|
247701
|
6.5 |
MEDIUM
Network
|
libsndfile_project debian
|
libsndfile debian_linux
|
An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2ulaw_array in ulaw.c that will lead to a denial of service.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-19661
|
2024-11-21 12:58 |
2018-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247702
|
8.8 |
HIGH
Network
|
dcraw_project suse
|
dcraw suse_linux_enterprise_server suse_linux_enterprise_desktop
|
A stack-based buffer overflow in the find_green() function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of…
|
CWE-787
Out-of-bounds Write
|
CVE-2018-19655
|
2024-11-21 12:58 |
2018-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247703
|
7.5 |
HIGH
Network
|
sales_\&_company_management_system_project
|
sales_\&_company_management_system
|
An issue was discovered in Sales & Company Management System (SCMS) through 2018-06-06. There is a discrepancy in username checking between a component that does string validation, and a component th…
|
CWE-20
Improper Input Validation
|
CVE-2018-19654
|
2024-11-21 12:58 |
2018-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247704
|
7.5 |
HIGH
Network
|
wireshark debian
|
wireshark debian_linux
|
In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan/dissectors/packet-zbee-zcl-lighting.c by preventing a divide-by-zero error.
|
CWE-369
Divide By Zero
|
CVE-2018-19628
|
2024-11-21 12:58 |
2018-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247705
|
7.5 |
HIGH
Network
|
wireshark debian
|
wireshark debian_linux
|
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-19627
|
2024-11-21 12:58 |
2018-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247706
|
5.5 |
MEDIUM
Local
|
wireshark debian
|
wireshark debian_linux
|
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the DCOM dissector could crash. This was addressed in epan/dissectors/packet-dcom.c by adding '\0' termination.
|
CWE-125 CWE-908
Out-of-bounds Read Use of Uninitialized Resource
|
CVE-2018-19626
|
2024-11-21 12:58 |
2018-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247707
|
5.5 |
MEDIUM
Local
|
wireshark debian
|
wireshark debian_linux
|
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the dissection engine could crash. This was addressed in epan/tvbuff_composite.c by preventing a heap-based buffer over-read.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-19625
|
2024-11-21 12:58 |
2018-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247708
|
5.5 |
MEDIUM
Local
|
wireshark debian
|
wireshark debian_linux
|
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the PVFS dissector could crash. This was addressed in epan/dissectors/packet-pvfs2.c by preventing a NULL pointer dereference.
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-19624
|
2024-11-21 12:58 |
2018-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247709
|
7.5 |
HIGH
Network
|
wireshark debian
|
wireshark debian_linux
|
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. T…
|
CWE-787
Out-of-bounds Write
|
CVE-2018-19623
|
2024-11-21 12:58 |
2018-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247710
|
7.5 |
HIGH
Network
|
wireshark debian
|
wireshark debian_linux
|
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-mmse.c by preventing length overflows.
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2018-19622
|
2024-11-21 12:58 |
2018-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|