UBUNTU-CVE-2018-18606

An issue was discovered in the mergestrings function in merge.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. There is a NULL pointer dereference in bfdaddmergesection when attempting to merge sections with large alignments. A specially crafted ELF...

May 10, 2016 — KB3156421 (OS Build 10586.318)

May 10, 2016 — KB3156421 OS Build 10586.318 This update includes quality improvements and security fixes. No new operating system features are being introduced in this update. Key changes include: Improved reliability in a number of areas including Cortana, Bluetooth, Shell, Internet Explorer 11 ...

What’s The Deal with Application Control?

Enterprise use of application control, on at least some PCs, will increase from 30% in 2017 to over 50% by 2022. It’s no secret that application control is one of the most effective ways to ensure the privacy and security of data. By allowing only preapproved files to run, application control has...

Design/Logic Flaw

If right-to-left text is used in the addressbar with left-to-right alignment, it is possible in some circumstances to scroll this text to spoof the displayed URL. This issue could result in the wrong URL being displayed as a location, which can mislead users to believe they are on a different sit...

CVE-2018-5117

CVE-2018-5117 describes a URL spoofing issue where, when right-to-left text is used in the address bar with left-to-right alignment, the displayed URL can be scrolled to mislead users about the actual site. The vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox

gcc security, bug fix, and enhancement update

4.8.5-28.0.1 - Orabug: 27557686 Egeyar Bagcioglu - Introduce 'oraclerelease' into .spec file. Echo it to gcc/DEV-PHASE. 4.8.5-28 - Minor testsuite fixes to clean up test results 1469697 - retpoline support for spectre mitigation 1535655 4.8.5-27 - bump for rebuild with RELRO enabled even for...

kernel: vfs: BUG in truncate_inode_pages_range() and fuse client

A non-privileged user is able to mount a fuse filesystem on RHEL 6 or 7 and crash a system if an application punches a hole in a file that does not end aligned to a page boundary...

kernel: vfs: BUG in truncate_inode_pages_range() and fuse client

A non-privileged user is able to mount a fuse filesystem on RHEL 6 or 7 and crash a system if an application punches a hole in a file that does not end aligned to a page boundary...

GoldWave 5.70 - Local Buffer Overflow (SEH Unicode)

!/usr/bin/python Exploit Author: bzyo Twitter: @bzyo Exploit Title: GoldWave 5.70 - Local Buffer Overflow SEH Unicode Date: 04-05-2018 Vulnerable Software: GoldWave 5.70 Vendor Homepage: https://www.goldwave.com/ Version: 5.70 Software Link: http://goldwave.com//downloads/gwave570.exe Tested...

Windows Kernel 64-bit stack memory disclosure in NtQueryInformationThread(ThreadBasicInformation)(CVE-2018-0895)

We have discovered that the nt!NtQueryInformationThread system call invoked with the 0 information class ThreadBasicInformation discloses portions of uninitialized kernel stack memory to user-mode clients. The vulnerability affects 64-bit versions of Windows 7 to 10. The specific layout of the...

Our Journey to GDPR Compliance: Lessons learned on our way to May 25th

With the European Union’s EU General Data Protection Regulation GDPR date fast approaching, we have been working hard to make sure our already strong security culture and policies will align with the new regulation. As GDPR is a very broad law that includes people, process, and technology, workin...

Out-of-bounds

The elfparsenotes function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service out-of-bounds read and segmentation violation via a note with a large alignment...

UBUNTU-CVE-2018-6872

The elfparsenotes function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service out-of-bounds read and segmentation violation via a note with a large alignment...

DEBIAN-CVE-2018-6872

The elfparsenotes function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service out-of-bounds read and segmentation violation via a note with a large alignment...

ALPINE-CVE-2018-6872

The elfparsenotes function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service out-of-bounds read and segmentation violation via a note with a large alignment...

CVE-2018-6872

The elfparsenotes function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service out-of-bounds read and segmentation violation via a note with a large alignment...

Denial Of Service (DoS)

ZZIPlib is vulnerable to denial of service DoS attacks. The library contains a memory alignment error and bus error in the zzip/zip.c file, allowing a malicious user to pass a zip file to the application to cause it to crash...

Design/Logic Flaw

In ZZIPlib 0.13.67, there is a memory alignment error and bus error in the zzipfetchdisktrailer function of zzip/zip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file...

DEBIAN-CVE-2018-6484

In ZZIPlib 0.13.67, there is a memory alignment error and bus error in the zzipfetchdisktrailer function of zzip/zip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file...

CVE-2018-6484

In ZZIPlib 0.13.67, there is a memory alignment error and bus error in the zzipfetchdisktrailer function of zzip/zip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file...