SWFTools commit 772e55a was discovered to contain a heap-buffer overflow via the function readU8 at /lib/ttf.c.Ī heap-based overflow vulnerability in makeContactAGIF in library prior to SMR Oct-2022 Release 1 allows attacker to perform code execution.Īn issue was discovered in the Linux kernel before 5.19. Tenda AC15 and AC18 routers V15.03.05.19 contain heap overflow vulnerabilities in the function setSchedWifi with the request /goform/openSchedWifi/ Tenda AX1803 v1.0.0.1 was discovered to contain a heap overflow vulnerability in the GetParentControlInfo function, which can cause a denial of service attack through a carefully constructed http request. Tenda AX1803 v1.0.0.1 was discovered to contain a heap overflow in the function GetParentControlInfo. The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.īento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_BitReader::ReadBit function in mp4mux.īento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_Atom::TypeFromString function in mp4tag.īento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_BitReader::ReadBits function in mp4mux. Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 was discovered to contain a heap overflow via sched_start_time parameter. Jsonlint 1.0 is vulnerable to heap-buffer-overflow via /home/hjsz/jsonlint/src/lexer. There is a heap buffer overflow vulnerability in the AP4_BitReader::SkipBits(unsigned int) function in mp42ts. There is a heap-buffer-overflow in AP4_Dec3Atom::AP4_Dec3Atom at Ap4Dec3Atom.cpp, leading to a Denial of Service (DoS), as demonstrated by mp42aac.Īn issue was discovered in Bento4 v1.6.0-639. GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer overflow via the function gf_isom_box_dump_start_ex at /isomedia/box_funcs.c.īento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_BitReader::ReadCache() function in mp42ts.Īn issue was discovered in Bento4 v1.6.0-639. GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer overflow via the function FixSDTPInTRAF at isomedia/isom_intern.c. Rtf2html v0.2.0 was discovered to contain a heap overflow in the component /rtf2html/./rtf_tools.h. TsMuxer v2.6.16 was discovered to contain a heap overflow via the function BitStreamWriter::flushBits() at /tsMuxer/bitStream.h. It's available for download for GNU/Linux, macOS, and Microsoft Windows operating systems right now.Wasm-interp v1.0.29 was discovered to contain a heap overflow via the component std::vector>::size() at /bits/stl_vector.h. Last but not least, GIMP 2.8.22 updates the Spanish, Catalan, Norwegian, Finnish, Swedish, Greek, Italian, Polish, Slovenian, Kazakh, Basque, Hungarian, Brazilian Portuguese, and Chinese (PRC) language translations. The full changelog is attached below for more technical details or if you're curious what exactly was changed. Various improvements were also made to the DMG image for macOS users in GIMP 2.8.22, which now includes a couple of patches to prevent some crashes that could occur during clipboard or drag and drop operations. Our attempts to reproduce the bug failed with 2.8 and thus the impact had likely been minimal for years, but now it is gone for good," reads today's announcement. Due to this bug, the ICO file import plug-in could be crashed by specially crafted image files. "This version fixes an ancient CVE bug, CVE-2007-3126. GIMP, the open-source, free and multi-platform image editor software, was updated today to version 2.8.22, which appears to be a bugfix release in the stable 2.8 series of the project.Įven if it arrives more than three months after the release of the GIMP 2.8.20 update, GIMP 2.8.22 is a small maintenance update attempting to improve the drawing/painting performance in single window mode, especially when some themes based on the GTK+ Pixmap engine are used, affecting all platforms.Īdditionally, it patches a nasty bug in the ICO plugin (see below for details), addresses a crash in the PDF plugin, which could occur when images or their resolutions were too large, no longer parses invalid PCX files to prevent a segmentation fault, and improves the build system.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |