2521 matches found
glibc 缓冲区错误漏洞
glibc GNU C Library is the C standard library implemented by the GNU Project. A security vulnerability exists in glibc 2.37 and earlier versions, which stems from the presence of an integer overflow that can be exploited by an attacker to cause the size of the buffer in which a message is stored ...
PT-2024-1610 · Glibc +1 · Glibc +1
Name of the Vulnerable Software and Affected Versions: glibc versions 2.37 and newer Description: The issue is related to an integer overflow in the vsyslog internal function of the glibc library, which is called by the syslog and vsyslog functions. This occurs when these functions are called wit...
GHSA-W59H-378F-2FRM Unsound sending of non-Send types across threads in threadalone
Affected versions can run the Drop impl of a non-Send type on a different thread than it was created on. The flaw occurs when a stderr write performed by the threadalone crate fails, for example because stderr is redirected to a location on a filesystem that is full, or because stderr is a pipe...
GHSA-V363-RRF2-5FMJ ferris-says has undefined behavior when not using UTF-8
Affected versions receive a &u8 from the caller through a safe API, and pass it directly to the unsafe str::fromutf8unchecked function. The behavior of ferrissays::say is undefined if the bytes from the caller don't happen to be valid UTF-8. The flaw was corrected in ferris-says21 by using the sa...
RLSA-2024:0012 Important: firefox security update
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 115.6.0 ESR. Security Fixes: Mozilla: Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM driver CVE-2023-6856 Mozilla...
Unsound sending of non-Send types across threads
Affected versions can run the Drop impl of a non-Send type on a different thread than it was created on. The flaw occurs when a stderr write performed by the threadalone crate fails, for example because stderr is redirected to a location on a filesystem that is full, or because stderr is a pipe...
RUSTSEC-2024-0005 Unsound sending of non-Send types across threads
Affected versions can run the Drop impl of a non-Send type on a different thread than it was created on. The flaw occurs when a stderr write performed by the threadalone crate fails, for example because stderr is redirected to a location on a filesystem that is full, or because stderr is a pipe...
DEBIAN-CVE-2023-46837
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes such as the ones during scrubbing have reached memory before handing over the page to a guest. Unfortunately, the arithmetics in the...
ALPINE-CVE-2023-46837
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes such as the ones during scrubbing have reached memory before handing over the page to a guest. Unfortunately, the arithmetics in the...
CVE-2023-46837
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes such as the ones during scrubbing have reached memory before handing over the page to a guest. Unfortunately, the arithmetics in the...
UBUNTU-CVE-2023-46837
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes such as the ones during scrubbing have reached memory before handing over the page to a guest. Unfortunately, the arithmetics in the...
Design/Logic Flaw
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes such as the ones during scrubbing have reached memory before handing over the page to a guest. Unfortunately, the arithmetics in the...
CVE-2023-46837 arm32: The cache may not be properly cleaned/invalidated (take two)
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes such as the ones during scrubbing have reached memory before handing over the page to a guest. Unfortunately, the arithmetics in the...
CVE-2023-46837
CVE-2023-46837 affects Xen on Arm. The vulnerability stems from overflow in cache-clean/invalidation helpers used during memory scrubbing, which can lead to undefined behavior and potential premature cache-write reordering, with no guarantee that writes reach memory before handing pages to guests...
Lotos WebServer Security Vulnerability
Lotos WebServer is a small but high-performance HTTP WebServer that follows the Reactor model and uses non-blocking IO and IO multiplexing epoll ET to handle concurrency. A security vulnerability exists in Lotos WebServer version 0.1.1 and earlier, which stems from improper realloc handling, the...
Oracle Linux 8 : thunderbird (ELSA-2024-0003)
The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-0003 advisory. 115.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 115.6.0-1 - Update to 115.6.0 build2 Tenable has...
Mozilla: Undefined behavior in <code>ShutdownObserver()</code>
The Mozilla Foundation Security Advisory describes this flaw as: The ShutdownObserver was susceptible to potentially undefined behavior due to its reliance on a dynamic type that lacked a virtual destructor...
Mozilla: Undefined behavior in <code>ShutdownObserver()</code>
The Mozilla Foundation Security Advisory describes this flaw as: The ShutdownObserver was susceptible to potentially undefined behavior due to its reliance on a dynamic type that lacked a virtual destructor...
Mozilla: Undefined behavior in <code>ShutdownObserver()</code>
The Mozilla Foundation Security Advisory describes this flaw as: The ShutdownObserver was susceptible to potentially undefined behavior due to its reliance on a dynamic type that lacked a virtual destructor...
Mozilla: Undefined behavior in <code>ShutdownObserver()</code>
The Mozilla Foundation Security Advisory describes this flaw as: The ShutdownObserver was susceptible to potentially undefined behavior due to its reliance on a dynamic type that lacked a virtual destructor...