CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-36616
https://notcve.org/view.php?id=CVE-2024-36616
29 Nov 2024 — An integer overflow in the component /libavformat/westwood_vqa.c of FFmpeg n6.1.1 allows attackers to cause a denial of service in the application via a crafted VQA file. • https://gist.github.com/1047524396/ded3e1509d8296ec4a91817867d108e0 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-36619
https://notcve.org/view.php?id=CVE-2024-36619
29 Nov 2024 — FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec library which allows for an integer overflow when handling certain block types, leading to a denial-of-service (DoS) condition. • https://gist.github.com/1047524396/fad68e8251f4e34a1bb838de697d5119 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-36617 – Ubuntu Security Notice USN-7188-1
https://notcve.org/view.php?id=CVE-2024-36617
29 Nov 2024 — FFmpeg n6.1.1 has an integer overflow vulnerability in the FFmpeg CAF decoder. It was discovered that FFmpeg incorrectly handled certain input, which could lead to an integer overflow. • https://gist.github.com/1047524396/f20749f8addc8f86de9cfacf17ba29df • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.1EPSS: 0%CPEs: -EXPL: 0CVE-2024-35366
https://notcve.org/view.php?id=CVE-2024-35366
29 Nov 2024 — FFmpeg n6.1.1 is Integer Overflow. • https://gist.github.com/1047524396/1e72f170d58c2547ebd4db4cdf6cfabf • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2018-9352
https://notcve.org/view.php?id=CVE-2018-9352
27 Nov 2024 — In ihevcd_allocate_dynamic_bufs of ihevcd_api.c there is a possible resource exhaustion due to integer overflow. • https://source.android.com/docs/security/bulletin/pixel/2018-06-01 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.4EPSS: 0%CPEs: 7EXPL: 0CVE-2017-13323
https://notcve.org/view.php?id=CVE-2017-13323
27 Nov 2024 — In String16 of String16.cpp, there is a possible out of bounds write due to an integer overflow. ... In String16 of String16.cpp, there is a possible out of bounds write due to an integer overflow. • https://source.android.com/docs/security/bulletin/pixel/2018-05-01 • CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 0%CPEs: 10EXPL: 0CVE-2018-5852 – Buffer Over-read in IPA
https://notcve.org/view.php?id=CVE-2018-5852
26 Nov 2024 — An unsigned integer underflow vulnerability in IPA driver result into a buffer over-read while reading NAT entry using debugfs command 'cat /sys/kernel/debug/ipa/ip4_nat' • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2018-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-52811 – Acks not validated before logged to qlog leads to buffer overflow in ngtcp2
https://notcve.org/view.php?id=CVE-2024-52811
25 Nov 2024 — Subtracting `largest_ack - first_ack_range` will lead to an integer underflow which is 20 chars long. However, the ngtcp2 qlog code assumes the number written is a signed integer and only accounts for 19 characters of overhead (see `NGTCP2_QLOG_ACK_FRAME_RANGE_OVERHEAD`). • https://github.com/ngtcp2/ngtcp2/commit/44b662bd139c23fee1703bf256c13349e2e624a1 • CWE-670: Always-Incorrect Control Flow Implementation •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2024-11236 – Integer overflow in the firebird and dblib quoters causing OOB writes
https://notcve.org/view.php?id=CVE-2024-11236
24 Nov 2024 — .* before 8.3.14, uncontrolled long string inputs to ldap_escape() function on 32-bit systems can cause an integer overflow, resulting in an out-of-bounds write. In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, uncontrolled long string inputs to ldap_escape() function on 32-bit systems can cause an integer overflow, resulting in an out-of-bounds write. • https://github.com/php/php-src/security/advisories/GHSA-5hqh-c84r-qjcv • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2024-8932 – OOB access in ldap_escape
https://notcve.org/view.php?id=CVE-2024-8932
22 Nov 2024 — .* before 8.3.14, uncontrolled long string inputs to ldap_escape() function on 32-bit systems can cause an integer overflow, resulting in an out-of-bounds write. • https://github.com/php/php-src/security/advisories/GHSA-g665-fm4p-vhff • CWE-787: Out-of-bounds Write •