» 2022 » 9월

CVE-2021-45027

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2021-45027

An arbitrary file download vulnerability in Oliver v5 Library Server Versions < 5.00.008.053 via the FileServlet function allows for arbitrary file download by an attacker using unsanitized user supplied input.

Source: CVE-2021-45027

CVE-2020-35533

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2020-35533

In LibRaw, an out-of-bounds read vulnerability exists within the "LibRaw::adobe_copy_pixel()" function (librawsrcdecodersdng.cpp) when reading data from the image file.

Source: CVE-2020-35533

CVE-2020-35528

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2020-35528

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2020. Notes: none.

Source: CVE-2020-35528

CVE-2020-27784

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2020-27784

A vulnerability was found in the Linux kernel, where accessing a deallocated instance in printer_ioctl() printer_ioctl() tries to access of a printer_dev instance. However, use-after-free arises because it had been freed by gprinter_free().

Source: CVE-2020-27784

CVE-2020-35532

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2020-35532

In LibRaw, an out-of-bounds read vulnerability exists within the "simple_decode_row()" function (librawsrcx3fx3f_utils_patched.cpp) which can be triggered via an image with a large row_stride field.

Source: CVE-2020-35532

CVE-2020-35531

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2020-35531

In LibRaw, an out-of-bounds read vulnerability exists within the get_huffman_diff() function (librawsrcx3fx3f_utils_patched.cpp) when reading data from an image file.

Source: CVE-2020-35531

CVE-2020-35530

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2020-35530

In LibRaw, there is an out-of-bounds write vulnerability within the "new_node()" function (librawsrcx3fx3f_utils_patched.cpp) that can be triggered via a crafted X3F file.

Source: CVE-2020-35530

CVE-2020-35529

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2020-35529

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2020. Notes: none.

Source: CVE-2020-35529

CVE-2020-35534

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2020-35534

In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (librawsrcdecoderscrx.cpp) when processing cr3 files.

Source: CVE-2020-35534

CVE-2020-35527

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2020-35527

In SQLite 3.31.1, there is an out of bounds access problem through ALTER TABLE for views that have a nested FROM clause.

Source: CVE-2020-35527