Log

CVE-2019-7637 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in SDL_FillRect in video/SDL_surface.c.
References
+ https://bugzilla.libsdl.org/show_bug.cgi?id=4497
+ https://discourse.libsdl.org/t/vulnerabilities-found-in-libsdl-1-2-15-and-sdl2/25720
+ https://hg.libsdl.org/SDL/rev/9b0e5c555c0f
Notes
CVE-2019-7638 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Map1toN in video/SDL_pixels.c.
References
+ https://bugzilla.libsdl.org/show_bug.cgi?id=4500
+ https://discourse.libsdl.org/t/vulnerabilities-found-in-libsdl-1-2-15-and-sdl2/25720
+ https://hg.libsdl.org/SDL/rev/19d8c3b9c251
Notes
CVE-2019-7653 created at 25 Sep 2019 19:31:40
Severity
+ Low
Remote
+ Local
Type
+ Arbitrary code execution
Description
+ The Debian python-rdflib-tools 4.2.2-1 package for RDFLib 4.2.2 has CLI tools that can load Python modules from the current working directory, allowing code injection, because "python -m" looks in this directory, as demonstrated by rdf2dot. This issue is specific to use of the debian/scripts directory.
References
+ https://bugs.debian.org/921751
Notes
CVE-2019-7663 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Denial of service
Description
+ An Invalid Address dereference was discovered in TIFFWriteDirectoryTagTransferfunction in libtiff/tif_dirwrite.c in LibTIFF 4.0.10, affecting the cpSeparateBufToContigBuf function in tiffcp.c. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted tiff file.
References
+ https://gitlab.com/libtiff/libtiff/commit/802d3cbf3043be5dce5317e140ccb1c17a6a2d39
+ https://gitlab.com/libtiff/libtiff/merge_requests/60
Notes
+ This is different from CVE-2018-12900.
CVE-2019-7664 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Local
Type
+ Denial of service
Description
+ In elfutils 0.175, a negative-sized memcpy is attempted in elf_cvt_note in libelf/note_xlate.h because of an incorrect overflow check. Crafted elf input causes a segmentation fault, leading to denial of service (program crash).
References
+ https://sourceware.org/bugzilla/show_bug.cgi?id=24084
Notes
CVE-2019-7665 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Local
Type
+ Denial of service
Description
+ In elfutils 0.175, a heap-based buffer over-read was discovered in the function elf32_xlatetom in elf32_xlatetom.c in libelf. A crafted ELF input can cause a segmentation fault leading to denial of service (program crash) because ebl_core_note does not reject malformed core file notes.
References
+ https://sourceware.org/ml/elfutils-devel/2019-q1/msg00049.html
+ https://sourceware.org/bugzilla/show_bug.cgi?id=24089
Notes
CVE-2019-7733 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Denial of service
Description
+ In Live555 0.95, a setup packet can cause a memory leak leading to DoS because, when there are multiple instances of a single field (username, realm, nonce, uri, or response), only the last instance can ever be freed.
References
+ https://github.com/rgaufman/live555/issues/21
Notes
CVE-2019-8337 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Remote
Type
+ Certificate verification bypass
Description
+ In msmtp 1.8.2, when tls_trust_file has its default configuration, certificate-verification results are not properly checked.
References
+ https://marlam.de/msmtp/news/
+ https://gitlab.marlam.de/marlam/msmtp/commit/a81d0a5126304f9f8b29a75d058044dc67d07663
Notes
CVE-2019-8341 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Content spoofing
Description
+ An issue was discovered in Jinja2 2.10. The from_string function is prone to Server Side Template Injection (SSTI) where it takes the "source" parameter as a template object, renders it, and then returns it. The attacker can exploit it with {{INJECTION COMMANDS}} in a URI.
References
+ https://github.com/JameelNabbo/Jinja2-Code-execution
+ https://www.exploit-db.com/exploits/46386
Notes
CVE-2019-8343 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Local
Type
+ Arbitrary code execution
Description
+ In Netwide Assembler (NASM) 2.14.02, there is a use-after-free in paste_tokens in asm/preproc.c.
References
+ https://bugzilla.nasm.us/show_bug.cgi?id=3392556
Notes