Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CVEs (2,251)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-21738 1Microsoft 3365 Apps OfficeOffice Long Term Servicing Channel Nov 21, 2024 Jan 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2023-21737 1Microsoft 4365 Apps OfficeOffice Long Term Servicing Channel+1 more Nov 21, 2024 Jan 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2023-21733 1Microsoft 6Windows 10 20h2 Windows 10 21h2Windows 10 22h2+3 more Nov 21, 2024 Jan 10, 2023 N/A· v4 7.0 HIGH· v3 N/A· v2 Windows Bind Filter Driver Elevation of Privilege Vulnerability
CVE-2023-21560 1Microsoft 15Windows 10 1607 Windows 10 1809Windows 10 20h2+12 more Nov 21, 2024 Jan 10, 2023 N/A· v4 6.6 MEDIUM· v3 N/A· v2 Windows Boot Manager Security Feature Bypass Vulnerability
CVE-2023-0051 1Vim 1Vim Nov 21, 2024 Jan 4, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1144.
CVE-2022-44430 1Google 1Android Apr 10, 2025 Jan 4, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.
CVE-2022-44429 1Google 1Android Apr 10, 2025 Jan 4, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.
CVE-2022-44428 1Google 1Android Apr 10, 2025 Jan 4, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.
CVE-2022-44427 1Google 1Android Apr 10, 2025 Jan 4, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.
CVE-2022-23547 1Pjsip 1Pjsip Nov 4, 2025 Dec 23, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. This issue is similar to GHSA-9pfh-r8x4-w26w. Possi...Show more PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. This issue is similar to GHSA-9pfh-r8x4-w26w. Possible buffer overread when parsing a certain STUN message. The vulnerability affects applications that uses STUN including PJNATH and PJSUA-LIB. The patch is available as commit in the master branch.Show less
CVE-2022-43602 2Debian Openimageio 2Debian Linux Openimageio Nov 21, 2024 Dec 22, 2022 N/A· v4 8.1 HIGH· v3 N/A· v2 Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker ca...Show more Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability arises when the `ymax` variable is set to 0xFFFF and `m_spec.format` is `TypeDesc::UINT8`Show less
CVE-2022-43601 2Debian Openimageio 2Debian Linux Openimageio Nov 21, 2024 Dec 22, 2022 N/A· v4 8.1 HIGH· v3 N/A· v2 Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker ca...Show more Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability arises when the `ymax` variable is set to 0xFFFF and `m_spec.format` is `TypeDesc::UINT16`Show less
CVE-2022-43600 2Debian Openimageio 2Debian Linux Openimageio Nov 21, 2024 Dec 22, 2022 N/A· v4 8.1 HIGH· v3 N/A· v2 Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker ca...Show more Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability arises when the `xmax` variable is set to 0xFFFF and `m_spec.format` is `TypeDesc::UINT16`Show less
CVE-2022-43599 2Debian Openimageio 2Debian Linux Openimageio Nov 21, 2024 Dec 22, 2022 N/A· v4 8.1 HIGH· v3 N/A· v2 Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker ca...Show more Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability arises when the `xmax` variable is set to 0xFFFF and `m_spec.format` is `TypeDesc::UINT8`Show less
CVE-2022-43598 2Debian Openimageio 2Debian Linux Openimageio Nov 21, 2024 Dec 22, 2022 N/A· v4 8.1 HIGH· v3 N/A· v2 Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to arbitrary code execution....Show more Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to arbitrary code execution. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability arises when the `m_spec.format` is `TypeDesc::UINT16`.Show less
CVE-2022-43597 2Debian Openimageio 2Debian Linux Openimageio Nov 21, 2024 Dec 22, 2022 N/A· v4 8.1 HIGH· v3 N/A· v2 Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to arbitrary code execution....Show more Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to arbitrary code execution. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability arises when the `m_spec.format` is `TypeDesc::UINT8`.Show less
CVE-2022-41838 2Debian Openimageio 2Debian Linux Openimageio Nov 21, 2024 Dec 22, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A code execution vulnerability exists in the DDS scanline parsing functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially-crafted .dds can lead to a heap buffer overflow. An attacker can provide a maliciou...Show more A code execution vulnerability exists in the DDS scanline parsing functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially-crafted .dds can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.Show less
CVE-2022-41794 2Debian Openimageio 2Debian Linux Openimageio Nov 21, 2024 Dec 22, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A heap based buffer overflow vulnerability exists in the PSD thumbnail resource parsing code of OpenImageIO 2.3.19.0. A specially-crafted PSD file can lead to arbitrary code execution. An attacker can provide a malicious...Show more A heap based buffer overflow vulnerability exists in the PSD thumbnail resource parsing code of OpenImageIO 2.3.19.0. A specially-crafted PSD file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.Show less
CVE-2022-41639 2Debian Openimageio 2Debian Linux Openimageio Nov 21, 2024 Dec 22, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A heap based buffer overflow vulnerability exists in tile decoding code of TIFF image parser in OpenImageIO master-branch-9aeece7a and v2.3.19.0. A specially-crafted TIFF file can lead to an out of bounds memory corrupti...Show more A heap based buffer overflow vulnerability exists in tile decoding code of TIFF image parser in OpenImageIO master-branch-9aeece7a and v2.3.19.0. A specially-crafted TIFF file can lead to an out of bounds memory corruption, which can result in arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.Show less
CVE-2022-23537 2Debian Teluu 2Debian Linux Pjsip Nov 4, 2025 Dec 20, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. Buffer overread is possible when parsing a speciall...Show more PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. Buffer overread is possible when parsing a specially crafted STUN message with unknown attribute. The vulnerability affects applications that uses STUN including PJNATH and PJSUA-LIB. The patch is available as a commit in the master branch (2.13.1).Show less

Previous 1...878889...113 Next