Total
13459 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2019-14814 | 6 Canonical, Debian, Linux and 3 more | 50 Ubuntu Linux, Debian Linux, Linux Kernel and 47 more | 2024-11-21 | 7.2 HIGH | 7.8 HIGH |
|
There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.
|
|||||
| CVE-2019-14734 | 2 Adplug Project, Fedoraproject | 2 Adplug, Fedora | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load() in mtk.cpp.
|
|||||
| CVE-2019-14733 | 2 Adplug Project, Fedoraproject | 2 Adplug, Fedora | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
AdPlug 2.3.1 has multiple heap-based buffer overflows in CradLoader::load() in rad.cpp.
|
|||||
| CVE-2019-14732 | 2 Adplug Project, Fedoraproject | 2 Adplug, Fedora | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
AdPlug 2.3.1 has multiple heap-based buffer overflows in Ca2mLoader::load() in a2m.cpp.
|
|||||
| CVE-2019-14715 | 1 Verifone | 8 P200, P200 Firmware, P400 and 5 more | 2024-11-21 | 4.6 MEDIUM | 6.8 MEDIUM |
|
Verifone Pinpad Payment Terminals allow undocumented physical access to the system via an SBI bootloader memory write operation.
|
|||||
| CVE-2019-14697 | 1 Musl-libc | 1 Musl | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
musl libc through 1.1.23 has an x87 floating-point stack adjustment imbalance, related to the math/i386/ directory. In some cases, use of this library could introduce out-of-bounds writes that are not present in an application's source code.
|
|||||
| CVE-2019-14692 | 2 Adplug Project, Fedoraproject | 2 Adplug, Fedora | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
AdPlug 2.3.1 has a heap-based buffer overflow in CmkjPlayer::load() in mkj.cpp.
|
|||||
| CVE-2019-14691 | 2 Adplug Project, Fedoraproject | 2 Adplug, Fedora | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
AdPlug 2.3.1 has a heap-based buffer overflow in CdtmLoader::load() in dtm.cpp.
|
|||||
| CVE-2019-14690 | 2 Adplug Project, Fedoraproject | 2 Adplug, Fedora | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
AdPlug 2.3.1 has a heap-based buffer overflow in CxadbmfPlayer::__bmf_convert_stream() in bmf.cpp.
|
|||||
| CVE-2019-14665 | 1 Brandy Project | 1 Brandy | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
|
Brandy 1.20.1 has a heap-based buffer overflow in define_array in variables.c via crafted BASIC source code.
|
|||||
| CVE-2019-14663 | 1 Brandy Project | 1 Brandy | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
|
Brandy 1.20.1 has a stack-based buffer overflow in fileio_openin in fileio.c via crafted BASIC source code.
|
|||||
| CVE-2019-14662 | 1 Brandy Project | 1 Brandy | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
|
Brandy 1.20.1 has a stack-based buffer overflow in fileio_openout in fileio.c via crafted BASIC source code.
|
|||||
| CVE-2019-14612 | 1 Intel | 38 Cd1iv128mk, Cd1iv128mk Firmware, Cd1m3128mk and 35 more | 2024-11-21 | 4.6 MEDIUM | 6.7 MEDIUM |
|
Out of bounds write in firmware for Intel(R) NUC(R) may allow a privileged user to potentially enable escalation of privilege via local access.
|
|||||
| CVE-2019-14570 | 1 Intel | 10 Nuc 8 Mainstream Game Kit, Nuc 8 Mainstream Game Kit Firmware, Nuc 8 Mainstream Game Mini Computer and 7 more | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Memory corruption in system firmware for Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.
|
|||||
| CVE-2019-14563 | 2 Debian, Tianocore | 2 Debian Linux, Edk2 | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.
|
|||||
| CVE-2019-14541 | 1 Gnucobol Project | 1 Gnucobol | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
|
GnuCOBOL 2.2 has a stack-based buffer overflow in cb_encode_program_id in cobc/typeck.c via crafted COBOL source code.
|
|||||
| CVE-2019-14528 | 1 Gnucobol Project | 1 Gnucobol | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
|
GnuCOBOL 2.2 has a heap-based buffer overflow in read_literal in cobc/scanner.l via crafted COBOL source code.
|
|||||
| CVE-2019-14524 | 2 Opensuse, Schismtracker | 3 Backports, Leap, Schism Tracker | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
|
An issue was discovered in Schism Tracker through 20190722. There is a heap-based buffer overflow via a large number of song patterns in fmt_mtm_load_song in fmt/mtm.c, a different vulnerability than CVE-2019-14465.
|
|||||
| CVE-2019-14497 | 3 Canonical, Debian, Milkytracker Project | 3 Ubuntu Linux, Debian Linux, Milkytracker | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
|
ModuleEditor::convertInstrument in tracker/ModuleEditor.cpp in MilkyTracker 1.02.00 has a heap-based buffer overflow.
|
|||||
| CVE-2019-14496 | 3 Canonical, Debian, Milkytracker Project | 3 Ubuntu Linux, Debian Linux, Milkytracker | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
|
LoaderXM::load in LoaderXM.cpp in milkyplay in MilkyTracker 1.02.00 has a stack-based buffer overflow.
|
|||||
| CVE-2019-14495 | 1 3proxy | 1 3proxy | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
webadmin.c in 3proxy before 0.8.13 has an out-of-bounds write in the admin interface.
