AlmaLinux 8 : kernel (ALSA-2021:0558)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2021:0558 advisory. - A flaw was found in the Linux kernel. A use-after-free memory flaw was found in the perf subsystem allowing a local attacker with permission to monitor...

CVE-2021-45067

Acrobat Reader DC version 21.007.20099 and earlier, 20.004.30017 and earlier and 17.011.30204 and earlier are affected by an Access of Memory Location After End of Buffer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass...

CVE-2021-44715

Acrobat Reader DC version 21.007.20099 and earlier, 20.004.30017 and earlier and 17.011.30204 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this...

CVE-2021-45059

Adobe InDesign version 16.4 and earlier is affected by a use-after-free vulnerability in the processing of a JPEG2000 file that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

GHSA-5VWC-R48G-WJ6C Abomonation transmutes &T to and from &[u8] without sufficient constraints

An issue was discovered in the abomonation crate through version 0.7.3 for Rust. Because transmute operations are insufficiently constrained, there can be an information leak or ASLR bypass...

CVE-2021-45695

An issue was discovered in the mopa crate through 2021-06-01 for Rust. It incorrectly relies on Trait memory layout, possibly leading to future occurrences of arbitrary code execution or ASLR bypass...

Rust 安全漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in Rust abomonation crate in versions prior to 2021-10-17, which could allow information leakage or ASLR bypass...

CVE-2021-43763

Adobe Dimension versions 3.4.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim...

openSUSE 15 Security Update : kernel (openSUSE-SU-2021:3941-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:3941-1 advisory. - In bpfskbchangehead of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of...

Hyenae-Ng - An Advanced Cross-Platform Network Packet Generator And The Successor Of Hyenae

Hyenae NG Next Generation is a re-write of the original Hyenae tool which was originally published back in the year 2010. Besides switching from C to C++, using modern design concepts, Hyenae NG was just like the original Hyenae written with maximum portability in mind. Since the original Hyenae...

CVE-2020-12901

Arbitrary Free After Use in AMD Graphics Driver for Windows 10 may lead to KASLR bypass or information disclosure...

CVE-2020-12897

Kernel Pool Address disclosure in AMD Graphics Driver for Windows 10 may lead to KASLR bypass...

CVE-2020-12899

Arbitrary Read in AMD Graphics Driver for Windows 10 may lead to KASLR bypass or denial of service...

AMD Graphics Driver 信息泄露漏洞

AMD Graphics Driver is an integrated graphics driver from AMD. AMD Graphics Driver for Windows 10 suffers from an information disclosure vulnerability that can be exploited by attackers to cause a KASLR bypass...

AMD Graphics Driver 安全漏洞

AMD Graphics Driver is an integrated graphics driver from AMD. A security vulnerability exists in AMD Graphics Driver, which can be exploited by attackers to cause privilege escalation, denial of service, information disclosure, KASLR bypass, or arbitrary write to kernel memory...

Adobe Character Animator 缓冲区错误漏洞

Adobe Character Animator is a motion capture and animation tool from the American company Audobee Adobe. An out-of-bounds read vulnerability exists in Adobe Character Animator 2021 4.4 and earlier versions, which can be exploited by an attacker to bypass mitigations such as ASLR and cause a...

CVE-2021-20322

A flaw in the processing of received ICMP errors ICMP fragment needed and ICMP redirect in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest...

UBUNTU-CVE-2021-20322

A flaw in the processing of received ICMP errors ICMP fragment needed and ICMP redirect in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest...

OESA-2021-1392 sane-backends security update

SANE Scanner Access Now Easy is a sane and simple interface to both local and networked scanners and other image acquisition devices like digital still and video cameras. Security Fixes: An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local...

The vulnerability of the Internet Explorer browser, related to vulnerabilities in access control, allows attackers to bypass the ASLR (Address Space Layout Randomization) protection mechanism and execute arbitrary code.

The vulnerability of the Internet Explorer browser is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to bypass the ASLR Address Space Layout Randomization protection mechanism by using a specially crafted website and executing arbitrary code...