Lucene search
+L

122 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:48 p.m.39 views

K37121474: Binutils vulnerability CVE-2019-9073

Security Advisory Description An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in bfdelfslurpversiontables in elf.c. CVE-2019-9073 Impact There is no impact; F5 products are not affect...

5.5CVSS7.1AI score0.01097EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 5:25 a.m.6 views

SUSE CVE-2014-8639

Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird before 31.4, and SeaMonkey before 2.32 do not properly interpret Set-Cookie headers within responses that have a 407 aka Proxy Authentication Required status code, which allows remote HTTP proxy servers to conduct session...

6.8CVSS8.9AI score0.01902EPSS
Exploits0References14
SUSE CVE
SUSE CVE
added 2023/02/15 5:25 a.m.3 views

SUSE CVE-2014-8641

Use-after-free vulnerability in the WebRTC implementation in Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, and SeaMonkey before 2.32 allows remote attackers to execute arbitrary code via crafted track data...

7.5CVSS9.1AI score0.04158EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2023/02/15 4:14 a.m.5 views

SUSE CVE-2019-9072

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in setupgroup in elf.c...

5.5CVSS7.2AI score0.01159EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:14 a.m.3 views

SUSE CVE-2019-9071

An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a stack consumption issue in dcounttemplatesscopes in cp-demangle.c after many recursive calls...

5.5CVSS6.2AI score0.01813EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:14 a.m.4 views

SUSE CVE-2019-9076

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in elfreadnotes in elf.c...

5.5CVSS7.8AI score0.01228EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:14 a.m.3 views

SUSE CVE-2019-9077

An issue was discovered in GNU Binutils 2.32. It is a heap-based buffer overflow in processmipsspecific in readelf.c via a malformed MIPS option section...

5.3CVSS7.4AI score0.01976EPSS
Exploits1References17
SUSE CVE
SUSE CVE
added 2023/02/15 4:9 a.m.2 views

SUSE CVE-2019-14444

applyrelocations in readelf.c in GNU Binutils 2.32 contains an integer overflow that allows attackers to trigger a write access violation in byteputlittleendian function in elfcomm.c via an ELF file, as demonstrated by readelf...

3.3CVSS7.1AI score0.01481EPSS
Exploits1References17
SUSE CVE
SUSE CVE
added 2023/02/15 4:4 a.m.4 views

SUSE CVE-2020-1752

A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially...

7CVSS9.7AI score0.00535EPSS
Exploits0References54
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.4 views

PT-2023-18460 · Unknown · Cx-Motion-Mch

Name of the Vulnerable Software and Affected Versions: CX-Motion-MCH versions 2.32 and earlier Description: The issue is related to an access of uninitialized pointer vulnerability. If a user opens a specially crafted project file, it may lead to information disclosure and/or arbitrary code...

7.8CVSS7.5AI score0.002EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/01/11 12:0 a.m.3 views

Omron CX-Motion-MCH 缓冲区错误漏洞

Omron CX-Motion-MCH is an advanced motion application programming and configuration software from Omron Corporation Japan. A security vulnerability exists in Omron CX-Motion-MCH versions prior to v2.32 that stems from the inclusion of an uninitialized pointer vulnerability...

7.8CVSS7.3AI score0.002EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/11/03 12:0 a.m.46 views

SUSE SLED12: binutils / binutils-devel / binutils-gold / cross-ppc-binutils / etc (SUSE-SU-2021:3593-1)

The remote SUSE Linux SLED12 / SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3593-1 advisory. Update to binutils 2.37: The GNU Binutils sources now requires a C99 compiler and library to build. Support for the...

7.8CVSS7AI score0.02752EPSS
Exploits18References68
Prion
Prion
added 2021/11/01 10:15 p.m.14 views

Sql injection

DHIS 2 is an information system for data capture, management, validation, analytics and visualization. A SQL injection security vulnerability has been found in specific versions of DHIS2. This vulnerability affects the API endpoints for /api/trackedEntityInstances and api/events in DHIS2. The...

6.5CVSS8.9AI score0.00827EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/10/27 12:0 a.m.35 views

NewStart CGSL MAIN 6.02 : binutils Multiple Vulnerabilities (NS-SA-2021-0122)

The remote NewStart CGSL host, running version MAIN 6.02, has binutils packages installed that are affected by multiple vulnerabilities: - findabstractinstance in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32, allows remote attackers to cause a...

7.8CVSS6.9AI score0.02752EPSS
Exploits3References7
OpenVAS
OpenVAS
added 2021/05/27 12:0 a.m.19 views

Fedora: Security Advisory for glibc (FEDORA-2021-2ba993d6c5)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

2.5CVSS6.7AI score0.00374EPSS
Exploits0References2
OSV
OSV
added 2021/05/25 10:15 p.m.5 views

UBUNTU-CVE-2021-33574

The mqnotify function in the GNU C Library aka glibc versions 2.32 and 2.33 has a use-after-free. It may use the notification thread attributes object passed through its struct sigevent parameter after it has been freed by the caller, leading to a denial of service application crash or possibly...

9.8CVSS6.7AI score0.02898EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2021/05/21 12:0 a.m.6 views

PT-2021-5558 · Gnu +7 · Glibc +7

Name of the Vulnerable Software and Affected Versions: glibc versions 2.32 and 2.33 Description: The issue is related to the mq notify function in the GNU C Library, which has a use-after-free problem. This occurs when the function uses the notification thread attributes object, passed through it...

10CVSS7.7AI score0.13368EPSS
Exploits40References166
Prion
Prion
added 2021/02/26 11:15 p.m.39 views

Input validation

The iconv function in the GNU C Library aka glibc or libc6 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, and IBM1399 encodings, fails to advance the input state, which could lead to an infinite loop in applications, resulting in a deni...

2.1CVSS7.1AI score0.04006EPSS
Exploits1References7Affected Software3
CBLMariner
CBLMariner
added 2021/01/29 7:39 a.m.28 views

CVE-2020-35507 affecting package binutils 2.32-5

CVE-2020-35507 affecting package binutils 2.32-5. A patched version of the package is available...

5.5CVSS9.9AI score0.01234EPSS
Exploits1
CBLMariner
CBLMariner
added 2021/01/29 7:39 a.m.24 views

CVE-2020-35494 affecting package binutils 2.32-5

CVE-2020-35494 affecting package binutils 2.32-5. A patched version of the package is available...

6.1CVSS9.9AI score0.01074EPSS
Exploits1
Rows per page
Query Builder