3656 matches found
GHSA-XW5J-GV2G-MJM2 Miscompilation in cortex-m-rt 0.7.1 and 0.7.2
Version 0.7.1 of the cortex-m-rt crate introduced a regression causing the stack to NOT be eight-byte aligned prior to calling main or any other specified entrypoint, violating the stack ABI of AAPCS32, the default ABI used by all Cortex-M targets. This regression is also present in version 0.7.2...
Miscompilation in cortex-m-rt 0.7.1 and 0.7.2
Version 0.7.1 of the cortex-m-rt crate introduced a regression causing the stack to NOT be eight-byte aligned prior to calling main or any other specified entrypoint, violating the stack ABI of AAPCS32, the default ABI used by all Cortex-M targets. This regression is also present in version 0.7.2...
Miscompilation in cortex-m-rt 0.7.1 and 0.7.2
Version 0.7.1 of the cortex-m-rt crate introduced a regression causing the stack to NOT be eight-byte aligned prior to calling main or any other specified entrypoint, violating the stack ABI of AAPCS32, the default ABI used by all Cortex-M targets. This regression is also present in version 0.7.2...
CVE-2022-45142
The fix for CVE-2022-3437 included changing memcmp to be constant time and a workaround for a compiler bug by adding "!= 0" comparisons to the result of memcmp. When these patches were backported to the heimdal-7.7.1 and heimdal-7.8.0 branches and possibly other branches a logic inversion sneaked...
CVE-2022-41342
Improper buffer restrictions in the IntelR C++ Compiler Classic before version 2021.7.1 for some IntelR oneAPI Toolkits before version 2022.3.1 may allow a privileged user to potentially enable escalation of privilege via local access...
CVE-2022-41342
Improper buffer restrictions in the IntelR C++ Compiler Classic before version 2021.7.1 for some IntelR oneAPI Toolkits before version 2022.3.1 may allow a privileged user to potentially enable escalation of privilege via local access...
CVE-2022-41342
Improper buffer restrictions in the IntelR C++ Compiler Classic before version 2021.7.1 for some IntelR oneAPI Toolkits before version 2022.3.1 may allow a privileged user to potentially enable escalation of privilege via local access...
CVE-2022-40196
Improper access control in the IntelR oneAPI DPC++/C++ Compiler before version 2022.2.1 and Intel C++ Compiler Classic before version 2021.7.1 for some IntelR oneAPI Toolkits before version 2022.3.1 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-38136
Uncontrolled search path in the IntelR oneAPI DPC++/C++ Compiler for Windows and Intel Fortran Compiler for Windows before version 2022.2.1 for some IntelR oneAPI Toolkits before version 2022.3.1 may allow an authenticated user to potentially enable escalation of privilege via local access...
Improper access control
Improper access control in the IntelR oneAPI DPC++/C++ Compiler before version 2022.2.1 and Intel C++ Compiler Classic before version 2021.7.1 for some IntelR oneAPI Toolkits before version 2022.3.1 may allow an authenticated user to potentially enable escalation of privilege via local access...
Buffer overflow
Improper buffer restrictions in the IntelR C++ Compiler Classic before version 2021.7.1 for some IntelR oneAPI Toolkits before version 2022.3.1 may allow a privileged user to potentially enable escalation of privilege via local access...
CVE-2022-38136
Uncontrolled search path in the IntelR oneAPI DPC++/C++ Compiler for Windows and Intel Fortran Compiler for Windows before version 2022.2.1 for some IntelR oneAPI Toolkits before version 2022.3.1 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-41342
Improper buffer restrictions in the IntelR C++ Compiler Classic before version 2021.7.1 for some IntelR oneAPI Toolkits before version 2022.3.1 may allow a privileged user to potentially enable escalation of privilege via local access...
CVE-2022-41342
The CVE-2022-41342 issue affects Intel® C++ Compiler Classic before version 2021.7.1 (and related Intel® oneAPI Toolkit components) with improper buffer restrictions that may allow a privileged, locally authenticated user to escalate privileges. The advisory lists affected products as Intel® C++ ...
CVE-2022-38136
CVE-2022-38136 concerns the Intel® oneAPI toolchain: an uncontrolled search path in the Intel® oneAPI DPC++/C++ Compiler for Windows and Intel® Fortran Compiler for Windows prior to 2022.2.1, affecting some toolkits before 2022.3.1. Root cause is an uncontrolled search path that could allow an au...
CVE-2022-40196
Affected product: Intel® oneAPI Toolkits (DPC++/C++ Compiler and Intel® C++ Compiler Classic). Vulnerable components/versions: Intel® oneAPI DPC++/C++ Compiler before 2022.2.1; Intel® C++ Compiler Classic before 2021.7.1; some toolkits before 2022.3.1. Root cause: improper access control that cou...
Exploit for Code Injection in Unicode
This is a PoC exploit for CVE-2021-42574, a vulnerability in the...
Huawei EulerOS: Security Advisory for libsepol (EulerOS-SA-2023-1268)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 3.0.2.2 : libsepol (EulerOS-SA-2023-1268)
According to the versions of the libsepol packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and...
ai.preferred:venom (>=4.0.1 <=4.2.7), at.ganzleicht.vaadin:vaadin-client-compiler (>=9.1.1 <=9.1.3) +2100 more potentially affected by CVE-2023-26119 via net.sourceforge.htmlunit:htmlunit (>=1.14 <=2.9)
net.sourceforge.htmlunit:htmlunit MAVEN version =1.14, =4.0.1, =9.1.1, =1.0.0, =1.0.0, =1.0.0, =0.0.2, =1, =2.0, =0.9.6, =0.9.6, =0.1.1, =0.5.0, =0.11.1, =0.30.0 and more Source cves: CVE-2023-26119 Source advisory: SNYK:JAVA-NETSOURCEFORGEHTMLUNIT-3252500...