CVE-2020-6625
jhead through 3.04 has a heap-based buffer over-read in Get32s when called from ProcessGpsInfo in gpsinfo.c.
Source: CVE-2020-6625
[월:] 2020년 01월
CVE-2020-6624
CVE-2020-6624
jhead through 3.04 has a heap-based buffer over-read in process_DQT in jpgqguess.c.
Source: CVE-2020-6624
CVE-2019-11292
CVE-2019-11292
Pivotal Ops Manager, versions 2.4.x prior to 2.4.27, 2.5.x prior to 2.5.24, 2.6.x prior to 2.6.16, and 2.7.x prior to 2.7.5, logs all query parameters to tomcat’s access file. If the query parameters are used to provide authentication, ie. credentials, then they will be logged as well.
Source: CVE-2019-11292
CVE-2020-6617
CVE-2020-6617
stb stb_truetype.h through 1.22 has an assertion failure in stbtt__cff_int.
Source: CVE-2020-6617
CVE-2020-6623
CVE-2020-6623
stb stb_truetype.h through 1.22 has an assertion failure in stbtt__cff_get_index.
Source: CVE-2020-6623
CVE-2020-6618
CVE-2020-6618
stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__find_table.
Source: CVE-2020-6618
CVE-2020-6622
CVE-2020-6622
stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__buf_peek8.
Source: CVE-2020-6622
CVE-2011-5018
CVE-2011-5018
Koala Framework before 2011-11-21 has XSS via the request_uri parameter.
Source: CVE-2011-5018
CVE-2011-5247
CVE-2011-5247
Snare for Linux before 1.7.0 has password disclosure because the rendered page contains the field RemotePassword.
Source: CVE-2011-5247