Google Chrome Type Obfuscation Vulnerability (CNVD-2021-92834)

Chrome is a simple and efficient web browsing tool developed by Google. a type obfuscation vulnerability exists in the Blink layout in versions prior to Google Chrome 93.0.4577.82. An attacker could exploit this vulnerability to potentially exploit heap corruption via a crafted HTML page...

Google Chrome Blink layout code execution vulnerability

Google Chrome is a web browser from Google, Inc. A code execution vulnerability exists in the Google Chrome Blink layout. A remote attacker could use this vulnerability to execute arbitrary code on the system or cause a denial of service condition...

PT-2021-6865 · Adobe · Acrobat 2020 +5

Name of the Vulnerable Software and Affected Versions: Adobe Acrobat versions prior to 2021.005.20060 Adobe Acrobat Reader versions prior to 2021.005.20060 Adobe Acrobat 2017 versions prior to 2017.011.30199 Adobe Acrobat Reader 2017 versions prior to 2017.011.30199 Adobe Acrobat 2020 versions...

[ASA-202109-6] chromium: arbitrary code execution

Arch Linux Security Advisory ASA-202109-6 ========================================= Severity: High Date : 2021-09-14 CVE-ID : CVE-2021-30625 CVE-2021-30626 CVE-2021-30627 CVE-2021-30628 CVE-2021-30629 CVE-2021-30630 CVE-2021-30631 CVE-2021-30632 CVE-2021-30633 Package : chromium Type : arbitrary...

Google Chrome < 93.0.4577.82 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 93.0.4577.82. It is, therefore, affected by multiple vulnerabilities as referenced in the 202109stable-channel-update-for-desktop advisory. - Use after free in Indexed DB API in Google Chrome prior to 93.0.4577.82 allow...

Google chrome 安全漏洞

Chrome is a simple and efficient web browsing tool developed by Google. a type obfuscation vulnerability exists in the Blink layout in versions prior to Google Chrome 93.0.4577.82. An attacker could exploit this vulnerability to potentially exploit heap corruption via a crafted HTML page...

"KeyboardLayout=(Server Default)" cannot take effect on Citrix Workspace app for Linux

Use the following way to change the Keyboard Layout sync mode to Server Default. Configure in StoreFront File Path:C:\inetpub\wwwroot\Citrix%StoreName%\AppData\default.ica Change setting inWFClient:KeyboardLayout=Server Default Or configure in CWA for Linux File path:/.ICAClient/wfclient.ini...

CVE-2021-30656

An access issue was addressed with improved memory management. This issue is fixed in iOS 14.5 and iPadOS 14.5. A malicious application may be able to determine kernel memory layout...

CVE-2021-30656

An access issue was addressed with improved memory management. This issue is fixed in iOS 14.5 and iPadOS 14.5. A malicious application may be able to determine kernel memory layout...

Memory corruption

An access issue was addressed with improved memory management. This issue is fixed in iOS 14.5 and iPadOS 14.5. A malicious application may be able to determine kernel memory layout...

CVE-2021-36022

Magento Commerce versions 2.4.2 and earlier, 2.4.2-p1 and earlier and 2.3.7 and earlier are affected by an XML Injection vulnerability in the Widgets Update Layout. An attacker with admin privileges can trigger a specially crafted script to achieve remote code execution...

Input validation

Magento Commerce versions 2.4.2 and earlier, 2.4.2-p1 and earlier and 2.3.7 and earlier are affected by an XML Injection vulnerability in the Widgets Update Layout. An attacker with admin privileges can trigger a specially crafted script to achieve remote code execution...

UBUNTU-CVE-2021-36045

XMP Toolkit SDK versions 2020.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of arbitrary memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victi...

CVE-2021-36022

Magento Commerce is affected by an XML Injection vulnerability in the Widgets Update Layout across versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier), and 2.3.7 (and earlier). The underlying issue allows an attacker with admin privileges to trigger a crafted script that achieves remote code exe...

Remote Code Execution (RCE)

magento-lts is vulnerable to remote code execution. An attacker is able to exploit the vulnerability by injecting malicious code via the block methods through layout XML...

CVE-2021-32758 Layout XML Arbitrary Code Fix

OpenMage Magento LTS is an alternative to the Magento CE official releases. Prior to versions 19.4.15 and 20.0.11, layout XML enabled admin users to execute arbitrary commands via block methods. The latest OpenMage Versions up from v19.4.15 and v20.0.11 have this Issue patched...

GHSA-P5W9-856P-8Q4G Assumed memory layout of std::net::SocketAddr

The socket2 crate has assumed std::net::SocketAddrV4 and std::net::SocketAddrV6 have the same memory layout as the system C representation sockaddr. It has simply casted the pointers to convert the socket addresses to the system representation. The standard library does not say anything about the...

Assumed memory layout of std::net::SocketAddr

The socket2 crate has assumed std::net::SocketAddrV4 and std::net::SocketAddrV6 have the same memory layout as the system C representation sockaddr. It has simply casted the pointers to convert the socket addresses to the system representation. The standard library does not say anything about the...

amethyst (>=0.7.0 <=0.15.3), amethyst-console (=0.1.0) +31 more potentially affected by CVE-2021-25902 via glsl-layout (>=0.1.1 <=0.3.2)

glsl-layout CARGO version =0.1.1, =0.7.0, =0.1.0, =0.1.0, =0.1.0, =0.2.0, =0.2.0, =0.6.0, =0.1.0, =0.3.0, =0.4.0, =0.2.0, =0.15.3 - amethystinput =0.6.0 and more Source cves: CVE-2021-25902 Source advisory: OSV:GHSA-CX4J-FXR7-JXG8...

GHSA-CX4J-FXR7-JXG8 Double free in glsl-layout

Affected versions of this crate did not guard against panic within the user-provided function f 2nd parameter of fn maparray, and thus panic within f causes double drop of a single object. The flaw was corrected in the 0.4.0 release by wrapping the object vulnerable to a double drop within...