UBUNTU-CVE-2021-28876

In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue. It calls iteratorgetunchecked more than once for the same index when the underlying iterator panics in certain conditions. This bug could lead to a memory safety violation due to an unmet safety...

PT-2021-17974 · Rust +6 · Rust +6

Name of the Vulnerable Software and Affected Versions: Rust versions prior to 1.52.0 Description: The issue arises in the standard library of Rust when the Zip implementation calls iterator get unchecked more than once for the same index under certain conditions, specifically when next back and...

PT-2021-17972 · Rust +6 · Rust +6

Name of the Vulnerable Software and Affected Versions: Rust versions prior to 1.52.0 Description: The issue is related to a panic safety problem in the Zip implementation of the Rust standard library. It occurs when the underlying iterator panics under certain conditions, causing iterator get...

Mozilla Rust 缓冲区错误漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A buffer overflow vulnerability exists in the Rust standard library prior to version 1.52.0, which stems from an unmet security requirement for the TrustedRandomAccess feature, an error that could result in a...

Rust 缓冲区错误漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in the Rust standard library prior to version 1.52.0 that stems from an unmet security requirement for the TrustedRandomAccess feature, an error that could result in a memory...

[SECURITY] Fedora 30 Update: xar-1.8.0.417.1-1.fc30

The XAR project aims to provide an easily extensible archive format. Import ant design decisions include an easily extensible XML table of contents for ran dom access to archived files, storing the toc at the beginning of the archive to allow for efficient handling of streamed archives, the abili...

[SECURITY] Fedora 31 Update: xar-1.6.1-1.fc31

The XAR project aims to provide an easily extensible archive format. Import ant design decisions include an easily extensible XML table of contents for ran dom access to archived files, storing the toc at the beginning of the archive to allow for efficient handling of streamed archives, the abili...

New Rowhammer Attack Can Hijack Computers Remotely Over the Network

Exploitation of Rowhammer attack just got easier. Dubbed 'Throwhammer,' the newly discovered technique could allow attackers to launch Rowhammer attack on the targeted systems just by sending specially crafted packets to the vulnerable network cards over the local area network. Known since 2012,...

Keep an eye on your computer: memory vulnerable to malicious attacks-vulnerability warning-the black bar safety net

Recently, security researchers demonstrated a new Rowhammer attack, using this technology can attack some of the DDR4 memory module. Rowhammer attacks affect a wide Rowhammer attack is known to be in the 2 0 1 4 year, Carnegie Mellon University researchers in a sufficient number of access number ...

Fedora 19 : perl-Crypt-DSA-1.17-10.fc19 (2013-15786)

As taught by the '09 Debian PGP disaster relating to DSA, the randomness source is extremely important. On systems without /dev/random, Crypt::DSA falls back to using Data::Random. Data::Random uses rand, about which the perldoc says 'rand is not cryptographically secure. You should not rely on i...

Fedora Update for xar FEDORA-2010-7631

Check for the Version of xar OpenVAS Vulnerability Test Fedora Update for xar FEDORA-2010-7631 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...

[SECURITY] Fedora 13 Update: xar-1.5.2-6.fc13

The XAR project aims to provide an easily extensible archive format. Import ant design decisions include an easily extensible XML table of contents for ran dom access to archived files, storing the toc at the beginning of the archive to allow for efficient handling of streamed archives, the abili...

realplayer ram file heap overflow

Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM .ra or .ram file with a large size value in the RA header...