TSX Asynchronous Abort speculative side channel

ISSUE DESCRIPTION This is very closely related to the Microarchitectural Data Sampling vulnerabilities from May 2019. Please see https://xenbits.xen.org/xsa/advisory-297.html for details about MDS. A new way to sample data from microarchitectural structures has been identified. A TSX Asynchronous...

UBUNTU-CVE-2019-11135

TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access...

CVE-2019-11135

TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access...

KLA12121 Multiple vulnerabilities in VMware Workstation and Player

Multiple vulnerabilities were found in VMware Workstation and Player. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in the RPC handler can be exploited t...

HPSBHF03638 rev. 4 - Intel 2019.2 IPU BIOS Security Updates

Potential Security Impact Escalation of Privilege, Denial of Service, Information Disclosure. Source: HP, HP Product Security Response Team PSRT Reported by: Intel VULNERABILITY SUMMARY Multiple security vulnerabilities have been identified by Intel. Intel is releasing updates for BIOS, Voltage...

Panic during initialization of Lazy<T> might trigger undefined behavior

If during the first dereference of Lazy the initialization function panics, subsequent dereferences will execute std::hints::unreachableunchecked. Applications with panic = "abort" are not affected, as there will be no subsequent dereferences...

exiv2: SIGABRT caused by memory allocation in types.cpp:Exiv2::Internal::PngChunk::zlibUncompress()

In types.cpp in Exiv2 0.26, a large size value may lead to a SIGABRT during an attempt at memory allocation for an Exiv2::Internal::PngChunk::zlibUncompress call...

poppler: reachable abort in Object.h

An issue was discovered in Poppler 0.71.0. There is a reachable abort in Object.h, will lead to denial of service because EmbFile::save2 in FileSpec.cc lacks a stream check before saving an embedded file...

CVE-2019-5455

CVE-2019-5455 affects the Nextcloud Android app (v3.6.0). The issue allows bypassing the device lock protection during multi-account creation/abort, enabling the attacker to redirect to a default account without prompting for the lock pattern. Evidence includes a PoC described in the HackerOne re...

DEBIAN-CVE-2019-11072

lighttpd before 1.4.54 has a signed integer overflow, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a malicious HTTP GET request, as demonstrated by mishandling of /%2F? in burlnormalize2Ftoslashfix in burl.c. NOTE:...

Null pointer dereference

In libwebm before 2019-03-08, a NULL pointer dereference caused by the functions OutputCluster and OutputTracks in webminfo.cc will trigger an abort, which allows a DoS attack, a similar issue to CVE-2018-19212...

CVE-2019-9746

In libwebm before 2019-03-08, a NULL pointer dereference caused by the functions OutputCluster and OutputTracks in webminfo.cc will trigger an abort, which allows a DoS attack, a similar issue to CVE-2018-19212...

CVE-2019-9211

There is a reachable assertion abort in the function writelongstringmissingvalues in data/sys-file-writer.c in libdata.a in GNU PSPP 1.2.0 that will lead to denial of service...

UBUNTU-CVE-2019-9211

There is a reachable assertion abort in the function writelongstringmissingvalues in data/sys-file-writer.c in libdata.a in GNU PSPP 1.2.0 that will lead to denial of service...

CVE-2019-9211

There is a reachable assertion abort in the function writelongstringmissingvalues in data/sys-file-writer.c in libdata.a in GNU PSPP 1.2.0 that will lead to denial of service...

CVE-2019-9211

There is a reachable assertion abort in the function writelongstringmissingvalues in data/sys-file-writer.c in libdata.a in GNU PSPP 1.2.0 that will lead to denial of service...

CVE-2019-9211

The CVE-2019-9211 issue affects PSPP 1.2.0, where a reachable assertion abort in write_long_string_missing_values() within data/sys-file-writer.c in libdata.a can cause a denial of service. Connected sources confirm this exact component and function are implicated, and multiple advisories (openSU...

CVE-2019-9211

There is a reachable assertion abort in the function writelongstringmissingvalues in data/sys-file-writer.c in libdata.a in GNU PSPP 1.2.0 that will lead to denial of service...

Security update for java-11-openjdk (important)

openSUSE Security Update: Security update for java-11-openjdk Announcement ID: openSUSE-SU-2019:0161-1 Rating: important References: 1120431 1122293 1122299 Cross-References: CVE-2018-11212 CVE-2019-2422 CVE-2019-2426 Affected Products: openSUSE Leap 15.0 An update that fixes three vulnerabilitie...

CVE-2019-7659

Genivia gSOAP 2.7.x and 2.8.x before 2.8.75 allows attackers to cause a denial of service application abort or possibly have unspecified other impact if a server application is built with the -DWITHCOOKIES flag. This affects the C/C++ libgsoapck/libgsoapck++ and libgsoapssl/libgsoapssl++ librarie...