SUSE CVE-2006-0058

Signal handler race condition in Sendmail 8.13.x before 8.13.6 allows remote attackers to execute arbitrary code by triggering timeouts in a way that causes the setjmp and longjmp function calls to be interrupted and modify unexpected memory locations...

SUSE CVE-2015-1379

The signal handler implementations in socat before 1.7.3.0 and 2.0.0-b8 allow remote attackers to cause a denial of service process freeze or crash...

CVE-2022-39847

Use after free vulnerability in setnftpid and signalhandler function of NFC driver prior to SMR Oct-2022 Release 1 allows attackers to perform malicious actions...

CVE-2022-39847

Use after free vulnerability in setnftpid and signalhandler function of NFC driver prior to SMR Oct-2022 Release 1 allows attackers to perform malicious actions...

SAMSUNG Mobile devices 资源管理错误漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc. from the South Korean company Samsung. A security vulnerability exists in SAMSUNG Mobile devices SMR Oct-2022 Release 1, which stems from the use of after free vulnerability in the setnftpid and...

PT-2022-25036 · Unknown · Nfc Driver

Name of the Vulnerable Software and Affected Versions: NFC driver versions prior to SMR Oct-2022 Release 1 Description: The issue is related to a use after free vulnerability in the set nft pid and signal handler function of the NFC driver. This vulnerability allows attackers to perform malicious...

ALBA-2022:1563 virt:rhel and virt-devel:rhel bug fix update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...

rhel and virt-devel:rhel bug fix update

An update is available for libguestfs, libnbd, nbdkit, libguestfs-winsupport, supermin, libiscsi, hivex, libvirt, netcf, perl-Sys-Virt, seabios, qemu-kvm, sgabios, libvirt-dbus, libvirt-python. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a...

virt:rhel and virt-devel:rhel bug fix update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...

Virtuozzo Hybrid Infrastructure 5.0 (5.0.0-140)

This hotfix update provides important fixes for the storage, Backup Gateway, and object storage services. Vulnerability id: VSTOR-50690 Invalid JSON data is returned for the S3 Usage Object. Vulnerability id: VSTOR-50626 Different storage services may not restart due to a deadlock in the signal...

Mageia: Security Advisory (MGASA-2017-0248)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15 Security Update : webkit2gtk3 (SUSE-SU-2021:1499-1)

This update for webkit2gtk3 fixes the following issues : Update to version 2.32.0 bsc1184155 : - Fix the authentication request port when URL omits the port. - Fix iframe scrolling when main frame is scrolled in async - scrolling mode. - Stop using gmemdup. - Show a warning message when overridin...

Race condition

A signal handler race condition exists in the Layer 2 Address Learning Daemon L2ALD of Juniper Networks Junos OS due to the absence of a specific protection mechanism to avoid a race condition which may allow an attacker to bypass the storm-control feature on devices. This issue is a corner case...

CVE-2021-0244

CVE-2021-0244 describes a signal handler race condition in the Layer 2 Address Learning Daemon (L2ALD) of Juniper Networks Junos OS that may allow an attacker to bypass storm-control on devices. Affected software ranges across multiple Junos OS branches and versions, including EX Series, SRX Seri...

Updated gcc packages fix security vulnerability

This update provides gcc 8.4.0 stable release, containing important fixes for regressions and serious bugs in GCC 8.3 with more than 209 bugs fixed since the previous release. It also fixes at least the following security issue: every time the collect2 process is interrupted via a signal it can...

RUSTSEC-2020-0004 sigstack allocation bug can cause memory corruption or leak

An embedding using affected versions of lucet-runtime configured to use non-default Wasm globals sizes of more than 4KiB, or compiled in debug mode without optimizations, could leak data from the signal handler stack to guest programs. This can potentially cause data from the embedding host to le...

Huawei EulerOS: Security Advisory for gdm (EulerOS-SA-2017-1173)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-19602

A flaw was found in the Linux kernel. When compiled with GCC 9, a vector register corruption occurs on return from a signal handler where the top page of the signal stack had not yet been paged in which can allow a local attacker with special user privilege or root to leak kernel internal...

NewStart CGSL MAIN 4.05 : openssh-latest Multiple Vulnerabilities (NS-SA-2019-0146)

The remote NewStart CGSL host, running version MAIN 4.05, has openssh-latest packages installed that are affected by multiple vulnerabilities: - scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded twice...

EulerOS 2.0 SP2 : gdm (EulerOS-SA-2017-1174)

According to the version of the gdm package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - It was found that gdm could crash due to a signal handler dispatched to an invalid conversation. An attacker could crash gdm by holding the escape key...