USN-5645-1 postgresql-9.5 vulnerabilities

Jacob Champion discovered that PostgreSQL incorrectly handled SSL certificate verification and encryption. A remote attacker could possibly use this issue to inject arbitrary SQL queries when a connection is first established. CVE-2021-23214 Tom Lane discovered that PostgreSQL incorrect handled...

CVE-2021-40648

In man2html 1.6g, a filename can be created to overwrite the previous size parameter of the next chunk and the fd, bk, fdnextsize, bknextsize of the current chunk. The next chunk is then freed later on, causing a freeing of an arbitrary amount of memory...

CVE-2021-40648

CVE-2021-40648 affects man2html 1.6g. A filename can be created to overwrite the previous size parameter of the next chunk and the fd/bk/fd_nextsize/bk_nextsize of the current chunk, after which the next chunk is freed later on, causing a potentially arbitrary amount of memory to be freed. This i...

Amazon Linux 2022 : php, php-bcmath, php-cli (ALAS2022-2022-085)

It is, therefore, affected by a vulnerability as referenced in the ALAS2022-2022-085 advisory. A flaw was found in PHP. The vulnerability occurs due to the malformed phpfilterfloat function and leads to a use-after-free vulnerability. This flaw allows an attacker to inject a malicious file, leadi...

Fuji Electric D300win 缓冲区错误漏洞

The Fuji Electric D300win is a PLC product and solution from Fuji Electric Japan. A security vulnerability exists in the Fuji Electric D300win that stems from vulnerability to a write-what-where condition, which can be exploited by an attacker to overwrite program memory in order to manipulate th...

FreeBSD : FreeBSD -- Missing bounds check in 9p message handling (8eaaf135-1893-11ed-9b22-002590c1f29c)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 8eaaf135-1893-11ed-9b22-002590c1f29c advisory. - The implementation of lib9p's handling of RWALK messages was missing a bounds check needed when...

CVE-2021-40034

The video framework has the memory overwriting vulnerability caused by addition overflow. Successful exploitation of this vulnerability may affect the availability...

CVE-2021-40034

The video framework has the memory overwriting vulnerability caused by addition overflow. Successful exploitation of this vulnerability may affect the availability...

FreeBSD-SA-22:12.lib9p

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-22:12.lib9p Security Advisory The FreeBSD Project Topic: Missing bounds check in 9p message handling Category: contrib Module: lib9p Announced: 2022-08-09...

PT-2022-4357 · Lib9P +1 · Lib9P +1

Name of the Vulnerable Software and Affected Versions: lib9p affected versions not specified Description: The issue is related to the handling of RWALK messages in lib9p, where a missing bounds check allows a specially crafted message to cause lib9p to overwrite unrelated memory. This could...

FreeBSD -- Missing bounds check in 9p message handling

Problem Description: The implementation of lib9p's handling of RWALK messages was missing a bounds check needed when unpacking the message contents. The missing check means that the receipt of a specially crafted message will cause lib9p to overwrite unrelated memory. Impact: The bug can be...

CVE-2022-35858

The TEEPopulateTransientObject and uteefromattr functions in Samsung mTower 0.3.0 allow a trusted application to trigger a memory overwrite, denial of service, and information disclosure by invoking the function TEEPopulateTransientObject with a large number in the parameter attrCount...

CVE-2022-35858

The TEEPopulateTransientObject and uteefromattr functions in Samsung mTower 0.3.0 allow a trusted application to trigger a memory overwrite, denial of service, and information disclosure by invoking the function TEEPopulateTransientObject with a large number in the parameter attrCount...

CVE-2022-35858

The TEEPopulateTransientObject and uteefromattr functions in Samsung mTower 0.3.0 allow a trusted application to trigger a memory overwrite, denial of service, and information disclosure by invoking the function TEEPopulateTransientObject with a large number in the parameter attrCount...

Information disclosure

The TEEPopulateTransientObject and uteefromattr functions in Samsung mTower 0.3.0 allow a trusted application to trigger a memory overwrite, denial of service, and information disclosure by invoking the function TEEPopulateTransientObject with a large number in the parameter attrCount...

CVE-2022-35858

The TEEPopulateTransientObject and uteefromattr functions in Samsung mTower 0.3.0 allow a trusted application to trigger a memory overwrite, denial of service, and information disclosure by invoking the function TEEPopulateTransientObject with a large number in the parameter attrCount...

SAMSUNG mTower 安全漏洞

SAMSUNG mTower is a new Trusted Execution Environment TEE from Samsung South Korea. A security vulnerability exists in SAMSUNG mTower version 0.3.0, which stems from the TEEPopulateTransientObject and uteefromattr functions that allow a trusted application to call the function...

PT-2022-22972 · Samsung · Samsung Mtower

Name of the Vulnerable Software and Affected Versions: Samsung mTower version 0.3.0 Description: The issue allows a trusted application to trigger a memory overwrite, denial of service, and information disclosure by invoking the function TEE PopulateTransientObject with a large number in the...

Slackware Linux 15.0 / current samba Multiple Vulnerabilities (SSA:2022-208-01)

The version of samba installed on the remote host is prior to 4.15.9 / 4.16.4. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-208-01 advisory. - A flaw was found in Samba. Samba AD users can cause the server to access uninitialized data with an LDAP add or...

MOXA NPort 5110

1. EXECUTIVE SUMMARY CVSS v3 8.2 ATTENTION: Exploitable remotely/low attack complexity Vendor: MOXA Equipment: NPort 5110 Vulnerabilities: Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to change memory values and/or cause the...