5093 matches found
EulerOS 2.0 SP5 : postgresql (EulerOS-SA-2021-1700)
According to the version of the postgresql packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found in PostgreSQL versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. An attacker havi...
Huawei EulerOS: Security Advisory for postgresql (EulerOS-SA-2021-1700)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-20219
A denial of service vulnerability was found in nttyreceivecharspecial in drivers/tty/ntty.c of the Linux kernel. In this flaw a local attacker with a normal user privilege could delay the loop due to a changing ldata-readhead, and a missing sanity check and cause a threat to the system availabili...
ALPINE-CVE-2021-20227
A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...
CVE-2021-20222
A flaw was found in keycloak. The new account console in keycloak can allow malicious code to be executed using the referrer URL. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...
CVE-2021-20222
A flaw was found in keycloak. The new account console in keycloak can allow malicious code to be executed using the referrer URL. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...
Denial of service
A denial of service vulnerability was found in nttyreceivecharspecial in drivers/tty/ntty.c of the Linux kernel. In this flaw a local attacker with a normal user privilege could delay the loop due to a changing ldata-readhead, and a missing sanity check and cause a threat to the system availabili...
CVE-2021-20219
A denial of service vulnerability was found in nttyreceivecharspecial in drivers/tty/ntty.c of the Linux kernel. In this flaw a local attacker with a normal user privilege could delay the loop due to a changing ldata-readhead, and a missing sanity check and cause a threat to the system availabili...
Design/Logic Flaw
A flaw was found in keycloak. The new account console in keycloak can allow malicious code to be executed using the referrer URL. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...
Design/Logic Flaw
A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...
UBUNTU-CVE-2021-20219
A denial of service vulnerability was found in nttyreceivecharspecial in drivers/tty/ntty.c of the Linux kernel. In this flaw a local attacker with a normal user privilege could delay the loop due to a changing ldata-readhead, and a missing sanity check and cause a threat to the system availabili...
CVE-2021-20222
CVE-2021-20222 affects Keycloak before 13.0.0: cross-site scripting via the new account console referrer URL, enabling malicious code execution. Impacts include confidentiality, integrity, and availability. Remediation: upgrade to Keycloak 13.0.0+ (e.g., 13.0.0-1 per Arch Linux ASA); check vendor...
CVE-2021-20222
A flaw was found in keycloak. The new account console in keycloak can allow malicious code to be executed using the referrer URL. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...
CVE-2021-20219
A denial of service vulnerability was found in nttyreceivecharspecial in drivers/tty/ntty.c of the Linux kernel. In this flaw a local attacker with a normal user privilege could delay the loop due to a changing ldata-readhead, and a missing sanity check and cause a threat to the system availabili...
CVE-2021-20219
A denial of service vulnerability was found in nttyreceivecharspecial in drivers/tty/ntty.c of the Linux kernel. In this flaw a local attacker with a normal user privilege could delay the loop due to a changing ldata-readhead, and a missing sanity check and cause a threat to the system availabili...
bouncycastle: password bypass in OpenBSDBCrypt.checkPassword utility possible
A flaw was found in bouncycastle. The OpenBSDBCrypt.checkPassword utility method compared incorrect data when checking the password allowing incorrect passwords to indicate they were matching with previously hashed ones that were different. The highest threat from this vulnerability is to data...
jboss-remoting: Threads hold up forever in the EJB server by suppressing the ack from an EJB client
A flaw was found in jboss-remoting. A malicious attacker could cause threads to hold up forever in the EJB server by writing a sequence of bytes corresponding to the expected messages of a successful EJB client request, but omitting the ACK messages, or just tamper with jboss-remoting code,...
PT-2021-13851 · Red Hat · Keycloak
Name of the Vulnerable Software and Affected Versions: keycloak affected versions not specified Description: A flaw was found in the new account console of keycloak, allowing malicious code to be executed using the referrer URL. The highest threat from this issue is to data confidentiality and...
CVE-2021-20227
A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...
CVE-2021-20227
A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...