Advisory ROSA-SA-2023-2312

Software: java-1.8.0-openjdk 1.8.0.392.b08 OS: rosa-server79 packageevrstring: java-1.8.0-openjdk-1.8.0.392.b08-2.res7 CVE-ID: CVE-2023-22045 BDU-ID: 2023-04350 CVE-Crit: LOW CVE-DESC.: A vulnerability in the Hotspot component of the Java SE software platform and Oracle GraalVM Enterprise Edition...

Vulnerability of the MySQL Server component of the database management system: This component allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component of the database management system involves errors in resource release. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the SslConnections component in Eclipse Jetty servers allows a attacker to cause a service failure.

The vulnerability of the SslConnections component in Eclipse Jetty servers is related to resource release errors. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

ROS-20230907-02

Vulnerability in the Core component of Oracle VM VirtualBox virtual machine is related to resource release errors resources. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code or gain full control of an application using the RDP protocol. arbitrary code or...

The vulnerability of the Cisco Umbrella cloud security service’s web interface allows attackers to circumvent existing security restrictions and gain unauthorized access to protected information.

The vulnerability of the Cisco Umbrella cloud security web interface is related to resource release errors. Exploiting this vulnerability can allow attackers to bypass existing security restrictions and gain unauthorized access to protected information...

The vulnerability in the Firefox web browser, related to errors during resource release, allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability in the Firefox web browser is related to errors during resource release. Exploiting this vulnerability can allow a remote attacker to gain access to confidential data, compromise its integrity, and cause service interruptions...

The vulnerability of the SharedPreference File Handler component in the Yandex Navigator application, which allows a hacker to trigger a service failure

The vulnerability of the SharedPreference File Handler component in the Yandex Navigator application is related to errors during resource release. Exploiting this vulnerability allows an attacker to cause service failures...

The vulnerability of the InnoDB component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the InnoDB component in the Oracle MySQL Server database management system is related to errors during resource release. Exploiting this vulnerability can allow an attacker to cause service failures using the network MySQL protocol...

The vulnerability of the Protobuf serialization protocol’s text analysis component, related to errors in resource release, allows a perpetrator to cause a service failure.

The vulnerability of the Protobuf serialization protocol’s text analysis component is related to errors during resource release. Exploiting this vulnerability allows a remote attacker to cause service failures...

The vulnerability of the Core component in Oracle VM VirtualBox allows a hacker to trigger a service failure.

The vulnerability of the Core component in Oracle VM VirtualBox is related to resource release errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the `parse_tag_and_wiretype` function in the `protobuf-c.c` component of the Protobuf-c programming language for serializing data allows a attacker to cause a service failure.

The vulnerability of the parsetagandwiretype function in the protobuf-c.c component of the Protobuf serialization programming language C Protobuf-c is related to errors during resource release. Exploiting this vulnerability allows an attacker to cause service failures remotely...

PT-2023-3652 · Ros2 · Ros2

Name of the Vulnerable Software and Affected Versions: ROS2 versions 2 Description: The issue is related to errors in resource release, which can be exploited to cause a denial of service. A malicious user can potentially exploit this issue remotely, leading to a crash of the ROS2 nodes...

The vulnerability of the license server dispatcher lmadmin FlexNet Publisher allows a violator to trigger a service failure.

The vulnerability of the license server dispatcher lmadmin FlexNet Publisher is related to errors during resource release. Exploiting this vulnerability allows a malicious actor to cause service interruptions...

The vulnerability of the 389 Directory Server service, related to errors in resource release, allows a perpetrator to cause a service failure.

The vulnerability of the 389 Directory Server catalog service server is related to errors during resource release. Exploiting this vulnerability allows a malicious actor to cause service failures...

The vulnerability of the bridge2 component of the Bridge interface in the RouterOS operating system of MikroTik routers allows a hacker to cause a service failure.

The vulnerability of the bridge2 component in the Bridge interface of the RouterOS operating system for MikroTik relates to errors during resource release. Exploiting this vulnerability allows a malicious actor to cause service failure by sending specially crafted packets...

The vulnerability of the `derive_boundaryStrength` function in the deblock.cc component of the h.265 Libde265 video codec implementation, which allows a hacker to cause a service failure.

The vulnerability of the deriveboundaryStrength function in the deblock.cc component of the h.265 Libde265 video codec implementation is related to errors during resource release. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

The vulnerability of the Hints::Hints function (poppler/Hints.cc) in the Poppler PDF rendering library allows a attacker to cause a service failure.

The vulnerability of the Hints::Hints function in the Poppler PDF rendering library is related to errors during resource release. Exploiting this vulnerability allows an attacker to cause service interruptions through a specially created PDF file...

The vulnerability of the set_var.cc component of the MariaDB database, which allows a hacker to cause service failures.

The vulnerability of the setvar.cc component of the MariaDB database system is related to errors during resource release. Exploiting this vulnerability allows an attacker to cause service failures...

The vulnerability of the sql_parse.cc component of the MariaDB database, which allows attackers to trigger a service failure.

The vulnerability of the sqlparse.cc component in the MariaDB database system is related to errors during resource release. Exploiting this vulnerability allows an attacker to cause service failures...

The vulnerability of the ha_maria::extra component in the MariaDB database, which allows a hacker to cause a service failure.

The vulnerability of the hamaria::extra component in the MariaDB database is related to errors during resource release. Exploiting this vulnerability allows an attacker to cause service failures...