GitLab

Created by: armorcodegithubpreprod[bot]

Findings for Container Security, Low, [TheRedHatter/javagoof:exploits/tomcat-rce/Dockerfile]:Out-of-bounds Read

Component Details

• Exploit Maturity: no-known-exploit
• Vulnerable Package: -
• Current Version: -
• Vulnerable Version(s): >*
• Vulnerable Path: >null

NVD Description

Note: Versions mentioned in the description apply to the upstream imagemagick package.

The IsPixelMonochrome function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3.0 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted file. NOTE: the vendor says "This is a Q64 issue and we do not support Q64."

References

• Debian Security Tracker
• GitHub Issue
• OSS security Advisory
• OSS security Advisory
• RedHat Bugzilla Bug
• Security Focus

Origin : null Type : null Image Id : null

Snyk Project Status: Active

---

---

Component Details

• Exploit Maturity: no-known-exploit
• Vulnerable Package: -
• Current Version: -
• Vulnerable Version(s): >*
• Vulnerable Path: >null

NVD Description

Note: Versions mentioned in the description apply to the upstream bluez package.

In BlueZ 5.42, an out-of-bounds read was identified in "packet_hexdump" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.

References

• Debian Security Tracker
• MISC
• OpenSuse Security Announcement
• Security Focus
• Ubuntu CVE Tracker

Origin : null Type : null Image Id : null

Snyk Project Status: Active

---

---

Component Details

• Exploit Maturity: no-known-exploit
• Vulnerable Package: -
• Current Version: -
• Vulnerable Version(s): >*
• Vulnerable Path: >null

NVD Description

Note: Versions mentioned in the description apply to the upstream tiff package.

In LibTIFF 4.0.7, the program processes BMP images without verifying that biWidth and biHeight in the bitmap-information header match the actual input, leading to a heap-based buffer over-read in bmp2tiff.

References

• Debian Security Tracker
• MISC
• Security Focus
• Ubuntu CVE Tracker
• Ubuntu Security Advisory

Origin : null Type : null Image Id : null

Snyk Project Status: Active

---

---

Component Details

• Exploit Maturity: no-known-exploit
• Vulnerable Package: -
• Current Version: -
• Vulnerable Version(s): >*
• Vulnerable Path: >null

NVD Description

Note: Versions mentioned in the description apply to the upstream libsepol package.

The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmap_match_any (called indirectly from cil_check_neverallow). This occurs because there is sometimes a lack of checks for invalid statements in an optional block.

References

• ADVISORY
• MISC
• MISC
• MISC

Origin : null Type : null Image Id : null

Snyk Project Status: Active

---

---

Component Details

• Exploit Maturity: no-known-exploit
• Vulnerable Package: -
• Current Version: -
• Vulnerable Version(s): >*
• Vulnerable Path: >null

NVD Description

Note: Versions mentioned in the description apply to the upstream pcre3 package.

libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454.

References

• ADVISORY
• ADVISORY
• CONFIRM
• CONFIRM
• FULLDISC
• FULLDISC
• MISC
• MISC
• MLIST

Origin : null Type : null Image Id : null

Snyk Project Status: Active

---

---

Component Details

• Exploit Maturity: no-known-exploit
• Vulnerable Package: -
• Current Version: -
• Vulnerable Version(s): >*
• Vulnerable Path: >null

NVD Description

Note: Versions mentioned in the description apply to the upstream binutils package.

A heap-based buffer over-read exists in the function d_expression_1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by c++filt.

References

• CONFIRM
• CVE Details
• Debian Security Tracker
• MISC
• MISC
• Security Focus
• Ubuntu CVE Tracker

Origin : null Type : null Image Id : null

Snyk Project Status: Active

---

---

Component Details

• Exploit Maturity: no-known-exploit
• Vulnerable Package: -
• Current Version: -
• Vulnerable Version(s): >*
• Vulnerable Path: >null

NVD Description

Note: Versions mentioned in the description apply to the upstream tiff package.

LibTIFF version 4.0.7 is vulnerable to a heap-based buffer over-read in tif_lzw.c resulting in DoS or code execution via a crafted bmp image to tools/bmp2tiff.

References

• Debian Security Tracker
• Gentoo Security Advisory
• MISC
• Security Focus
• Ubuntu CVE Tracker
• Ubuntu Security Advisory

Origin : null Type : null Image Id : null

Snyk Project Status: Active

---

---

Component Details

• Exploit Maturity: no-known-exploit
• Vulnerable Package: -
• Current Version: -
• Vulnerable Version(s): >*
• Vulnerable Path: >null

NVD Description

Note: Versions mentioned in the description apply to the upstream sqlite3 package.

** DISPUTED ** A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL query. NOTE: the vendor disputes the relevance of this report because a sqlite3.exe user already has full privileges (e.g., is intentionally allowed to execute commands). This report does NOT imply any problem in the SQLite library.

References

• ADVISORY
• MISC
• MISC

Origin : null Type : null Image Id : null

Snyk Project Status: Active

---

---