Lucene search
K

58 matches found

Tenable Nessus
Tenable Nessus
added 2021/11/19 12:0 a.m.42 views

Oracle Linux 8 : gcc-toolset-10-gcc (ELSA-2021-4585)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-4585 advisory. 10.3.1-1.2.0.1 - Fix Orabug 32423691- gcc10 SEGV for every test in sregress: ORA-7445ksmplruaddbatchksm same bug as PR tree-optimization/100053:...

8.3CVSS7.6AI score0.12205EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2021/11/18 12:0 a.m.34 views

Oracle Linux 8 : rust-toolset:ol8 (ELSA-2021-4590)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-4590 advisory. rust 1.54.0-3 - Lint against Unicode control codepoints. rust-toolset 1.54.0-1 - Update to Rust and Cargo 1.54.0. 1.53.0-1 - Update to Rust and Cargo 1.53.0...

8.3CVSS7.6AI score0.12205EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2021/11/18 12:0 a.m.58 views

Oracle Linux 8 : gcc-toolset-11-gcc (ELSA-2021-4586)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-4586 advisory. 11.2.1-1.2.0.1 - Add -ftrivial-auto-var-init support from GCC12 Reviewed-by: Jose E. Marchesi - Add CTF/BTF support Reviewed-by: Qing Zhao 11.2.1-1.2 - add...

8.3CVSS7.6AI score0.12205EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2021/11/18 12:0 a.m.32 views

Oracle Linux 8 : gcc-toolset-11-binutils (ELSA-2021-4594)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-4594 advisory. 2.36.1-1.0.1.1 - Forward port Oracle patches from 2.36.1-1.0.1 - Reviewed-by: Jose E. Marchesi 2.36.1-1.1 - Add ability to control the display of unicode...

8.3CVSS7.6AI score0.12205EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2021/11/18 12:0 a.m.35 views

Oracle Linux 8 : gcc-toolset-10-binutils (ELSA-2021-4649)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-4649 advisory. 2.35-8.6 - Add ability to control the display of unicode characters. 2009176 Tenable has extracted the preceding description block directly from the Oracle Linu...

8.3CVSS7.6AI score0.12205EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2021/11/18 12:0 a.m.26 views

Oracle Linux 8 : gcc-toolset-11-annobin (ELSA-2021-4591)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-4591 advisory. 9.85-1.1 - Annocheck: Add test for multibyte characters in symbol names. 2017367 Tenable has extracted the preceding description block directly from the Oracle...

8.3CVSS7.6AI score0.12205EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2021/11/18 12:0 a.m.36 views

Oracle Linux 8 : binutils (ELSA-2021-4595)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-4595 advisory. 2.30-108.0.2.1 - Forward-port Oracle patches from 2.30-108.0.2 to 2.30-108.0.2.1 - Reviewed-by: Jose E. Marchesi 2.30-108.0.2 - Forward-port the following updat...

8.3CVSS7.6AI score0.12205EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2021/11/18 12:0 a.m.39 views

Oracle Linux 8 : annobin (ELSA-2021-4593)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-4593 advisory. 9.72-1.2 - Bump NVR and rebuild to use the new gcc. 2017362 9.72-1.1 - Annocheck: Add test for multibyte characters in symbol names. 2017362 9.72-1 - Rebase to...

8.3CVSS7.6AI score0.12205EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2021/11/02 12:0 a.m.39 views

Oracle Linux 7 : binutils (ELSA-2021-4033)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-4033 advisory. 2.27-44.base.0.3.1 - Forward-port patches to 2.27-44.base.1 - Reviewed-by: Jose E. Marchesi 2.27-44.base.0.2.1 - Forward-port patches to 2.27-44.base.1 -...

8.3CVSS7.6AI score0.12205EPSS
Exploits4References2
NVD
NVD
added 2021/11/01 4:15 a.m.26 views

CVE-2021-42694

An issue was discovered in the character definitions of the Unicode Specification through 14.0. The specification allows an adversary to produce source code identifiers such as function names using homoglyphs that render visually identical to a target identifier. Adversaries can leverage this to...

8.3CVSS0.04485EPSS
Exploits1References10
OSV
OSV
added 2021/11/01 4:15 a.m.5 views

CVE-2021-42574

An issue was discovered in the Bidirectional Algorithm in the Unicode Specification through 14.0. It permits the visual reordering of characters via control sequences, which can be used to craft source code that renders different logic than the logical ordering of tokens ingested by compilers and...

8.3CVSS8.4AI score
Exploits0References18
Prion
Prion
added 2021/11/01 4:15 a.m.38 views

Design/Logic Flaw

DISPUTED An issue was discovered in the Bidirectional Algorithm in the Unicode Specification through 14.0. It permits the visual reordering of characters via control sequences, which can be used to craft source code that renders different logic than the logical ordering of tokens ingested by...

5.1CVSS8.4AI score0.12205EPSS
Exploits4References18Affected Software3
Vulnrichment
Vulnrichment
added 2021/11/01 12:0 a.m.24 views

CVE-2021-42694

An issue was discovered in the character definitions of the Unicode Specification through 14.0. The specification allows an adversary to produce source code identifiers such as function names using homoglyphs that render visually identical to a target identifier. Adversaries can leverage this to...

6.8AI score0.04485EPSS
Exploits1References10
CVE
CVE
added 2021/11/01 12:0 a.m.185 views

CVE-2021-42694

CVE-2021-42694 concerns homoglyph-based Trojan Source in Unicode handling up to at least Unicode 14.0. Attackers can craft source code identifiers that render visually identical to legitimate names, enabling injection or concealment of code in upstream/downstream dependencies. The connected docum...

8.3CVSS8AI score0.04485EPSS
Exploits1References10Affected Software1
Cvelist
Cvelist
added 2021/11/01 12:0 a.m.48 views

CVE-2021-42694

An issue was discovered in the character definitions of the Unicode Specification through 14.0. The specification allows an adversary to produce source code identifiers such as function names using homoglyphs that render visually identical to a target identifier. Adversaries can leverage this to...

8.3AI score0.04485EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2021/11/01 12:0 a.m.4 views

PT-2021-4640 · Unknown · Unicode Specification

Name of the Vulnerable Software and Affected Versions: Unicode Specification versions through 14.0 Description: An issue was discovered in the character definitions of the Unicode Specification. The specification allows an adversary to produce source code identifiers, such as function names, usin...

10CVSS9AI score0.04485EPSS
Exploits1References23
Positive Technologies
Positive Technologies
added 2021/11/01 12:0 a.m.5 views

PT-2021-4639

Name of the Vulnerable Software and Affected Versions Unicode Specification versions prior to 14.0 Jira Service Management affected versions not specified Jira Software affected versions not specified Jira Work Management affected versions not specified Description The issue is related to the...

10CVSS7AI score0.12205EPSS
Exploits4References121
AlpineLinux
AlpineLinux
added 2021/11/01 12:0 a.m.73 views

CVE-2021-42574

An issue was discovered in the Bidirectional Algorithm in the Unicode Specification through 14.0. It permits the visual reordering of characters via control sequences, which can be used to craft source code that renders different logic than the logical ordering of tokens ingested by compilers and...

8.3CVSS8.7AI score0.12205EPSS
Exploits4
Rows per page
Query Builder