Linux Distros Unpatched Vulnerability : CVE-2018-19532

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A NULL pointer dereference vulnerability exists in the function PdfTranslator::setTarget in pdftranslator.cpp of PoDoFo 0.9.6, while creating the PdfXObject, as...

Linux Distros Unpatched Vulnerability : CVE-2019-19532

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel before 5.3.9, there are multiple out-of-bounds write bugs that can be caused by a malicious USB device in the Linux kernel HID drivers, aka...

Fix of CVE: CVE-2020-25211, CVE-2020-25656, CVE-2019-19532, CVE-2020-29661

CKSIX-277: CVE-2020-29661: tty: Fix -pgrp locking in tiocspgrp - CKSIX-277: CVE-2020-25656: vt: keyboard, extend funcbuflock to readers - CKSIX-277: CVE-2020-25656: tty/vt: fix write/write race in ioctlKDSKBSENT handler - CKSIX-277: CVE-2020-25656: vt: keyboard, simplify vtkdgkbsent - CKSIX-277:...

RHEL 7 : kernel (RHSA-2021:2164)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2164 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Integer overflow in IntelR...

SUSE: Security Advisory (SUSE-SU-2019:3379-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[ASA-202101-36] podofo: multiple issues

Arch Linux Security Advisory ASA-202101-36 ========================================== Severity: Medium Date : 2021-01-20 CVE-ID : CVE-2017-8054 CVE-2018-5783 CVE-2018-11254 CVE-2018-11255 CVE-2018-11256 CVE-2018-12982 CVE-2018-14320 CVE-2018-19532 CVE-2018-20751 CVE-2019-9199 CVE-2019-9687 Packag...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2020-5709)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5709 advisory. - HID: hiddev: do cleanup in failure of opening a device Hillf Danton Orabug: 31206362 CVE-2019-19527 - HID: hiddev: avoid opening a disconnected...

Unbreakable Enterprise kernel security update

2.6.39-400.322.1 - ipvs: reset ipvs pointer in netns Julian Anastasov Orabug: 31027196 - ipvs: prefer NETDEVDOWN event to free cached dsts Julian Anastasov Orabug: 31027196 - HID: hiddev: do cleanup in failure of opening a device Hillf Danton Orabug: 31206362 CVE-2019-19527 - HID: hiddev: avoid...

Unbreakable Enterprise kernel security update

4.14.35-1902.302.2 - KVM: x86: Protect pmuintel.c from Spectre-v1/L1TF attacks Marios Pomonis Orabug: 31191092 - KVM: x86: Protect MSR-based index computations in fixedmsrtosegunit from Spectre-v1/L1TF attacks Marios Pomonis Orabug: 31191092 - KVM: x86: Protect x86decodeinsn from Spectre-v1/L1TF...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1536)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1396)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3389-1)

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2019-16746: There was an issue in net/wireless/nl80211.c where the kernel did not check the length of variable elements in a beacon head, leading to a buffer...

CVE-2019-19532

CVE-2019-19532 affects the Linux kernel up to 5.3.8, with multiple out-of-bounds write bugs triggered by a malicious USB device in HID drivers (e.g., HID-AXFF, HID-EMSFF, HID-LOGITECH-HIDPP, HID-MICROSOFT, HID-SONY, HID-TMFF, HID-ZPFF, and others). The root cause is out-of-bounds writes in HID dr...

Fedora Update for mingw-podofo FEDORA-2019-023ea18e20

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 29 : mingw-podofo / podofo (2018-6b9320d9c9)

The remote Fedora 29 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2018-6b9320d9c9 advisory. This update fixes multiple security vulnerabilities: CVE-2018-5783, CVE-2018-11254, CVE-2018-11255, CVE-2018-11256, CVE-2018-12982, CVE-2018-14320,...

CVE-2018-19532

A NULL pointer dereference vulnerability exists in the function PdfTranslator::setTarget in pdftranslator.cpp of PoDoFo 0.9.6, while creating the PdfXObject, as demonstrated by podofoimpose. It allows an attacker to cause Denial of Service...

CVE-2018-19532

PoDoFo 0.9.6 is affected by a NULL pointer dereference in PdfTranslator::setTarget() when creating PdfXObject (CVE-2018-19532). Exploitation leads to Denial of Service. Upstream fix exists in PoDoFo 0.9.7; affected systems should upgrade to 0.9.7 or apply vendor patches. Connected advisories (Arc...