SUSE-SU-2020:3749-1 Security update for gcc7

This update for gcc7 fixes the following issues: - CVE-2020-13844: Added mitigation for aarch64 Straight Line Speculation issue bsc1172798 - Enable fortran for the nvptx offload compiler. - Update README.First-for.SuSE.packagers - avoid assembler errors with AVX512 gather and scatter instructions...

Microsoft Exchange Server Code Issue Vulnerability

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voicemail, email filtering and screening, and other features. A code issue vulnerability exists in Microsoft Exchange Server, which can be...

QEMU code issue vulnerability (CNVD-2021-39773)

QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. QEMU has a code issue vulnerability that can be exploited by an attacker to force an assertion error via QEMU's usb packet mapping to trigger a...

McAfee Endpoint Security Code Issue Vulnerability (CNVD-2020-66090)

McAfee Endpoint Security ENS is the United States McAfee McAfee company's set of framework for providing intelligent collaboration and advanced threat defense. The framework supports the entire threat defense lifecycle of real-time communications control and actionable threat forensics and so on....

Apple AirPort Base Station Code Issue Vulnerability

The Apple AirPort Base Station is a wireless router from Apple USA. A code issue vulnerability exists in Apple AirPort Base Station using firmware versions prior to 7.9.1. The vulnerability stems from an improper design or implementation during code development for a network system or product. No...

CyberArk Software CyberArk Privileged Session Manager Code Issue Vulnerability

CyberArk Software CyberArk Privileged Session Manager PSM is a software application for privileged session management from CyberArk Software, Israel. The software is a centralized portal that protects privileged users and accounts from accessing target systems, and it is a single solution for...

Foxit Reader and PhantomPDF Code Issue Vulnerability

Reader is a set of PDF document reader software . Foxit Reader is a PDF document reader . V8 is one of the open source JavaScript engine . mPDF is a use of PHP to write for the conversion of HTML into PDF files library . A code issue vulnerability exists in Foxit Reader and PhantomPDF versions...

MediaWiki Special:UserRights Code Issue Vulnerability

MediaWiki is a set of free and freely available web-based Wiki engines from the MediaWiki Wikimedia Foundation in the United States. It can be used to deploy in-house knowledge management and content management systems. MediaWiki has a code issue vulnerability that can be exploited by attackers t...

MediaWiki code issue vulnerability (CNVD-2020-58046)

MediaWiki is a set of free and freely available web-based Wiki engines from the MediaWiki Wikimedia Foundation in the United States. It can be used to deploy in-house knowledge management and content management systems. A code issue vulnerability exists in MediaWiki. The vulnerability stems from ...

Acronis Cyber Backup code issue vulnerability

Acronis Cyber Backup is a data backup product from Acronis Singapore. Acronis Cyber Backup has a code issue vulnerability that can be exploited by attackers to conduct SSRF attack...

SCADAPack 7x Remote Connect Code Issue Vulnerability

SCADAPack 7x RemoteConnect is a software tool for users to monitor, configure, program, and debug the SCADAPack 470, 474, 570, 574, and 575 Smart RTUs. A code issue vulnerability exists in SCADAPack 7x Remote Connect 3.6.3.574 and earlier versions. An attacker can exploit the vulnerability to...

PostgreSQL Code Issues Vulnerabilities

PostgreSQL is a free object-relational database management system from the PostgreSQL organization. The system supports most of the SQL standards and provides many other features, such as foreign keys, triggers, views, and so on. A code issue vulnerability exists in PostgreSQL. The vulnerability...

Prometheus Blackbox Exporter Code Issue Vulnerability

Prometheus Blackbox Exporter is a blackbox exporter released by the Linux Foundation in the United States that allows blackbox probing of endpoints over HTTP, HTTPS, DNS, TCP and ICMP. A code issue vulnerability exists in Prometheus Blackbox Exporter 0.17.0 and earlier versions. The vulnerability...

Pivotal Software Spring Integration Code Issue Vulnerability

Pivotal Software Spring Integration is an enterprise integration pattern from Pivotal Software, USA. The product is designed to enable lightweight messaging in Spring-based applications and supports integration with tail systems via declarative adapters. A code issue vulnerability exists in Pivot...

Red Hat CloudForms Code Issue Vulnerability

Red Hat CloudForms is a hybrid infrastructure management platform from Red Hat, Inc. The platform provides deployment, management, and other capabilities across virtual machines, clouds, containers, and physical infrastructure. A code issue vulnerability exists in Red Hat CloudForms. The...

IBM UrbanCode Deploy Code Issue Vulnerability

IBM UrbanCode Deploy UCD is a set of application automation deployment tools from IBM in the United States. The tool is based on an application deployment automation management information model, and through remote agent technology, to realize the complex application in different environments, su...

Bitwarden Server Code Issue Vulnerability

Bitwarden is a U.S. Bitwarden company's open source password manager. Bitwarden server is Bitwarden's core infrastructure back-end server. A code issue vulnerability exists in Bitwarden Server version 1.35.1. A remote attacker can exploit this vulnerability to obtain sensitive data with the help ...

TYPO3 Backend User Interface component code issue vulnerability (CNVD-2021-26155)

TYPO3 is a free and open source content management system framework CMS/CMF from the TYPO3 Association in Switzerland.Backend User Interface is one of the backend user interface components. A code issue vulnerability exists in the Backend User Interface component in TYPO3 versions 9.0.0 through...

IBM Security Key Lifecycle Manager Code Issue Vulnerability

IBM Security Key Lifecycle Manager Tivoli Key Lifecycle Manager is a set of key lifecycle management software from IBM in the United States. The software provides key storage, key maintenance and key lifecycle management for storage devices. A code issue vulnerability exists in IBM Security Key...

Umbraco Forms Code Issue Vulnerability

Umbraco Forms is a form builder. A security vulnerability exists in Umbraco Forms all versions. An attacker can exploit the vulnerability to upload arbitrary types of files...