The vulnerability of the ezxml_internal_dtd function in the XML document syntax analysis library ezXML allows a attacker to cause a service failure.

The vulnerability of the ezxmlinternaldtd function in the XML document syntax analysis library ezXML is related to pointer aliasing errors. Exploiting this vulnerability allows an attacker to trigger a service failure using a specially created XML file...

The vulnerability of the functions ezxml_str2utf8 and ezxmlParseStr in the ezxml.c component of the ezXML library for XML document syntax analysis allows a attacker to cause a service failure.

The vulnerability of the ezxmlstr2utf8 and ezxmlParseStr functions in the ezxml.c component of the ezXML XML syntax analysis library is related to pointer aliasing errors. Exploiting this vulnerability allows an attacker to trigger a service failure using a specially created XML file...

Node.js: Renaming/aliasing relative symbolic links potentially redirects them to supposedly inaccessible locations

Vulnerability description not provided...

Spring Data JPA introduces query parser!

The Problem One of Spring Data JPA’s handy features is letting you plugin in custom JPA queries through its @Query annotation. This allows some flexiblity because you are still able to offer sort parameters to the consumers of your app. Check out the example below: interface SampleRepository...

The vulnerability of the BIG-IP Access Policy Manager’s access control and remote authentication mechanism lies in errors during pointer assignment, allowing attackers to trigger an octath in the service.

The vulnerability of the BIG-IP Access Policy Manager’s access control and remote authentication mechanisms is related to pointer aliasing errors. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

SUSE CVE-2010-4698

Stack-based buffer overflow in the GD extension in PHP before 5.2.15 and 5.3.x before 5.3.4 allows context-dependent attackers to cause a denial of service application crash via a large number of anti-aliasing steps in an argument to the imagepstext function...

The vulnerability in the `QuickTimeVideo::decodeBlock` function of the `quicktimevideo.cpp` file in the library and command-line utilities for managing image metadata from Exiv2 allows a attacker to perform a denial-of-service attack.

The vulnerability in the QuickTimeVideo::decodeBlock function of the quicktimevideo.cpp file in the library and command-line utilities for managing image metadata in Exiv2 is related to pointer aliasing errors. Exploiting this vulnerability could allow an attacker to trigger a denial-of-service...

The vulnerability in the `QuickTimeVideo::userDataDecoder` function of the `quicktimevideo.cpp` file in the library and command-line utilities for managing image metadata with the Exiv2 library allows a hacker to execute arbitrary code.

The vulnerability of the QuickTimeVideo::userDataDecoder function in the quicktimevideo.cpp file of the Exiv2 image metadata management library and command-line utilities is related to pointer aliasing errors. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

hw: cpu: AMD: Branch Type Confusion (non-retbleed)

A flaw was found in hw. Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type, potentially leading to information disclosure...

GHSA-9QXH-258V-666C owning_ref vulnerable to multiple soundness issues

OwningRef::mapwithowner is unsound and may result in a use-after-free. - OwningRef::map is unsound and may result in a use-after-free. - OwningRefMut::asowner and OwningRefMut::asownermut are unsound and may result in a use-after-free. - The crate violates Rust's aliasing rules, which may cause...

owning_ref vulnerable to multiple soundness issues

OwningRef::mapwithowner is unsound and may result in a use-after-free. - OwningRef::map is unsound and may result in a use-after-free. - OwningRefMut::asowner and OwningRefMut::asownermut are unsound and may result in a use-after-free. - The crate violates Rust's aliasing rules, which may cause...

CVE-2022-23825

Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type potentially leading to information disclosure...

hw: cpu: intel: Intra-Mode BTI

A flaw was found in hw. The Intra-mode BTI refers to a variant of Branch Target Injection aka SpectreV2 BTI where an indirect branch speculates to an aliased predictor entry for a different indirect branch in the same predictor mode, and a disclosure gadget at the predicted target transiently...

EulerOS 2.0 SP10 : samba (EulerOS-SA-2022-1666)

According to the versions of the samba packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The Samba vfsfruit module uses extended file attributes EA, xattr to provide ...enhanced compatibility with Apple SMB clients and interoperabilit...

Mageia: Security Advisory (MGASA-2018-0282)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RUSTSEC-2022-0040 Multiple soundness issues in `owning_ref`

OwningRef::mapwithowner is unsound and may result in a use-after-free. - OwningRef::map is unsound and may result in a use-after-free. - OwningRefMut::asowner and OwningRefMut::asownermut are unsound and may result in a use-after-free. - The crate violates Rust's aliasing rules, which may cause...

Multiple soundness issues in `owning_ref`

OwningRef::mapwithowner is unsound and may result in a use-after-free. - OwningRef::map is unsound and may result in a use-after-free. - OwningRefMut::asowner and OwningRefMut::asownermut are unsound and may result in a use-after-free. - The crate violates Rust's aliasing rules, which may cause...

The vulnerability of the Adobe InCopy text creation and editing software, related to pointer aliasing errors, allows a hacker to trigger a service failure.

The vulnerability of the Adobe InCopy text creation and editing software is related to pointer aliasing errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2021-3322

Unexpected Pointer Aliasing in IEEE 802154 Fragment Reassembly in Zephyr. Zephyr versions = =2.4.0 contain NULL Pointer Dereference CWE-476. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-p86r-gc4r-4mq3...

CVE-2021-3322

Unexpected Pointer Aliasing in IEEE 802154 Fragment Reassembly in Zephyr. Zephyr versions = =2.4.0 contain NULL Pointer Dereference CWE-476. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-p86r-gc4r-4mq3...