Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflo…

Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, m…

Multiple off-by-one errors in Nagios Core 3.5.1, 4.0.2, and earlier, and Icinga before 1.8.5, 1…

Off-by-one error in the read_token_word function in parse.y in GNU Bash through 4.3 bash43-026 …

GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability. This vulnerability allows…

A security issue in nginx resolver was identified, which might allow an attacker who is able to…

The fix for CVE-2023-24998 was incomplete for Apache Tomcat 11.0.0-M2 to 11.0.0-M4, 10.1.5 to 1…

A Buffer Overflow issue was discovered in Kamailio before 4.4.7, 5.0.x before 5.0.6, and 5.1.x …

Off-by-one error in the snmpHandleUdp function in snmp_core.cc in Squid 2.x and 3.x, when an SN…

Multiple off-by-one errors in the (1) jpc_dec_cp_setfromcox and (2) jpc_dec_cp_setfromrgn funct…

Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to …

Off-by-one error in the __gconv_translit_find function in gconv_trans.c in GNU C Library (aka g…

Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote attackers…

Off-by-one error in the jpc_dec_process_sot function in JasPer 1.900.1 and earlier allows remot…

Off-by-one error in the GpFont::SetData function in gdiplus.dll in Microsoft GDI+ on Windows XP…

Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 up to 0.9.7l, and 0.9.…

Off-by-one error in the xlog function of mountd in the Linux NFS utils package (nfs-utils) befo…

The Quagga BGP daemon (bgpd) prior to version 1.2.3 can overrun internal BGP code-to-string con…

Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote …

Off-by-one error in the PyLocale_strxfrm function in Modules/_localemodule.c for Python 2.4 and…

ntpq in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a de…

Off-by-one error in the inet_network function in libbind in ISC BIND 9.4.2 and earlier, as used…

Multiple buffer overflows in Gaim 0.75 allow remote attackers to cause a denial of service and …

Off-by-one error in the ppscan function (preproc.c) in Netwide Assembler (NASM) 2.02 allows con…

Multiple off-by-one errors in the WW8DopTypography::ReadFromMem function in oowriter in OpenOff…

Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to ca…

Off-by-one buffer overflow in the sock_gets function in sockhelp.c for ATPhttpd 0.4b and earlie…

Heap-based buffer overflow in the ares_create_query function in c-ares 1.x before 1.12.0 allows…

Off-by-one error in the mod_ssl Certificate Revocation List (CRL) verification callback in Apac…

cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote…

Off-by-one error in the phar_parse_pharfile function in ext/phar/phar.c in PHP before 5.6.30 an…

Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attacker…

Off-by-one error in certain versions of xfstt allows remote attackers to read potentially sensi…

An issue was discovered in Squid through 4.7. When Squid is parsing ESI, it keeps the ESI eleme…

Off-by-one buffer overflow in _xlate_ascii_write() in ProFTPD 1.2.7 through 1.2.9rc2p allows lo…

Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other p…

Off-by-one error in coders/wpg.c in ImageMagick allows remote attackers to have unspecified imp…

The tt_face_load_hdmx function in truetype/ttpload.c in FreeType before 2.5.4 does not establis…

Off-by-one error in the exif_convert_utf16_to_utf8 function in exif-entry.c in the EXIF Tag Par…

An issue was discovered in libX11 through 1.6.5. The function XListExtensions in ListExt.c is v…