CVE-2019-13113
- EPSS 2.13%
- Veröffentlicht 30.06.2019 23:15:10
- Zuletzt bearbeitet 21.11.2024 04:24:13
Exiv2 through 0.27.1 allows an attacker to cause a denial of service (crash due to assertion failure) via an invalid data location in a CRW image file.
CVE-2019-13114
- EPSS 2.12%
- Veröffentlicht 30.06.2019 23:15:10
- Zuletzt bearbeitet 21.11.2024 04:24:13
http.c in Exiv2 through 0.27.1 allows a malicious http server to cause a denial of service (crash due to a NULL pointer dereference) by returning a crafted response that lacks a space character.
CVE-2019-13038
- EPSS 1.42%
- Veröffentlicht 29.06.2019 14:15:09
- Zuletzt bearbeitet 21.11.2024 04:24:05
mod_auth_mellon through 0.14.2 has an Open Redirect via the login?ReturnTo= substring, as demonstrated by omitting the // after http: in the target URL.
CVE-2019-5827
- EPSS 1.98%
- Veröffentlicht 27.06.2019 17:15:14
- Zuletzt bearbeitet 21.11.2024 04:45:35
Integer overflow in SQLite via WebSQL in Google Chrome prior to 74.0.3729.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2018-6156
- EPSS 0.86%
- Veröffentlicht 27.06.2019 17:15:13
- Zuletzt bearbeitet 21.11.2024 04:10:10
Incorect derivation of a packet length in WebRTC in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to potentially exploit heap corruption via a crafted video file.
CVE-2019-12975
- EPSS 2.26%
- Veröffentlicht 26.06.2019 18:15:10
- Zuletzt bearbeitet 21.11.2024 04:23:56
ImageMagick 7.0.8-34 has a memory leak vulnerability in the WriteDPXImage function in coders/dpx.c.
CVE-2019-12976
- EPSS 2.38%
- Veröffentlicht 26.06.2019 18:15:10
- Zuletzt bearbeitet 21.11.2024 04:23:56
ImageMagick 7.0.8-34 has a memory leak in the ReadPCLImage function in coders/pcl.c.
CVE-2019-12979
- EPSS 2.36%
- Veröffentlicht 26.06.2019 18:15:10
- Zuletzt bearbeitet 21.11.2024 04:23:56
ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the SyncImageSettings function in MagickCore/image.c. This is related to AcquireImage in magick/image.c.
CVE-2019-12972
- EPSS 1.8%
- Veröffentlicht 26.06.2019 14:15:10
- Zuletzt bearbeitet 21.11.2024 04:23:55
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. There is a heap-based buffer over-read in _bfd_doprnt in bfd.c because elf_object_p in elfcode.h mishandles an e_shstrndx section o...
- EPSS 0.39%
- Veröffentlicht 25.06.2019 12:15:11
- Zuletzt bearbeitet 21.11.2024 04:23:38
arch/powerpc/mm/mmu_context_book3s64.c in the Linux kernel before 5.1.15 for powerpc has a bug where unrelated processes may be able to read/write to one another's virtual memory under certain conditions via an mmap above 512 TB. Only a subset of pow...