121 matches found
Qt 安全漏洞
Qt is a cross-platform C++ application development framework from the Norwegian company Qt. It is widely used to develop GUI programs, in which case it is also known as the widget toolkit. It can also be used to develop non-GUI programs, such as console tools and servers. A security vulnerability...
CVE-2021-46986
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Free gadget structure only after freeing endpoints As part of commit e81a7018d93a "usb: dwc3: allocate gadget structure dynamically" the dwc3gadgetrelease was added which will free the dwc-gadget structure upon...
PT-2025-18843 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, related to the net/mlx5 module. The issue occurs when the vport's mc, uc, and multicast rules are not deleted in the teardown pat...
CLSA-2023-1696537106 libxml2: Fix of 5 CVEs
CVE-2021-3517: fix flaw in the xml entity encoding - CVE-2021-3518: fix dangling pointers in entity reference nodes - CVE-2022-23308: fix use-after-free of ID and IDREF attributes - CVE-2022-40303: fix integer counters overflow when parsing a multi-gigabyte XML - CVE-2022-40304: fix double free...
CLSA-2023-1680210075 openssl: Fix of 2 CVEs
CVE-2022-4304: fix timing based side channel in RSA decryption - CVE-2022-4450: avoid dangling pointers in PEMreadbioex...
CLSA-2023-1680206329 openssl: Fix of 2 CVEs
CVE-2022-4304: fix timing based side channel in RSA decryption - CVE-2022-4450: avoid dangling pointers in PEMreadbioex...
CVE-2022-41177
Due to lack of proper memory management, when a victim opens a manipulated Iges Part and Assembly .igs, .iges, CoreCadTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload force...
PT-2022-25708 · Sap · Sap 3D Visual Enterprise Author
Name of the Vulnerable Software and Affected Versions: SAP 3D Visual Enterprise Author version 9 Description: The issue is caused by a lack of proper memory management. When a victim opens a manipulated Visual Design Stream .vds, MataiPersistence.dll file from untrusted sources, it can trigger a...
Unspecified Vulnerability in GNU C Library (CNVD-2021-26206)
The GNU C Library glibc, libc6 is an open-source, free C language compiler released under the LGPL license.Library is one of the libraries. A security vulnerability exists in the GNU C Library aka glibc versions prior to 2.2. The vulnerability stems from a missing statement about the unspecified...
Cloned interners may read already dropped strings
Affected versions of this crate did not clone contained strings when an interner is cloned. Interners have raw pointers to the contained strings, and they keep pointing the strings which the old interner owns, after the interner is cloned. If a new cloned interner is alive and the old original...
RUSTSEC-2019-0023 Cloned interners may read already dropped strings
Affected versions of this crate did not clone contained strings when an interner is cloned. Interners have raw pointers to the contained strings, and they keep pointing the strings which the old interner owns, after the interner is cloned. If a new cloned interner is alive and the old original...
Google Chrome multiple vulnerabilities - May11 (Linux)
The host is running Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnmay11lin.nasl 7044 2017-09-01 11:50:59Z teissa $ Google Chrome multiple vulnerabilities - May11 Linux Authors: Sooraj KS Copyright: Copyright c 2011 Greenbone Networks...
CVE-2011-1450
Google Chrome before 11.0.696.57 does not properly present file dialogs, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "dangling pointers."...
Design/Logic Flaw
Google Chrome before 11.0.696.57 does not properly present file dialogs, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "dangling pointers."...
CVE-2011-1450
Removed by vendor...
CVE-2011-1450
Google Chrome before 11.0.696.57 does not properly present file dialogs, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "dangling pointers."...
Mozilla Firefox < 3.5.19 Multiple Vulnerabilities
Binary data 801247.prm...
Microsoft Office Excel Remote Code Execution Vulnerabilities (2489279)
This host is missing a critical security update according to Microsoft Bulletin MS11-021. OpenVAS Vulnerability Test $Id: secpodms11-021.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft Office Excel Remote Code Execution Vulnerabilities 2489279 Authors: Antu Sanadi Copyright: Copyright c 2011 SecPo...
Mozilla Firefox 3.5.x < 3.5.12 Multiple Vulnerabilities
Binary data 5656.prm...
Heap overflow
Multiple vulnerabilities in the layout engine for Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, Thunderbird 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2 allow remote attackers to cause a denial of service crash via vectors related to dangling pointer...