CVSS: 10.0EPSS: 4%CPEs: 5EXPL: 1CVE-2023-6350 – Gentoo Linux Security Advisory 202402-14
https://notcve.org/view.php?id=CVE-2023-6350
29 Nov 2023 — Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. (Chromium security severity: High) Use after free en libavif en Google Chrome anterior a 119.0.6045.199 permitía a un atacante remoto explotar potencialmente la corrupción del heap a través de un archivo avif manipulado. (Severidad de seguridad de Chrome: alta) Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of w... • https://github.com/dywsy21/CVE-2023-6350_Reproduction • CWE-416: Use After Free •
CVSS: 10.0EPSS: 1%CPEs: 5EXPL: 0CVE-2023-6346 – Gentoo Linux Security Advisory 202402-14
https://notcve.org/view.php?id=CVE-2023-6346
29 Nov 2023 — Use after free in WebAudio in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Use after free en WebAudio en Google Chrome anterior a 119.0.6045.199 permitía a un atacante remoto explotar potencialmente la corrupción del heap a través de una página HTML manipulada. (Severidad de seguridad de Chrome: alta) Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of... • https://chromereleases.googleblog.com/2023/11/stable-channel-update-for-desktop_28.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 1%CPEs: 5EXPL: 0CVE-2023-6347 – Gentoo Linux Security Advisory 202402-14
https://notcve.org/view.php?id=CVE-2023-6347
29 Nov 2023 — Use after free in Mojo in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Use after free en Mojo en Google Chrome anterior a 119.0.6045.199 permitía a un atacante remoto explotar potencialmente la corrupción del heap a través de una página HTML manipulada. (Severidad de seguridad de Chrome: alta) Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of which c... • https://chromereleases.googleblog.com/2023/11/stable-channel-update-for-desktop_28.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 2%CPEs: 6EXPL: 1CVE-2023-6277 – Libtiff: out-of-memory in tiffopen via a craft file
https://notcve.org/view.php?id=CVE-2023-6277
24 Nov 2023 — An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen() API may allow a remote attacker to cause a denial of service via a craft input with size smaller than 379 KB. Se encontró un error de falta de memoria en libtiff. Pasar un archivo tiff manipulado a la API TIFFOpen() puede permitir que un atacante remoto provoque una denegación de servicio a través de una entrada artesanal con un tamaño inferior a 379 KB. USN-6644-1 fixed vulnerabilities in LibTIFF. • https://access.redhat.com/security/cve/CVE-2023-6277 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.7EPSS: 0%CPEs: 2EXPL: 0CVE-2023-6238 – Kernel: nvme: memory corruption via unprivileged user passthrough
https://notcve.org/view.php?id=CVE-2023-6238
21 Nov 2023 — A buffer overflow vulnerability was found in the NVM Express (NVMe) driver in the Linux kernel. Only privileged user could specify a small meta buffer and let the device perform larger Direct Memory Access (DMA) into the same buffer, overwriting unrelated kernel memory, causing random kernel crashes and memory corruption. Se encontró una vulnerabilidad de desbordamiento del búfer en el controlador NVM Express (NVMe) en el kernel de Linux. Un usuario sin privilegios podría especificar un metabúfer pequeño y ... • https://access.redhat.com/security/cve/CVE-2023-6238 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.2EPSS: 0%CPEs: 5EXPL: 0CVE-2023-5341 – Imagemagick: heap use-after-free in coders/bmp.c
https://notcve.org/view.php?id=CVE-2023-5341
19 Nov 2023 — A heap use-after-free flaw was found in coders/bmp.c in ImageMagick. Se encontró una falla de heap-use-after-free en coders/bmp.c en ImageMagick. handling problems and cases of missing or incomplete input sanitising may result in denial of service, memory disclosure or potentially the execution of arbitrary code if malformed image files are processed. • https://access.redhat.com/security/cve/CVE-2023-5341 • CWE-416: Use After Free •
CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0CVE-2023-48231 – Use-After-Free in win_close() in vim
https://notcve.org/view.php?id=CVE-2023-48231
16 Nov 2023 — Vim is an open source command line text editor. When closing a window, vim may try to access already freed window structure. Exploitation beyond crashing the application has not been shown to be viable. This issue has been addressed in commit `25aabc2b` which has been included in release version 9.0.2106. Users are advised to upgrade. • http://www.openwall.com/lists/oss-security/2023/11/16/1 • CWE-416: Use After Free •
CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0CVE-2023-48232 – Floating point Exception in adjust_plines_for_skipcol() in vim
https://notcve.org/view.php?id=CVE-2023-48232
16 Nov 2023 — Vim is an open source command line text editor. A floating point exception may occur when calculating the line offset for overlong lines and smooth scrolling is enabled and the cpo-settings include the 'n' flag. This may happen when a window border is present and when the wrapped line continues on the next physical line directly in the window border because the 'cpo' setting includes the 'n' flag. Only users with non-default settings are affected and the exception should only result in a crash. This issue h... • http://www.openwall.com/lists/oss-security/2023/11/16/1 • CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0CVE-2023-48233 – overflow with count for :s command in vim
https://notcve.org/view.php?id=CVE-2023-48233
16 Nov 2023 — Vim is an open source command line text editor. If the count after the :s command is larger than what fits into a (signed) long variable, abort with e_value_too_large. Impact is low, user interaction is required and a crash may not even happen in all situations. This issue has been addressed in commit `ac6378773` which has been included in release version 9.0.2108. Users are advised to upgrade. • http://www.openwall.com/lists/oss-security/2023/11/16/1 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0CVE-2023-48234 – overflow in nv_z_get_count in vim
https://notcve.org/view.php?id=CVE-2023-48234
16 Nov 2023 — Vim is an open source command line text editor. When getting the count for a normal mode z command, it may overflow for large counts given. Impact is low, user interaction is required and a crash may not even happen in all situations. This issue has been addressed in commit `58f9befca1` which has been included in release version 9.0.2109. Users are advised to upgrade. • http://www.openwall.com/lists/oss-security/2023/11/16/1 • CWE-190: Integer Overflow or Wraparound •