Eclipse

Omr

4 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2025-1470

Media report
  • EPSS 0.03%
  • Published 21.02.2025 10:15:11
  • Last modified 05.03.2025 18:54:18

In Eclipse OMR, from the initial contribution to version 0.4.0, some OMR internal port library and utilities consumers of z/OS atoe functions do not check their return values for NULL memory pointers or for memory allocation failures. This can lead ...

7.8

CVE-2025-1471

Media report
  • EPSS 0.02%
  • Published 21.02.2025 10:15:11
  • Last modified 05.03.2025 18:54:18

In Eclipse OMR versions 0.2.0 to 0.4.0, some of the z/OS atoe print functions use a constant length buffer for string conversion. If the input format string and arguments are larger than the buffer size then buffer overflow occurs. Beginning in vers...

7.8

CVE-2019-11773

  • EPSS 0.05%
  • Published 12.09.2019 18:15:11
  • Last modified 21.11.2024 04:21:45

Prior to 0.1, AIX builds of Eclipse OMR contain unused RPATHs which may facilitate code injection and privilege elevation by local users.

7.4

CVE-2019-11774

  • EPSS 0.46%
  • Published 12.09.2019 18:15:11
  • Last modified 21.11.2024 04:21:46

Prior to 0.1, all builds of Eclipse OMR contain a bug where the loop versioner may fail to privatize a value that is pulled out of the loop by versioning - for example if there is a condition that is moved out of the loop that reads a field we may no...