USN-6557-1 vim vulnerabilities

It was discovered that Vim could be made to dereference invalid memory. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. CVE-2022-1725 It was discovered that Vim could be made to recurse...

Vulnerability of the nft_dynset_init() function (net/netfilter/nft_dynset.c) in Linux kernel, allowing a hacker to trigger a service failure

The vulnerability of the nftdynsetinit function net/netfilter/nftdynset.c in the Linux operating system kernel is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the nft_inner.c component in the Linux operating system’s network interface layer allows a hacker to trigger a service failure or increase their privileges.

The vulnerability of the nftinner.c component in the Linux operating system’s network interface layer is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause service failures or increase their privileges...

sysstat security and bug fix update

11.7.3-11.0.1 - add mpstat -H option to also display physically hotplugged vCPUs Orabug: 34683071 11.7.3-11 - fix the arithmetic overflow in allocatestructures that is still possible on some 32 bit systems CVE-2023-33204 11.7.3-10 - Fix incorrect CPU usage on ALL CPU field for iowait in mpstat...

There is potential underflow and overflow issues in arithmetic operations in the _getRewardsSinceLastClaim function

Lines of code Vulnerability details Impact There are potential underflow and overflow issues in arithmetic operations. Not being able to verify that subtracting lastClaimedValue from shareDataid.shareHolderRewardsPerTokenScaled would result in a negative value. This could lead to affecting the...

Oracle Linux 9 : gmp (ELSA-2023-6661)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6661 advisory. 1:6.2.0-13 - Fix: previous commit removed one function from the library and thus broke the ABI - function gmpnpreinvdivrem1 should now not be removed Related:...

The staker could silently lose all their previously deposited assets when revert TokenTransferFailed() is called

Lines of code Vulnerability details Impact The staker could silently lose all their deposited assets in the NodeDelegator.sol function when they time to transfer their assets. This could happen when the staker owns assets in the Eigen but it is not enough to be transferred when the calculated...

kernel: speculative pointer dereference in do_prlimit() in kernel/sys.c

A vulnerabilty was found in Linux Kernel, where a speculative pointer dereference problem exists in the Linux Kernel on the doprlimit function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents...

kernel: speculative pointer dereference in do_prlimit() in kernel/sys.c

A vulnerabilty was found in Linux Kernel, where a speculative pointer dereference problem exists in the Linux Kernel on the doprlimit function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents...

The vulnerability of the application programming interface for SANE scanning devices allows a hacker to trigger a service failure.

The vulnerability of the application programming interface for SANE scanning devices is related to pointer arithmetic errors. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the setup_group function in the elf.c component of the GNU Binutils development environment allows a hacker to trigger a service failure.

The vulnerability of the setupgroup function in the elf.c component of the GNU Binutils development environment is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker to cause a service failure...

The vulnerability of the elf32-i386.c and elf64-x86-64.c components of the GNU Binutils development environment allows a hacker to trigger a service failure.

The vulnerability of the elf32-i386.c and elf64-x86-64.c components of the GNU Binutils development environment is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker to trigger a service failure using a specially created ELF file...

The vulnerability of the res_query function in the GNU C Library’s system library allows a attacker to cause a service failure.

The vulnerability of the resquery function in the GNU C Library’s system library is related to pointer arithmetic errors. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

The vulnerability of the `scan_unit_for_symbols` function in the `dwarf2.c` component of the GNU Binutils development environment allows a hacker to trigger a service failure.

The vulnerability of the scanunitforsymbols function in the dwarf2.c component of the GNU Binutils development environment is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker who operates remotely to trigger a service failure using a specially created ELF fil...

The vulnerability of the dwarf2.c component in the GNU Binutils development environment allows a hacker to trigger a service failure.

The vulnerability of the dwarf2.c component in the GNU Binutils development environment is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker, operating remotely, to trigger a service failure using a specially created ELF file...

The vulnerability of the `read_formatted_entries` function in the `dwarf2.c` component of the GNU Binutils development environment allows a hacker to induce a service failure.

The vulnerability of the readformattedentries function in the dwarf2.c component of the GNU Binutils development environment is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker to cause a service failure through the use of a specially created ELF file...

The vulnerability of the coff_slurp_reloc_table function in the coffcode.h component of the GNU Binutils development environment allows a attacker to trigger a service failure.

The vulnerability of the coffslurpreloctable function in the coffcode.h component of the GNU Binutils development environment is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker to cause service failures remotely...

The vulnerability of the `concat_filename` function in the `dwarf2.c` component of the GNU Binutils development environment allows a hacker to induce a service failure.

The vulnerability of the concatfilename function in the dwarf2.c component of the GNU Binutils development environment is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker to cause a service failure remotely...

The vulnerability of the /bfd/pef.c component of the GNU Binutils development environment allows a hacker to trigger a service failure.

The vulnerability of the /bfd/pef.c component of the GNU Binutils development environment is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker, operating remotely, to cause a service failure through the use of a specially created file...

The absence of sanity checks in the MinterContract#mintAndAuction() function can lead to avoidable error scenarios.

Lines of code Vulnerability details Impact The setCollectionCosts function within the MinterContract is utilized to establish the collection costs and sales model for an upcoming collection sale. As outlined in the documentation, the expectation is that one token can be minted and auctioned durin...