CVE-2018-16765

In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because of an unspecified "heap-buffer-overflow" condition in FunctionValidationContext::else...

CVE-2018-16766

In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because Errors::unreachable is reached...

CVE-2018-16770

In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because a certain newallocator allocate call fails...

CVE-2018-16767

CVE-2018-16767 affects WAVM (WebAssembly Virtual Machine). A crafted file sent to WAVM may trigger a heap-buffer-overflow in FunctionValidationContext::popAndValidateOperand, causing denial of service (application crash) and possibly other impact for WAVM versions up to and including 2018-07-26. ...

CVE-2018-16769

In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because libRuntime.so!llvm::InstructionCombiningPass::runOnFunction is mishandled...

CVE-2018-16766

WAVM (WebAssembly Virtual Machine) is affected by CVE-2018-16766. A crafted file can trigger Errors::unreachable(), potentially causing a denial of service (application crash) or other unspecified impact. The CVSS data (3.0) indicates a network-based, low-attack-vector issue with no privileges re...

WAVM Denial of Service Vulnerability

WAVM is the WebAssembly Virtual Machine. A denial-of-service vulnerability exists in WAVM 2018-07-26 and prior versions, which can be exploited by an attacker to cause a denial of service application crash by sending a specially crafted file...

WAVM Buffer Over-Read Vulnerability

WAVM is the WebAssembly Virtual Machine. A heap buffer over-read vulnerability exists in IR::FunctionValidationContext::catchall in WAVM 2018-07-26 and earlier versions, which can be exploited by an attacker to cause a denial of service application crash by sending a specially crafted file...

WAVM Denial of Service Vulnerability (CNVD-2019-09771)

WAVM is the WebAssembly Virtual Machine. A denial of service vulnerability exists in WAVM 2018-07-26 and earlier versions, which stems from the program failing to properly handle the 'libRuntime.so!llvm::InstructionCombiningPass::runOnFunction' function. An attacker can cause a denial of service...

WAVM Buffer Overflow Vulnerability

WAVM is the WebAssembly Virtual Machine. A buffer overflow vulnerability exists in the 'FunctionValidationContext::popAndValidateOperand' function in WAVM 2018-07-26 and earlier versions, which can be exploited by an attacker by sending a specially crafted file to WAVM This can be exploited to...

Update Rollup 6 for System Center 2012 R2 Virtual Machine Manager

Update Rollup 6 for System Center 2012 R2 Virtual Machine Manager Introduction This article describes the issues that are fixed in Update Rollup 6 for Microsoft System Center 2012 R2 Virtual Machine Manager. There are two updates available for Virtual Machine Manager VMM: Server and Administrator...

UBUNTU-CVE-2018-14625

A flaw was found in the Linux Kernel where an attacker may be able to have an uncontrolled read to kernel-memory from within a vm guest. A race condition between connect and close function may allow an attacker using the AFVSOCK protocol to gather a 4 byte information leak or possibly intercept o...

OilRig Sends an OopsIE to Mideast Government Targets

The OilRig group is back, using a reboot of the OopsIE trojan to pump information from its favorite resource: entities in the Middle East region. OilRig, which is also called Cobalt Gypsy, Crambus, Helix Kitten or PT34, is suspected of having ties to Iran. The group was identified in 2015 and is...

QEMU Denial of Service Vulnerability (CNVD-2018-17099)

QEMU aka Quick Emulator is a set of simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. A security vulnerability exists in the qemu-seccomp.c file in QEMU, which stems from the program incorrectly handling the seccomp policy for...

UBUNTU-CVE-2018-15746

qemu-seccomp.c in QEMU might allow local OS guest users to cause a denial of service guest crash by leveraging mishandling of the seccomp policy for threads other than the main thread...

JDK: privilege escalation via insufficiently restricted access to Attach API

In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, which includes the ability to execute untrusted native code. Attach API is enabled by default on...

JDK: privilege escalation via insufficiently restricted access to Attach API

In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, which includes the ability to execute untrusted native code. Attach API is enabled by default on...

FreeBSD : FreeBSD -- L1 Terminal Fault (L1TF) Kernel Information Disclosure (2310b814-a652-11e8-805b-a4badb2f4699) (Foreshadow)

On certain Intel 64-bit x86 systems there is a period of time during terminal fault handling where the CPU may use speculative execution to try to load data. The CPU may speculatively access the level 1 data cache L1D. Data which would otherwise be protected may then be determined by using side...

DEBIAN-CVE-2018-10846

A cache-based side channel in GnuTLS implementation that leads to plain text recovery in cross-VM attack setting was found. An attacker could use a combination of "Just in Time" Prime+probe attack in combination with Lucky-13 attack to recover plain text using crafted packets...

UBUNTU-CVE-2018-10846

A cache-based side channel in GnuTLS implementation that leads to plain text recovery in cross-VM attack setting was found. An attacker could use a combination of "Just in Time" Prime+probe attack in combination with Lucky-13 attack to recover plain text using crafted packets...