CVE-2017-18326

CVE-2017-18326 affects Qualcomm Snapdragon mobile and Snapdragon Wear modem components (e.g., MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, SD 210/212/205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 636, SD 650/52, SD 800, ...

Fedora 29 : php-symfony3 (2018-8d3a9bdff1)

Version 3.4.20 2018-12-06 - security CVE-2018-19790 Security\Http detect bad redirect targets using backslashes @xabbuh - security CVE-2018-19789 Form Filter file uploads out of regular form types @nicolas-grekas - bug 29436 Cache Fixed Memcached adapter doClearto call flush raitocz - bug 29441...

Fedora 28 : xen (2018-a7ac26523d)

x86: mishandling of debug exceptions XSA-260, CVE-2018-8897 x86 vHPET interrupt injection errors XSA-261 1576089 qemu may drive Xen into unbounded loop XSA-262 ---- update to xen-4.10.1 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora updat...

Fedora 28 : php-symfony3 (2018-66547a8c14)

Version 3.4.20 2018-12-06 - security CVE-2018-19790 Security\Http detect bad redirect targets using backslashes @xabbuh - security CVE-2018-19789 Form Filter file uploads out of regular form types @nicolas-grekas - bug 29436 Cache Fixed Memcached adapter doClearto call flush raitocz - bug 29441...

Fedora 29 : php-symfony4 (2018-84a1f77d89)

Version 4.1.9 2018-12-06 - security CVE-2018-19790 Security\Http detect bad redirect targets using backslashes @xabbuh - security CVE-2018-19789 Form Filter file uploads out of regular form types @nicolas-grekas - bug 29436 Cache Fixed Memcached adapter doClearto call flush raitocz - bug 29441...

VBScript - VbsErase Reference Leak Use-After-Free

VBScript - VbsErase Reference Leak Use-After-Free There is an reference leak in Microsoft VBScript that can be turned into an use-after-free given sufficient time. The vulnerability has been confirmed in Internet Explorer on various Windows versions with the latest patches applied. Details:...

Microsoft Windows jscript!JsArrayFunctionHeapSort Out-Of-Bounds Write

Windows: out-of-bounds write in jscript!JsArrayFunctionHeapSort CVE-2018-8631 There is an out-of-bounds write vulnerability in jscript.dll in JsArrayFunctionHeapSort function. This vulnerability can be exploited through Internet Explorer or potentially through WPAD over local network. PoC:...

Microsoft Windows - jscript!JsArrayFunctionHeapSort Out-of-Bounds Write

Microsoft Windows - jscript!JsArrayFunctionHeapSort Out-of-Bounds Write function f0 function f1 f2.prototype = arguments; new f2; function f2 Array.prototype.sort.callthis, f0; f11, 2, 3; !-- ========================================================= Details: JsArrayFunctionHeapSort is called when...

WEM 4.6 Agents cannot communicate over External Trust

WEM Broker and WEM Agent are in different domains in different forests, A two-way External trust exists between these two domains. WEM Agents are unable to establish a connection to the WEM broker, they are not listed in the WEM console Administration Agents The WEM infrastructure debug log shows...

OnionShare File Overwrite and Information Disclosure Vulnerability

OnionShare is an open source file encryption transfer or sharing software developed by Brazilian software developer Micah Lee. A file overwrite and information disclosure vulnerability exists in the 'debugmode' function of the web/web.py file in OnionShare 1.3.1 and earlier versions, which can be...

EulerOS 2.0 SP3 : binutils (EulerOS-SA-2018-1400)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - binutils: integer overflow via an ELF file with corrupt dwarf1 debug information in libbfd library CVE-2018-7568 - binutils: integer underflow...

UBUNTU-CVE-2018-19960

The debugmode function in web/web.py in OnionShare through 1.3.1, when --debug is enabled, uses the /tmp/onionshareserver.log pathname for logging, which might allow local users to overwrite files or obtain sensitive information by using this pathname...

CVE-2018-19960

The debugmode function in web/web.py in OnionShare through 1.3.1, when --debug is enabled, uses the /tmp/onionshareserver.log pathname for logging, which might allow local users to overwrite files or obtain sensitive information by using this pathname...

DEBIAN-CVE-2018-19960

The debugmode function in web/web.py in OnionShare through 1.3.1, when --debug is enabled, uses the /tmp/onionshareserver.log pathname for logging, which might allow local users to overwrite files or obtain sensitive information by using this pathname...

SUSE-SU-2018:3911-2 Security update for tiff

This update for tiff fixes the following issues: Security issues fixed: - CVE-2018-12900: Fixed heap-based buffer overflow in the cpSeparateBufToContigBuf bsc1099257. - CVE-2018-18661: Fixed NULL pointer dereference in the function LZWDecode in the file tiflzw.c bsc1113672. - CVE-2018-18557: Fixe...

Microsoft VBScript rtFilter Out-Of-Bounds Read Exploit

There is an out-of-bounds vulnerability in Microsoft VBScript in rtFilter. The vulnerability has been confirmed in Internet Explorer on Windows 7 with the latest patches applied. vbscript: out-of-bounds read in rtFilter CVE-2018-8552 There is an out-of-bounds vulnerability in Microsoft VBScript...

Unspecified vulnerability in Joyent Node.js (CNVD-2019-42557)

Joyent Node.js is the United States Joyent company's set of web applications built on top of the Google V8 JavaScript engine platform. The platform is primarily used for building highly scalable applications and writing code that can handle tens of thousands of simultaneous connections to a singl...

Microsoft VBScript rtFilter Out-Of-Bounds Read

vbscript: out-of-bounds read in rtFilter CVE-2018-8552 There is an out-of-bounds vulnerability in Microsoft VBScript. The vulnerability has been confirmed in Internet Explorer on Windows 7 with the latest patches applied. PoC: Note that Page Heap might need to be enabled to observe the crash...

Intel DCI Policy Update - Lenovo Support US

No description provided...

Intel DCI Policy Update - US

Lenovo Security Advisory: LEN-23611 Potential Impact: Privilege escalation, information disclosure Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2018-3652 Summary Description: Intel is releasing Direct Connect Interface DCI policy update. Existing UEFI setting restrictions for...