August 2023 – Page 213 – WindowsTechs.com

CVE-2020-21722 (ogg_video_tools)

Posted on August 22, 2023 by National Vulnerability Database

Buffer Overflow vulnerability in oggvideotools 0.9.1 allows remote attackers to run arbitrary code via opening of crafted ogg file. Continue reading CVE-2020-21722 (ogg_video_tools)→

CVE-2020-21710 (ghostscript)

Posted on August 22, 2023 by National Vulnerability Database

A divide by zero issue discovered in eps_print_page in gdevepsn.c in Artifex Software GhostScript 9.50 allows remote attackers to cause a denial of service via opening of crafted PDF file. Continue reading CVE-2020-21710 (ghostscript)→

CVE-2020-21699 (tengine)

Posted on August 22, 2023 by National Vulnerability Database

The web server Tengine 2.2.2 developed in the Nginx version from 0.5.6 thru 1.13.2 is vulnerable to an integer overflow vulnerability in the nginx range filter module, resulting in the leakage of potentially sensitive information triggered by specially… Continue reading CVE-2020-21699 (tengine)→

CVE-2020-21687 (netwide_assembler)

Posted on August 22, 2023 by National Vulnerability Database

Buffer Overflow vulnerability in scan function in stdscan.c in nasm 2.15rc0 allows remote attackers to cause a denial of service via crafted asm file. Continue reading CVE-2020-21687 (netwide_assembler)→

CVE-2020-21685 (netwide_assembler)

Posted on August 22, 2023 by National Vulnerability Database

Buffer Overflow vulnerability in hash_findi function in hashtbl.c in nasm 2.15rc0 allows remote attackers to cause a denial of service via crafted asm file. Continue reading CVE-2020-21685 (netwide_assembler)→

CVE-2020-21686 (netwide_assembler)

Posted on August 22, 2023 by National Vulnerability Database

A stack-use-after-scope issue discovered in expand_mmac_params function in preproc.c in nasm before 2.15.04 allows remote attackers to cause a denial of service via crafted asm file. Continue reading CVE-2020-21686 (netwide_assembler)→

CVE-2020-21583 (util-linux)

Posted on August 22, 2023 by National Vulnerability Database

An issue was discovered in hwclock.13-v2.27 allows attackers to gain escalated privlidges or execute arbitrary commands via the path parameter when setting the date. Continue reading CVE-2020-21583 (util-linux)→

CVE-2020-21679 (graphicsmagick)

Posted on August 22, 2023 by National Vulnerability Database

Buffer Overflow vulnerability in WritePCXImage function in pcx.c in GraphicsMagick 1.4 allows remote attackers to cause a denial of service via converting of crafted image file to pcx format. Continue reading CVE-2020-21679 (graphicsmagick)→

CVE-2020-21528 (netwide_assembler)

Posted on August 22, 2023 by National Vulnerability Database

A Segmentation Fault issue discovered in in ieee_segment function in outieee.c in nasm 2.14.03 and 2.15 allows remote attackers to cause a denial of service via crafted assembly file. Continue reading CVE-2020-21528 (netwide_assembler)→

CVE-2020-21490 (binutils)

Posted on August 22, 2023 by National Vulnerability Database

An issue was discovered in GNU Binutils 2.34. It is a memory leak when process microblaze-dis.c. This one will consume memory on each insn disassembled. Continue reading CVE-2020-21490 (binutils)→