018-18585
- EPSS 3.06%
- Veröffentlicht 23.10.2018 02:29:00
- Zuletzt bearbeitet 21.11.2024 03:56:12
chmd_read_headers in mspack/chmd.c in libmspack before 0.8alpha accepts a filename that has '\0' as its first or second character (such as the "/\0" name).
CVE-2018-18557
- EPSS 14.96%
- Veröffentlicht 22.10.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:56:09
LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 (with JBIG enabled) decodes arbitrarily-sized JBIG into a buffer, ignorin...
CVE-2018-18541
- EPSS 3.02%
- Veröffentlicht 20.10.2018 22:29:00
- Zuletzt bearbeitet 21.11.2024 03:56:07
In Teeworlds before 0.6.5, connection packets could be forged. There was no challenge-response involved in the connection build up. A remote attacker could send connection packets from a spoofed IP address and occupy all server slots, or even use the...
CVE-2018-18284
- EPSS 16.29%
- Veröffentlicht 19.10.2018 22:29:01
- Zuletzt bearbeitet 21.11.2024 03:55:38
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy operator.
CVE-2018-18520
- EPSS 2.79%
- Veröffentlicht 19.10.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 03:56:05
An Invalid Memory Address Dereference exists in the function elf_end in libelf in elfutils through v0.174. Although eu-size is intended to support ar files inside ar files, handle_ar in size.c closes the outer ar file before handling all inner entrie...
CVE-2018-18521
- EPSS 1.83%
- Veröffentlicht 19.10.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 03:56:05
Divide-by-zero vulnerabilities in the function arlib_add_symbols() in arlib.c in elfutils 0.174 allow remote attackers to cause a denial of service (application crash) with a crafted ELF file, as demonstrated by eu-ranlib, because a zero sh_entsize i...