The vulnerability of the KEYS subsystem in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the KEYS subsystem in the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause service failures...

Enough Polynomials and Linear Algebra to Implement Kyber

I was once talking with a mathematician and trying to explain elliptic curve cryptography. Eventually, something clicked and they went "oh, that! I think there was a chapter about it in the book. You made a whole field out of it?" Yes, in cryptography we end up focusing on a very narrow slice of...

Fedora 39 : xen (2023-35d2ad2328)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-35d2ad2328 advisory. arm32: The cache may not be properly cleaned/invalidated XSA-437, CVE-2023-34321 top-level shadow reference dropped too early for 64-bit PV guests...

Ubuntu: Security Advisory (USN-6471-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6471-1 libsndfile vulnerability

It was discovered that libsndfile contained multiple arithmetic overflows. If a user or automated system were tricked into processing a specially crafted audio file, an attacker could possibly use this issue to cause a denial of service...

The vulnerability of the iniparser_getlongint() function in the iniParser analysis library allows a attacker to cause a service failure.

The vulnerability of the iniparsergetlongint function in the iniParser analysis library is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

Ubuntu: Security Advisory (USN-6452-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the VPN protocol library using “IPsec” in libreswan, related to the swapping of the zero pointer, allows a attacker to perform a type of attack known as “denial-of-service attack”.

The vulnerability of the VPN protocol using “IPsec” with libreswan is related to an error in pointer arithmetic during the processing of IKEv1 fast packet exchange. Exploiting this vulnerability allows a remote attacker to perform a type of attack known as a “denial-of-service” attack...

The vulnerability in the golang.org/x/crypto/ssh library for the Go programming language allows a attacker to cause SSH servers to fail.

The vulnerability of the golang.org/x/crypto/ssh library in the Go programming language is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause SSH servers to fail...

PT-2023-9497 · Linux +6 · Linux Kernel +6

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a memory corruption problem in the Linux kernel, specifically in the wifi: iwlwifi: mvm component. The problem arises from incorrect pointer arithmetic when...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-2755)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Xen arm32: The cache may not be properly cleaned/invalidated (XSA-437)

The Arm cache may not be properly cleaned or invalidated due to an arithmetic overflow flaw. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable Inc. include'compat.inc'; if description...

USN-6335-1 busybox vulnerabilities

It was discovered that BusyBox incorrectly handled certain malformed gzip archives. If a user or automated system were tricked into processing a specially crafted gzip archive, a remote attacker could use this issue to cause BusyBox to crash, resulting in a denial of service, or execute arbitrary...

The vulnerability of the JSE component of the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine allows a hacker to induce a service failure.

The vulnerability of the JSE component of Oracle Java SE software and the Oracle GraalVM Enterprise Edition virtual machine is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

The vulnerability of the QEMU hardware emulation software, related to the swapping of the zero pointer, allows a hacker to trigger a service failure.

The vulnerability of the QEMU hardware emulation software is related to the VNC server. When a client connects to the server, QEMU checks whether the current number of connections exceeds a certain threshold. If it does, QEMU will terminate the previous connection. If the previous connection was ...

kernel: speculative pointer dereference in do_prlimit() in kernel/sys.c

A vulnerabilty was found in Linux Kernel, where a speculative pointer dereference problem exists in the Linux Kernel on the doprlimit function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents...

kernel: speculative pointer dereference in do_prlimit() in kernel/sys.c

A vulnerabilty was found in Linux Kernel, where a speculative pointer dereference problem exists in the Linux Kernel on the doprlimit function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents...

Security Vulnerabilities fixed in Thunderbird 115.2 — Mozilla

When receiving rendering data over IPC mStream could have been destroyed when initialized, which could have led to a use-after-free causing a potentially exploitable crash. When creating a callback over IPC for showing the Color Picker window, multiple of the same callbacks could have been create...

Existing checks with INT_MAX are insufficient such that the contract becomes dysfunctional after initial deployment of some large balance(s)

Lines of code Vulnerability details Impact EvolvingProteus.sol contains a variety of functions which detail the price in tokens to be paid in swaps, withdraws, and deposits. In external functions such as depositGivenInputAmount, as well as internal functions such as checkBalances, there exists a...

The vulnerability of the OpenImageIO image processing library, related to pointer dereferencing errors, allows a hacker to cause a service failure.

The vulnerability of the OpenImageIO image processing library is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause a service failure by using a specially created DDS file...