|
|||||
| CVE-2019-14492 | 2 Opencv, Opensuse | 2 Opencv, Leap | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. There is an out of bounds read/write in the function HaarEvaluator::OptFeature::calc in modules/objdetect/src/cascadedetect.hpp, which leads to denial of service.
|
|||||
| CVE-2019-14465 | 1 Schismtracker | 1 Schism Tracker | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
|
fmt_mtm_load_song in fmt/mtm.c in Schism Tracker 20190722 has a heap-based buffer overflow.
|
|||||
| CVE-2019-14464 | 4 Canonical, Debian, Fedoraproject and 1 more | 4 Ubuntu Linux, Debian Linux, Fedora and 1 more | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
|
XMFile::read in XMFile.cpp in milkyplay in MilkyTracker 1.02.00 has a heap-based buffer overflow.
|
|||||
| CVE-2019-14457 | 1 Vivotek | 1 Camera | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
VIVOTEK IP Camera devices with firmware before 0x20x have a stack-based buffer overflow via a crafted HTTP header.
|
|||||
| CVE-2019-14431 | 1 Matrixssl | 1 Matrixssl | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
In MatrixSSL 3.8.3 Open through 4.2.1 Open, the DTLS server mishandles incoming network messages leading to a heap-based buffer overflow of up to 256 bytes and possible Remote Code Execution in parseSSLHandshake in sslDecode.c. During processing of a crafted packet, the server mishandles the fragment length value provided in the DTLS message.
|
|||||
| CVE-2019-14378 | 1 Libslirp Project | 1 Libslirp | 2024-11-21 | 6.5 MEDIUM | 8.8 HIGH |
|
ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.
|
|||||
| CVE-2019-14363 | 1 Netgear | 2 Wndr3400v3, Wndr3400v3 Firmware | 2024-11-21 | 10.0 HIGH | 9.8 CRITICAL |
|
A stack-based buffer overflow in the upnpd binary running on NETGEAR WNDR3400v3 routers with firmware version 1.0.1.18_1.0.63 allows an attacker to remotely execute arbitrary code via a crafted UPnP SSDP packet.
|
|||||
| CVE-2019-14323 | 1 Simple Service Discovery Protocol Responder Project | 1 Simple Service Discovery Protocol Responder | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
SSDP Responder 1.x through 1.5 mishandles incoming network messages, leading to a stack-based buffer overflow by 1 byte. This results in a crash of the server, but only when strict stack checking is enabled. This is caused by an off-by-one error in ssdp_recv in ssdpd.c.
|
|||||
| CVE-2019-14310 | 1 Ricoh | 8 Sp C250dn, Sp C250dn Firmware, Sp C250sf and 5 more | 2024-11-21 | 10.0 HIGH | 9.8 CRITICAL |
|
Ricoh SP C250DN 1.05 devices allow denial of service (issue 2 of 3). Unauthenticated crafted packets to the IPP service will cause a vulnerable device to crash. A memory corruption has been identified in the way of how the embedded device parsed the IPP packets
|
|||||
| CVE-2019-14275 | 3 Debian, Opensuse, Xfig Project | 3 Debian Linux, Leap, Fig2dev | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
|
Xfig fig2dev 3.2.7a has a stack-based buffer overflow in the calc_arrow function in bound.c.
|
|||||
| CVE-2019-14274 | 2 Mcpp Project, Opensuse | 3 Mcpp, Backports Sle, Leap | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
|
MCPP 2.7.2 has a heap-based buffer overflow in the do_msg() function in support.c.
|
|||||
| CVE-2019-14267 | 2 Fedoraproject, Pdfresurrect Project | 2 Fedora, Pdfresurrect | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
|
PDFResurrect 0.15 has a buffer overflow via a crafted PDF file because data associated with startxref and %%EOF is mishandled.
|
|||||
| CVE-2019-14250 | 3 Canonical, Gnu, Opensuse | 3 Ubuntu Linux, Binutils, Leap | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
|
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. simple_object_elf_match in simple-object-elf.c does not check for a zero shstrndx value, leading to an integer overflow and resultant heap-based buffer overflow.
|
|||||
| CVE-2019-14247 | 1 Mpg321 Project | 1 Mpg321 | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
|
The scan() function in mad.c in mpg321 0.3.2 allows remote attackers to trigger an out-of-bounds write via a zero bitrate in an MP3 file.
|
|||||
| CVE-2019-14210 | 2 Foxitsoftware, Microsoft | 2 Phantompdf, Windows | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
An issue was discovered in Foxit PhantomPDF before 8.3.10. The application could be exposed to Memory Corruption due to the use of an invalid pointer copy, resulting from a destructed string object.
|
|||||
| CVE-2019-14209 | 2 Foxitsoftware, Microsoft | 2 Phantompdf, Windows | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
An issue was discovered in Foxit PhantomPDF before 8.3.10. The application could be exposed to Heap Corruption due to data desynchrony when adding AcroForm.
|
|||||
| CVE-2019-14204 | 1 Denx | 1 U-boot | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_umountall_reply.
|
|||||
| CVE-2019-14203 | 1 Denx | 1 U-boot | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_mount_reply.
|
|||||
| CVE-2019-14202 | 1 Denx | 1 U-boot | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_readlink_reply.
|
|||||