The vulnerability of Adobe InDesign’s computer layout automation tool lies in its lack of protection for website structure. This vulnerability stems from writing beyond the buffer limit in memory, allowing attackers to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, using a specially crafted PDF file...

DEBIAN-CVE-2021-34557

XScreenSaver 5.45 can be bypassed if the machine has more than ten disconnectable video outputs. A buffer overflow in updatescreenlayout allows an attacker to bypass the standard screen lock authentication mechanism by crashing XScreenSaver. The attacker must physically disconnect many video...

SUSE SLES11 Security Update : grub2 (SUSE-SU-2021:14659-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14659-1 advisory. - The grubext2readblock function in fs/ext2.c in GNU GRUB before 2013-11-12, as used in shlr/grub/fs/ext2.c in radare2 1.5.0, allows remote...

CVE-2021-26079

The CardLayoutConfigTable component in Jira Server and Jira Data Center before version 8.5.15, and from version 8.6.0 before version 8.13.7, and from version 8.14.0 before 8.17.0 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability...

PT-2021-4269 · Unknown +1 · Xscreensaver +1

Name of the Vulnerable Software and Affected Versions: XScreenSaver version 5.45 Description: The issue is related to a buffer overflow in the update screen layout function, which can be exploited by an attacker to bypass the standard screen lock authentication mechanism. This can be achieved by...

UVI-2021-1000678 NFS: fix an incorrect limit in filelayout_decode_layout()

NFS: fix an incorrect limit in filelayoutdecodelayout This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.235 by commit...

RUSTSEC-2021-0095 `mopa` is technically unsound

The mopa crate redefines the deprecated TraitObject struct from core::raw like so: rust reprC deriveCopy, Clone dochidden pub struct TraitObject pub data: mut , pub vtable: mut , This is done to then transmute a reference to a trait object &dyn Trait for any trait Trait into this struct and...

Fedora: Security Advisory for graphviz (FEDORA-2021-ede783f2b6)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for graphviz (FEDORA-2021-5fb7be1fbf)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2021-32614

A flaw was found in dmg2img through 20170502. fillmishblk does not check the length of the read buffer, and copy 0xCC bytes from it. The length of the buffer is controlled by an attacker. By providing a length smaller than 0xCC, memcpy reaches out of the malloc'ed bound. This possibly leads to...

CVE-2021-32614

A flaw was found in dmg2img through 20170502. fillmishblk does not check the length of the read buffer, and copy 0xCC bytes from it. The length of the buffer is controlled by an attacker. By providing a length smaller than 0xCC, memcpy reaches out of the malloc'ed bound. This possibly leads to...

CVE-2021-32614

A flaw was found in dmg2img through 20170502. fillmishblk does not check the length of the read buffer, and copy 0xCC bytes from it. The length of the buffer is controlled by an attacker. By providing a length smaller than 0xCC, memcpy reaches out of the malloc'ed bound. This possibly leads to...

CVE-2021-32614

A flaw was found in dmg2img through 20170502. fillmishblk does not check the length of the read buffer, and copy 0xCC bytes from it. The length of the buffer is controlled by an attacker. By providing a length smaller than 0xCC, memcpy reaches out of the malloc'ed bound. This possibly leads to...

CVE-2021-32614

A flaw was found in dmg2img through 20170502. fillmishblk does not check the length of the read buffer, and copy 0xCC bytes from it. The length of the buffer is controlled by an attacker. By providing a length smaller than 0xCC, memcpy reaches out of the malloc'ed bound. This possibly leads to...

Design/Logic Flaw

A flaw was found in dmg2img through 20170502. dmg2img did not validate the size of the read buffer during memcpy inside the main function. This possibly leads to memory layout information leaking in the data. This might be used in a chain of vulnerability in order to reach code execution...

CVE-2021-3548

A flaw was found in dmg2img through 20170502. dmg2img did not validate the size of the read buffer during memcpy inside the main function. This possibly leads to memory layout information leaking in the data. This might be used in a chain of vulnerability in order to reach code execution...

PT-2024-11226 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a NULL pointer dereference in the pnfs mark matching lsegs return function. This occurs when the pnfs return layout function calls pnfs mark matching lsegs retu...

openSUSE Security Update : irssi (openSUSE-2021-587)

This update for irssi fixes the following issues : irssi was updated to 1.2.3 boo1184848 - Fix the compilation of utf8proc 1021 - Fix wrong call to free. By Zero King 1076 - Fix a colour reset in true colour themes when encountering mIRC colours 1059 - Fix memory leak on malformed CAP requests 11...

GHSA-RWXP-HWWF-653V Insecure template handling in express-hbs

express-hbs is an Express handlebars template engine. express-hbs mixes pure template data with engine configuration options through the Express render API. More specifically, the layout parameter may trigger file disclosure vulnerabilities in downstream applications. This potential vulnerability...

CVE-2021-29048

Cross-site scripting XSS vulnerability in the Layout module's page administration page in Liferay Portal 7.3.4, 7.3.5 and Liferay DXP 7.2 before fix pack 11 and 7.3 before fix pack 1 allows remote attackers to inject arbitrary web script or HTML via the...