CVE-2023-44078

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

FreeBSD : py39-unicorn -- sandbox escape and arbitrary code execution vulnerability (17083017-d993-43eb-8aaf-7138f4486d1c)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 17083017-d993-43eb-8aaf-7138f4486d1c advisory. - An issue was discovered in splitregion in uc.c in Unicorn Engine before 2.0.0-rc5. It allows local...

angr (>=9.0.4446 <=9.2.25), angr-management (>=9.0.4446 <=9.2.25) +13 more potentially affected by CVE-2021-44078 via unicorn (>=1.0.2 <=1.0.3)

unicorn PYPI version =1.0.2, =9.0.4446, =9.0.4446, =9.0.4446, =0.4.0, =4.1.1, =1.2.1, =0.0.3, =1.1.0, =1.4.4, =0.0.0, =0.1.0 Source cves: CVE-2021-44078 Source advisory: OSV:PYSEC-2021-868...

CVE-2021-44078

CVE-2021-44078 affects Unicorn Engine prior to 2.0.0-rc5. The issue is in the split_region path of uc.c (virtual memory manager) where a faulty comparison of GVA and GPA during uc_mem_map_ptr frees part of a claimed memory block, enabling a local attacker to escape the sandbox and execute arbitra...

CVE-2023-44078

...

CVE-2023-44078

CVE-2023-44078 entry is rejected/not used and does not represent an active vulnerability.