SUSE SLED15 / SLES15 / openSUSE 15 Security Update : gcc13 (SUSE-SU-2023:4458-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4458-1 advisory. - A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attack...

Huawei EulerOS: Security Advisory for gcc (EulerOS-SA-2023-3209)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : gcc13 (SUSE-SU-2023:4287-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4287-1 advisory. - A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer...

OESA-2023-1735 gcc security update

The gcc package contains the GNU Compiler Collection version 10. You'll need this package in order to compile C code. Security Fixes: A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer overflow in dynamically-siz...

WP Site Protector <= 2.0 - Settings Update via CSRF

Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...

CVE-2023-44237

Cross-Site Request Forgery CSRF vulnerability in Moriyan Jay WP Site Protector plugin = 2.0 versions...

CVE-2023-44237

Cross-Site Request Forgery CSRF vulnerability in Moriyan Jay WP Site Protector plugin = 2.0 versions...

CVE-2023-44237 WordPress WP Site Protector Plugin <= 2.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Moriyan Jay WP Site Protector plugin = 2.0 versions...

CVE-2023-44237 WordPress WP Site Protector Plugin <= 2.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Moriyan Jay WP Site Protector plugin = 2.0 versions...

CVE-2023-44237

CVE-2023-44237 affects the WordPress plugin WP Site Protector (Moriyan Jay WP Site Protector) up to version 2.0. The connected sources confirm a Cross-Site Request Forgery (CSRF) vulnerability. Patchstack lists the vulnerability as unauthenticated with low severity and notes that a fix is not ava...

WordPress Plugin wp-site-protector Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

WordPress WP Site Protector Plugin <= 2.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP Site Protector Type Plugin Vulnerable versions = 2.0 Fixed in N/A OWASP Top 10 A5: Security Misconfiguration Classification Cross Site Request Forgery CSRF CVE CVE-2023-44237 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 8d18325c55eb Credits Nguyen Xuan Chien...

CBL Mariner 2.0 Security Update: gcc (CVE-2023-4039)

The version of gcc installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4039 advisory. - DISPUTEDA failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacke...

SUSE SLED15 / SLES15 Security Update : gcc7 (SUSE-SU-2023:3686-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3686-1 advisory. - A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit ...

SUSE-SU-2023:3686-1 Security update for gcc7

This update for gcc7 fixes the following issues: Security issue fixed: - CVE-2023-4039: Fixed incorrect stack protector for C99 VLAs on Aarch64 bsc1214052. Other fixes: - Fixed KASAN kernel compile. bsc1205145 - Fixed ICE with C++17 code as reported in bsc1204505 - Fixed altivec.h redefining bool...

SUSE: Security Advisory (SUSE-SU-2023:3640-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2023:3662-1 Security update for gcc7

This update for gcc7 fixes the following issues: Security issues fixed: - CVE-2023-4039: Fixed incorrect stack protector for C99 VLAs on Aarch64 bsc1214052. - CVE-2019-15847: Fixed POWER9 DARN miscompilation. bsc1149145 - CVE-2019-14250: Includes fix for LTO linker plugin heap overflow. bsc114264...

SUSE-SU-2023:3661-1 Security update for gcc12

This update for gcc12 fixes the following issues: - CVE-2023-4039: Fixed incorrect stack protector for C99 VLAs on Aarch64 bsc1214052...

SUSE-SU-2023:3640-1 Security update for gcc12

This update for gcc12 fixes the following issues: - CVE-2023-4039: Fixed incorrect stack protector for C99 VLAs on Aarch64 bsc1214052...

GCC's-fstack-protector fails to guard dynamically-sized local variables on AArch64

...