CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-2961
https://notcve.org/view.php?id=CVE-2023-2961
06 Jun 2023 — A segmentation fault flaw was found in the Advancecomp package. This may lead to decreased availability. • https://bugzilla.redhat.com/show_bug.cgi?id=2210768 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 2CVE-2022-35019
https://notcve.org/view.php?id=CVE-2022-35019
29 Aug 2022 — Advancecomp v2.3 was discovered to contain a segmentation fault. Se ha detectado que Advancecomp versión v2.3, contiene un fallo de segmentación • https://drive.google.com/file/d/1n1hltvw-kqpzZ50L6d7RGGNagwbUp0Z2/view?usp=sharing •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 2CVE-2022-35016
https://notcve.org/view.php?id=CVE-2022-35016
29 Aug 2022 — Advancecomp v2.3 was discovered to contain a heap buffer overflow. Se ha detectado que Advancecomp versión v2.3, contiene un desbordamiento del búfer de la pila • https://drive.google.com/file/d/1oWVhoJJih6-pgbvrZsx5oFUtv-vgR0fF/view?usp=sharing • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 2CVE-2022-35015
https://notcve.org/view.php?id=CVE-2022-35015
29 Aug 2022 — Advancecomp v2.3 was discovered to contain a heap buffer overflow via le_uint32_read at /lib/endianrw.h. Se ha detectado que Advancecomp versión v2.3, contiene un desbordamiento del búfer de la pila por medio de la función le_uint32_read en el archivo /lib/endianrw.h • https://drive.google.com/file/d/1pxNOlyl5mWXdVwkmCD4ZuXEPxI3PZAac/view?usp=sharing • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-35017
https://notcve.org/view.php?id=CVE-2022-35017
29 Aug 2022 — Advancecomp v2.3 was discovered to contain a heap buffer overflow. Se ha detectado que Advancecomp versión v2.3, contiene un desbordamiento del búfer de la pila • https://drive.google.com/file/d/13WAtJtCUBH4LW5MBulyuhLFq2HQq4e_Q/view?usp=sharing • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-35014 – Ubuntu Security Notice USN-5838-1
https://notcve.org/view.php?id=CVE-2022-35014
29 Aug 2022 — Advancecomp v2.3 contains a segmentation fault. Advancecomp versión v2.3, contiene un fallo de segmentación It was discovered that AdvanceCOMP did not properly manage memory while performing read operations on MNG file. If a user were tricked into opening a specially crafted MNG file, a remote attacker could possibly use this issue to cause AdvanceCOMP to crash, resulting in a denial of service. It was discovered that AdvanceCOMP did not properly manage memory while performing read operations on ZIP file. I... • https://drive.google.com/file/d/1mglfof2gR9Xoi5OWS9x0-jJ7cSIJA5i6/view?usp=sharing •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 2CVE-2022-35018 – Ubuntu Security Notice USN-5838-1
https://notcve.org/view.php?id=CVE-2022-35018
29 Aug 2022 — Advancecomp v2.3 was discovered to contain a segmentation fault. Se ha detectado que Advancecomp versión v2.3, contiene un fallo de segmentación It was discovered that AdvanceCOMP did not properly manage memory while performing read operations on MNG file. If a user were tricked into opening a specially crafted MNG file, a remote attacker could possibly use this issue to cause AdvanceCOMP to crash, resulting in a denial of service. It was discovered that AdvanceCOMP did not properly manage memory while perf... • https://drive.google.com/file/d/1ChqmPdrjId87582a-o5ogWyEI8goRVWJ/view?usp=sharing •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 2CVE-2022-35020 – Ubuntu Security Notice USN-5838-1
https://notcve.org/view.php?id=CVE-2022-35020
29 Aug 2022 — Advancecomp v2.3 was discovered to contain a heap buffer overflow via the component __interceptor_memcpy at /sanitizer_common/sanitizer_common_interceptors.inc. Se ha detectado que Advancecomp versión v2.3, contiene un desbordamiento del búfer de la pila por medio del componente __interceptor_memcpy en el archivo /sanitizer_common/sanitizer_common_interceptors.inc It was discovered that AdvanceCOMP did not properly manage memory while performing read operations on MNG file. If a user were tricked into openi... • https://drive.google.com/file/d/1ScTmAEmHSHvmyDnELYV1DzQTAAAm7XS9/view?usp=sharing • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 1CVE-2019-9210 – advancecomp: integer overflow in png_compress in pngex.cc
https://notcve.org/view.php?id=CVE-2019-9210
27 Feb 2019 — In AdvanceCOMP 2.1, png_compress in pngex.cc in advpng has an integer overflow upon encountering an invalid PNG size, which results in an attempted memcpy to write into a buffer that is too small. (There is also a heap-based buffer over-read.) En la versión 2.1 de AdvanceCOMP, png_compress en pngex.cc en advpng tiene un desbordamiento de enteros, al encontrarse con un tamaño de PNG inválido, lo que conduce a que un memcpy intente escribirse en un búfer que es demasiado pequeño. (Hay, también, una sobrelectu... • https://lists.debian.org/debian-lts-announce/2019/03/msg00004.html • CWE-125: Out-of-bounds Read CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 2CVE-2019-8383 – advancecomp: denial of service in function adv_png_unfilter_8 in lib/png.c
https://notcve.org/view.php?id=CVE-2019-8383
17 Feb 2019 — An issue was discovered in AdvanceCOMP through 2.1. An invalid memory address occurs in the function adv_png_unfilter_8 in lib/png.c. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file. Fue encontrado un problema en AdvanceCOMP hasta la versión 2.1. • https://access.redhat.com/errata/RHSA-2019:2332 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •