CVE-2017-1000111

A race condition issue was found in the way the raw packet socket implementation in the Linux kernel networking subsystem handled synchronization. A local user able to open a raw packet socket requires the CAPNETRAW capability could use this to waste resources in the kernel's ring buffer or...

Citrix Hypervisor unable to sync to NTP server

Unable to sync to NTP server...

Juniper Junos SRX Cluster Synchronization Failover Errors (JSA10806)

According to its self-reported version number and configuration, the remote Juniper Junos device is affected by a flaw in the handling of cluster synchronization and failover operations whenever the root account has been locked out. An unauthenticated, remote attacker can exploit this, via a seri...

The vulnerability of the Secure Display component in the Android operating system allows a hacker to modify the common resources.

The vulnerability of the Secure Display component in the Android operating system arises due to synchronization errors when using a shared resource. Exploiting this vulnerability allows a remote attacker to modify the shared resource...

The vulnerability of the software interface of the TimeZone component in the Android operating system allows a hacker to modify general resources.

The vulnerability of the TimeZone component’s software interface in the Android operating system arises from synchronization errors when using a common resource. Exploiting this vulnerability allows a remote attacker to modify the common resource...

The vulnerability of the android operating system’s sound driver ioctl handler allows a hacker to cause the device to freeze or fail to function properly.

The vulnerability of the Android operating system’s sound driver ioctl handler arises due to synchronization errors when using shared resources. Exploiting this vulnerability can allow a malicious actor to cause the device to become unresponsive or to fail to function properly...

Enterprise Plus license is required error on dashboards and reports

Cause Veeam MP license is synchronized to the Data Warehouse then reports load this information. If license is invalid in the Data Warehouse due to Synchronization server having issue this error will occur. Solution 1. Open SCOM Operations Manager Console. 2. Select Discovered Inventory 3. Filter...

[SECURITY] Fedora 26 Update: systemd-233-4.fc26

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. It provides aggressive parallelization capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux control groups,...

The vulnerability of the CAF repository in the Android operating system allows a hacker to cause the device to freeze.

The vulnerability of the CAF repository in the Android operating system arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause the device to become unresponsive in a “hang” state by utilizing the...

The vulnerability of the TrustZone component in the Android operating system allows a hacker to simplify the process of decoding messages.

The vulnerability of the TrustZone component in the Android operating system arises due to synchronization errors when using shared resources. Exploiting this vulnerability can enable a remote attacker to simplify the process of decoding messages...

The vulnerability of the Kernel component in Mac OS X and iOS operating systems allows attackers to execute arbitrary code in a privileged context.

The vulnerability of the Kernel component in Mac OS X and iOS operating systems arises due to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to execute arbitrary code in a privileged context racing environment through a specially created...

The vulnerability of the embedded file system (EFS) of the Android operating system allows a hacker to simplify the process of decoding messages.

The vulnerability of the embedded file system EFS of the Android operating system arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can enable a malicious actor to simplify the process of decoding messages remotely...

CVE-2016-3066

The spice-gtk widget allows remote authenticated users to obtain information from the host clipboard...

The vulnerability of the TrustZone technology (QFPROM mode of Qualcomm Secure Execution Environment) allows for breaches of the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the TrustZone technology QFPROM mode of Qualcomm Secure Execution Environment for Android from the CAF repository arises due to synchronization errors when using a common resource. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality,...

The vulnerability of Qualcomm’s TrustZone microprogramming software technology allows for breaches of the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the TrustZone technology snooping mode of Qualcomm’s Secure Execution Environment for Android, as found in the CAF repository, stems from synchronization errors when using a common resource. Exploiting this vulnerability could allow a malicious actor, operating remotely, to...

The vulnerability of Qualcomm’s TrustZone microprogramming software technology allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the TrustZone technology’s authentication mode for Qualcomm Secure Execution Environment for Android, as found in the CAF repository, stems from synchronization errors when using a common resource. Exploiting this vulnerability could allow an attacker operating remotely to...

Update Rollup 13 for System Center 2012 R2 Data Protection Manager

Update Rollup 13 for System Center 2012 R2 Data Protection Manager Introduction This article describes the issues that are fixed in Update Rollup 13 for Microsoft System Center 2012 R2 Data Protection Manager. It also contains the installation instructions for this update. Note Existing Data...

Fatal vulnerability will allow an attacker to bypass Apple's OTR signature verification and steal your iCloud keychain information-vulnerability warning-the black bar safety net

! Background content In the analysis of the iOS platform and sandbox escape about the attack surface when we in the iCloud keychain sync feature of OTR implementation has discovered a serious security vulnerability. iCloud keychain sync feature allows users in a secure manner across the device to...

Race condition

All versions of the NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer nvlddmkm.sys where user can trigger a race condition due to lack of synchronization in two functions leading to a denial of service or potential escalation of privileges...

CVE-2017-0343

CVE-2017-0343 affects the NVIDIA Windows GPU Display Driver (kernel mode layer nvlddmkm.sys). The connected sources confirm a race condition due to lack of synchronization in the nvlddmkm.sys handler, which can lead to denial of service or potential privilege escalation. Affected component is the...