Moderate: Red Hat Security Advisory: sysstat security and bug fix update

An update for sysstat is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Moderate: sysstat security and bug fix update

The sysstat packages provide the sar and iostat commands. These commands enable system monitoring of disk, network, and other I/O activity. Security Fixes: sysstat: arithmetic overflow in allocatestructures on 32 bit systems CVE-2022-39377 For more details about the security issues, including the...

CVE-2023-0458

A vulnerabilty was found in Linux Kernel, where a speculative pointer dereference problem exists in the Linux Kernel on the doprlimit function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents. Mitigation...

Unbounded Loop in DNS Name Encoder Library

Lines of code Vulnerability details Impact The unchecked keyword disables overflow and underflow checks for arithmetic operations, which can cause unexpected behavior if the loop is not properly bounded. In this specific case, the loop is not properly bounded, which can cause the loop to run...

Arithmetic Overflow in hexStringToBytes32 Function

Lines of code Vulnerability details Impact The vulnerability in the hexStringToBytes32 function can lead to an arithmetic overflow if the length of the hex-encoded string is odd, the loop that reads the hex-encoded string has a condition that checks for the last index, but the index is incremente...

CVE-2023-0458

A speculative pointer dereference problem exists in the Linux Kernel on the doprlimit function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents. We recommend upgrading past version 6.1.8 or...

CVE-2023-0458

A speculative pointer dereference problem exists in the Linux Kernel on the doprlimit function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents. We recommend upgrading past version 6.1.8 or...

UBUNTU-CVE-2023-0458

A speculative pointer dereference problem exists in the Linux Kernel on the doprlimit function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents. We recommend upgrading past version 6.1.8 or...

Null pointer dereference

A speculative pointer dereference problem exists in the Linux Kernel on the doprlimit function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents. We recommend upgrading past version 6.1.8 or...

CVE-2023-0458

CVE-2023-0458 describes a speculative pointer dereference in the Linux kernel’s do_prlimit() path. The vulnerable path uses a controlled resource argument in pointer arithmetic for the rl im variable, enabling leakage of kernel contents when exploited. The Astra Linux security bulletin corroborat...

CVE-2023-0458 Spectre V1 Gadget in do_prlimit in the Linux Kernel

A speculative pointer dereference problem exists in the Linux Kernel on the doprlimit function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents. We recommend upgrading past version 6.1.8 or...

The vulnerabilities of the functions d2i_PKCS7(), d2i_PKCS7_bio(), or d2i_PKCS7_fp() implemented in the PKCS #7 standard of the OpenSSL cryptographic library allow a perpetrator to cause a service failure.

The vulnerability of the functions d2iPKCS7, d2iPKCS7bio, or d2iPKCS7fp implemented in the PKCS 7 standard of the OpenSSL cryptographic library is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

GHSA-MJQV-XHGM-GX8C IO FinNet tss-lib vulnerable to timing attack from non-constant time scalar arithmetic

io.finnet tss-lib before 2.0.0 can leak the lambda value of a private key via a timing side-channel attack because it relies on Go big.Int, which is not constant time for Cmp, modular exponentiation, or modular inverse. An example leak is in crypto/paillier/paillier.go. bnb-chain/tss-lib and...

CVE-2021-40507

An issue was discovered in the ALU unit of the OR1200 aka OpenRISC 1200 processor 2011-09-10 through 2015-11-11. The overflow flag is not being updated correctly for the subtract instruction, which results in an incorrect value in the overflow flag. Any software that relies on this flag may...

OR1200 授权问题漏洞

OR1200 is an OpenRISC 1200 implementation of the OpenRISC open source. A security vulnerability exists in OR1200 that stems from the ALU unit not updating the overflow flags for the msb and mac instructions, resulting in incorrect values in the overflow flags...

OR1200 授权问题漏洞

OR1200 is an OpenRISC 1200 implementation of the OpenRISC open source. A security vulnerability exists in OR1200 that stems from the overflow flag of a subtraction instruction in an ALU unit not being updated correctly, resulting in an incorrect value in the overflow flag...

OpenRISC mor1kx 安全漏洞

mor1kx is an OpenRISC 1000 processor IP core open-sourced by OpenRISC. A security vulnerability exists in OpenRISC mor1kx that stems from the subtraction instruction feed flags of the ALU unit not being updated correctly, resulting in an incorrect value for the feed flags...

PT-2023-12377 · Unknown · Openrisc Mor1Kx

Name of the Vulnerable Software and Affected Versions: OpenRISC mor1kx processor affected versions not specified Description: An issue was discovered in the ALU unit of the OpenRISC mor1kx processor, where the carry flag is not being updated correctly for the subtract instruction. This results in...

The vulnerability of the rmacinstring function in the editing and reproduction tools for PCAP files, Tcpreplay, allows a hacker to cause a service failure.

The vulnerability of the rmacinstring function in the PCAP-file editing and reproduction utility Tcpreplay is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker to cause service interruptions remotely...

Logic for RescueTokens is incorrect for muteTokens

Lines of code Vulnerability details Proof of Concept The logic for RescueTokens doesn't take into account the reward remainders. I wanted to write a POC but I'm in a bit of a time crunch. So, imagine the following situation: totalRewards = 100, and staker A, B the only stakers staked for the firs...