109 matches found
CVE-2018-9458
In computeFocusedWindow of RootWindowContainer.java, and related functions, there is possible interception of keypresses due to focus being on the wrong window. This could lead to local escalation of privilege revealing the user's keypresses while the screen was locked with no additional executio...
Mozilla: stack out-of-bounds read in Array.prototype.push
A vulnerability where the JavaScript JIT compiler inlines Array.prototype.push with multiple arguments that results in the stack pointer being off by 8 bytes after a bailout. This leaks a memory address to the calling function which can be used as part of an exploit inside the sandboxed content...
Multiple Huawei Products IKEv2 Protocol Memory Out-of-Bounds Access Vulnerability
Huawei IPS Module, NGFW Module, NIP6300/6600 series products and Secospace USG series are the new generation of professional intrusion prevention and firewall products launched by Huawei for enterprise, IDC, campus network and carrier customers. A memory out-of-bounds access vulnerability exists ...
QEMU Denial of Service Vulnerability (CNVD-2018-00254)
QEMU aka Quick Emulator is a set of simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. A denial of service vulnerability exists in the Virtio Vring implementation in QEMU. A local attacker can exploit this vulnerability to cause ...
CVE-2017-15121
A non-privileged user is able to mount a fuse filesystem on RHEL 6 or 7 and crash a system if an application punches a hole in a file that does not end aligned to a page boundary...
openSUSE Security Update : gcc5 (openSUSE-2016-472)
The GNU Compiler Collection was updated to version 5.3.1, which brings several fixes and enhancements. The following security issue has been fixed : - Fix C++11 std::randomdevice short read issue that could lead to predictable randomness. CVE-2015-5276, bsc945842 The following non-security issues...
Xen对齐检查异常处理拒绝服务漏洞
No description provided by source...
Wireshark 1.6.x < 1.6.8 Multiple Denial of Service Vulnerabilities
The installed version of Wireshark is 1.6.x before 1.6.8. This version is affected by the following vulnerabilities : - Input validation errors exist in the dissectors for ANSI MAP, ASF, BACapp, Bluetooth HCI, IEEE 802.11, IEEE 802.3, LTP, and R3 that can allow specially crafted packets to cause...
DEBIAN-CVE-2010-0969
Unbound before 1.4.3 does not properly align structures on 64-bit platforms, which allows remote attackers to cause a denial of service daemon crash via unspecified vectors...