This flaw allows an attacker who can submit a crafted input file to tar to cause uncontrolled consumption of memory.

A flaw was found in the src/list.c of tar 1.33 and earlier. This flaw allows an attacker who can submit a crafted input file to tar to cause uncontrolled consumption of memory. The highest threat from this vulnerability is to system availability...

The vulnerabilities of microprogramming software in Honeywell Experion PKS programmable logic controllers, Honeywell Experion LX measurement and control controllers, and the Experion PlantCruise distribution control system allow attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerabilities of microprogrammed software in Honeywell Experion PKS programmable logic controllers, Experion LX measurement and control controllers, and Experion PlantCruise distribution systems are related to insufficient testing of value return. Exploitation of these vulnerabilities could...

Ubuntu 16.04 ESM : X.Org X Server vulnerabilities (USN-5193-3)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5193-3 advisory. USN-5193-1 fixed several vulnerabilities in X.Org. This update provides the corresponding update for Ubuntu 16.04 ESM. Tenable has extracted the precedin...

CVE-2023-36917 Password Change rate limit bypass in SAP BusinessObjects Business Intelligence Platform

SAP BusinessObjects Business Intelligence Platform - version 420, 430, allows an unauthorized attacker who had hijacked a user session, to be able to bypass the victim’s old password via brute force, due to unrestricted rate limit for password change functionality. Although the attack has no impa...

Exploit for Incorrect Authorization in Polkit_Project Polkit

CVE-2021-3560 - Polkit Local Privilege Escalation...

golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString

A flaw was found in the big package of the math library in golang. The Rat.SetString could cause an overflow, and if left unhandled, it could lead to excessive memory use. This issue could allow a remote attacker to impact the availability of the system...

The vulnerability of the dm1105_remove() function in the drivers/media/pci/dm1105/dm1105.c file of the TV Tuner driver on the DM1105 chip in the Linux operating system can be exploited by an attacker, thereby compromising the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the dm1105remove function in the drivers/media/pci/dm1105/dm1105.c file of the TV Tuner driver on the DM1105 chip in the Linux operating system is related to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability coul...

Medium: OpenEXR

Issue Overview: A flaw was found in OpenEXR's B44Compressor. This flaw allows an attacker who can submit a crafted file to be processed by OpenEXR, to exhaust all memory accessible to the application. The highest threat from this vulnerability is to system availability. CVE-2021-20298 A flaw foun...

Medium: libfastjson

Issue Overview: A flaw was found in json-c. In printbufmemappend, certain crafted values can overflow the memory allowing an attacker to write past the memory boundary. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. CVE-2020-127...

GLSA-202305-30 : X.Org X server, XWayland: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202305-30 X.Org X server, XWayland: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in X.Org X server, XWayland. Please review the CVE identifiers referenced below for details. Tenable has extracted the...

SUSE CVE-2021-20245

A flaw was found in ImageMagick in coders/webp.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability...

Oracle Linux 8 : python39:3.9 / and / python39-devel:3.9 (ELSA-2023-2764)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-2764 advisory. - An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA RFC 34...

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : Linux PTP vulnerability (USN-6097-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-6097-1 advisory. It was discovered that Linux PTP did not properly perform a length check when forwarding a PTP message between ports. A remote attacker...

CVE-2020-25695 - Multiple features escape "security restricted operation" sandbox

A flaw was found in PostgreSQL versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. An attacker having permission to create non-temporary objects in at least one schema can execute arbitrary SQL functions under the identity of a superuser. The highest...

golang: go/parser: stack exhaustion in all Parse* functions

A flaw was found in the golang standard library, go/parser. When calling any Parse functions on the Go source code, which contains deeply nested types or declarations, a panic can occur due to stack exhaustion. This issue allows an attacker to impact system availability...

Medium: libwebp

Issue Overview: 2023-08-03: CVE-2018-25014 was added to this advisory. A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ShiftBytes. CVE-2018-25013 A flaw was found in libwebp. An unitialized variable is used in function ReadSymbol. The highest threat from this...

EulerOS Virtualization 2.10.1 : grub2 (EulerOS-SA-2023-1889)

According to the versions of the grub2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged...

glob-parent: Regular Expression Denial of Service

A vulnerability was found in the glob-parent package. Affected versions of this package are vulnerable to Regular expression Denial of Service ReDoS attacks, affecting system availability...

glob-parent: Regular Expression Denial of Service

A vulnerability was found in the glob-parent package. Affected versions of this package are vulnerable to Regular expression Denial of Service ReDoS attacks, affecting system availability...

kernel: wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit()

A use after free exists in the wifi module of the linux kernel in the function brcmfnetdevstartxmit,thereby leading to damage to system availability and integrity...