188 matches found
CVE-2021-29974
When network partitioning was enabled, e.g. as a result of Enhanced Tracking Protection settings, a TLS error page would allow the user to override an error on a domain which had specified HTTP Strict Transport Security which implies that the error should not be override-able. This issue did not...
HoneyBee: Efficient Role-Based Access Control for Vector Databases Via Dynamic Partitioning
As vector databases gain traction in enterprise applications, robust access control has become critical to safeguard sensitive data. Access control in these systems is often implemented through hybrid vector queries, which combine nearest neighbor search on vector data with relational predicates...
ROS-20250417-05
Ingress controller vulnerability in the Kubernetes ingress-nginx cluster is related to the use of the Ingress mirror-target and mirror-host annotations to inject configuration into nginx. Exploitation of the The vulnerability could allow an attacker acting remotely to execute arbitrary code...
The vulnerability of Juniper Networks Junos OS’ kernel, related to insufficient spatial partitioning, allows a hacker to execute arbitrary code.
The vulnerability of Juniper Networks Junos OS’s kernel is related to insufficient spatial partitioning. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially crafted file...
The vulnerability of the Azure Promptflow application development tool, related to insufficient spatial partitioning, allows a hacker to execute arbitrary code.
The vulnerability of the Azure Promptflow application development tool is related to insufficient spatial separation. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
kernel: kvm: Avoid potential UAF in LPI translation cache
A flaw was found in the Linux kernel pertaining to a potential use-after-free UAF scenario in a system involving Logical Partitioning Interrupts LPI translation cache operations. Specifically, the issue arises when a cache hit occurs concurrently with an operation that invalidates the cache, such...
kernel: kvm: Avoid potential UAF in LPI translation cache
A flaw was found in the Linux kernel pertaining to a potential use-after-free UAF scenario in a system involving Logical Partitioning Interrupts LPI translation cache operations. Specifically, the issue arises when a cache hit occurs concurrently with an operation that invalidates the cache, such...
The vulnerability of the PSA Crypto application programming interface, as well as the Mbed TLS and Mbed Crypto software, allows a perpetrator to compromise the confidentiality, integrity, and accessibility of data.
The vulnerability of the PSA Crypto application programming interface and the Mbed TLS and Mbed Crypto software implementations is related to insufficient spatial partitioning. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...
Spring Tips: Spring Batch Remote Partitioning, your easy button for data scale!
Hi, Spring fans! In this installment, Spring Developer Advocate Josh Long looks at how to use Spring Batch's remote partitioning support to easy-button your data processing scale out strategies. postgresql ai datascience data springboot java java21...
gnark's range checker gadget allows wider inputs up to word alignment
Impact gnark provides a gadget in the standard library to allow optimized checking of the bitwidth of the inputs. The gadget works by constructing a fixed lookup table containing all valid entries, partitioning the input and checking that all parts are inside the lookup table. The range checker...
Vulnerability of the Server component: The MySQL Server database management system’s partitioning scheme, which is vulnerable due to insufficient validation of input data.
Vulnerability of the MySQL Server component: The system management database MySQL Server’s partitioning mechanism is vulnerable due to insufficient validation of input data. Exploitation of this vulnerability can allow a malicious actor to execute a DoS attack remotely...
Vulnerability of the Server component: The MySQL Server database management system’s partitioning scheme, which is vulnerable due to insufficient validation of input data.
Vulnerability of the MySQL Server component: The system management database component MySQL Server is vulnerable due to insufficient validation of input data. Exploitation of this vulnerability can allow a malicious actor to execute a DoS attack remotely...
SUSE CVE-2015-4740
Unspecified vulnerability in the RDBMS Partitioning component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors...
SUSE CVE-2016-6608
XSS issues were discovered in phpMyAdmin. This affects the database privilege check and the "Remove partitioning" functionality. Specially crafted database names can trigger the XSS attack. All 4.6.x versions prior to 4.6.4 are affected...
SUSE CVE-2016-9863
An issue was discovered in phpMyAdmin. With a very large request to table partitioning function, it is possible to invoke a Denial of Service DoS attack. All 4.6.x versions prior to 4.6.5 are affected...
SUSE CVE-2018-1052
Memory disclosure vulnerability in table partitioning was found in postgresql 10.x before 10.2, allowing an authenticated attacker to read arbitrary bytes of server memory via purpose-crafted insert to a partitioned table...
SUSE CVE-2021-29974
When network partitioning was enabled, e.g. as a result of Enhanced Tracking Protection settings, a TLS error page would allow the user to override an error on a domain which had specified HTTP Strict Transport Security which implies that the error should not be override-able. This issue did not...
Moderate: Red Hat Security Advisory: ignition security, bug fix, and enhancement update
An update for ignition is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...
Moderate: Red Hat Security Advisory: gdisk security update
An update for gdisk is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...
gdisk security update
An update is available for gdisk. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The gdisk packages provide the gdisk partitioning utility for GUID Partition...