USN-5056-1: APR vulnerability

It was discovered that APR incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive information...

The vulnerability of the calloc() function in the C Runtime Library (CRT) allows a hacker to execute arbitrary code.

The vulnerability of the calloc function in the C Runtime Library CRT is related to integer overflow. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

BadAlloc Vulnerability Affecting BlackBerry QNX RTOS

Summary On August 17, 2021, BlackBerry publicly disclosed that its QNX Real Time Operating System RTOS is affected by a BadAlloc vulnerability—CVE-2021-22156. BadAlloc is a collection of vulnerabilities affecting multiple RTOSs and supporting libraries.1 A remote attacker could exploit...

Integer overflow

An integer overflow vulnerability in the calloc function of the C runtime library of affected versions of BlackBerry® QNX Software Development Platform SDP versions 6.5.0SP1 and earlier, QNX OS for Medical 1.1 and earlier, and QNX OS for Safety 1.0.1 and earlier that could allow an attacker to...

CVE-2021-22156

CVE-2021-22156 is an integer overflow in the calloc() function of the BlackBerry QNX C runtime library, affecting SDP 6.5.0SP1 and earlier, QNX OS for Medical 1.1 and earlier, and QNX OS for Safety 1.0.1 and earlier. Exploitation could cause denial of service or arbitrary code execution; remote a...

CVE-2021-28434

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

CVE-2021-28356

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

CVE-2021-28345

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

CVE-2021-28352

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

CVE-2021-28340

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

CVE-2021-28341

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

CVE-2021-28343

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

CVE-2021-28335

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

CVE-2021-28331

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

CVE-2021-28337

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

CVE-2021-1701

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

CVE-2021-1667

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

CVE-2021-1650 Windows Runtime C++ Template Library Elevation of Privilege Vulnerability

...

Low: Red Hat Security Advisory: gettext security update

An update for gettext is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

RHEL 7 : gettext (RHSA-2020:2846)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:2846 advisory. The gettext packages provide a documentation for producing multi-lingual messages in programs, set of conventions about how programs should be writte...