exitTempusAMM can be made to fail

Handle cmichel Vulnerability details There's a griefing attack where an attacker can make any user transaction for TempusController.exitTempusAMM fail. In exitTempusAMM, the user exits their LP position and claims back yield and principal shares. The LP amounts to redeem are determined by the...

The vulnerability in the `parser_parse_statements` function of the `js-parser-statm.c` component of the JavaScript engine for the Internet of Things, JerryScript, and the IoT.js platform, related to the insufficient use of the `assert()` function, allows a attacker to trigger a service failure.

The vulnerability of the parserparsestatements function in the js-parser-statm.c component of the JavaScript engine for the Internet of Things, JerryScript, and the IoT.js platform is related to incorrect comparisons. Exploiting this vulnerability could allow a remote attacker to cause a service...

The vulnerability in the `parser_parse_source` function of the `js-parser.c` component of the JavaScript framework for the Internet of Things, JerryScript, and the IoT.js platform, related to the insufficient use of the `assert()` function, allows a attacker to cause a service failure.

The vulnerability of the parserparsesource function in the js-parser.c component of the JavaScript engine for the Internet of Things, JerryScript, and the IoT.js platform, is related to the insufficient use of the assert function. Exploiting this vulnerability could allow a malicious actor to cau...

The vulnerability of the lys_node_free() function in the syntax analyzer and modeling tool of the YANG Libyang language, related to the insufficient use of the assert() function, allows attackers to trigger a service failure.

The vulnerability of the lysnodefree function in the syntax analyzer and modeling tool of the YANG Libyang language is related to the insufficient use of the assert function. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability of the `scanner_literal_is_created` function in the `js-scanner-util.c` component of the JavaScript IoT engine for JerryScript and the IoT.js platform is related to the insufficient use of the `assert()` function. This allows a malicious actor to trigger a service failure.

The vulnerability of the scannerliteraliscreated function in the js-scanner-util.c component of the JavaScript IoT scripting engine, JerryScript, and the IoT.js platform is related to the insufficient use of the assert function. Exploiting this vulnerability could allow a remote attacker to cause...

The vulnerability in the `parser_emit_cbc_backward_branch` function of the `js-parser-util.c` component of the JavaScript engine for Internet of Things JerryScript and the IoT.js platform, related to the insufficient use of the `assert()` function, allows a attacker to trigger a service failure.

The vulnerability of the parseremitcbcbackwardbranch function in the js-parser-util.c component of the JavaScript engine for Internet of Things JerryScript and the IoT.js platform is related to the insufficient use of the assert function. Exploiting this vulnerability can allow a remote attacker ...

The vulnerability of the `parser_parse_try_statement_end` function in the `js-parser-statm.c` component of the JavaScript engine for Thingscript and the IoT.js platform, related to the insufficient use of the `assert()` function, allows a attacker to cause a service failure.

The vulnerability of the parserparsetrystatementend function in the js-parser-statm.c component of the JavaScript engine for the Internet of Things, JerryScript, and the IoT.js platform is related to the insufficient use of the assert function. Exploiting this vulnerability could allow a remote...

The vulnerability of the `parser_parse_object_initializer` function in the `js-parser-expr.c` component of the JavaScript framework for Internet of Things, JerryScript, and the IoT.js platform, arises due to the insufficient use of the `assert()` function. This allows attackers to trigger a service failure.

The vulnerability of the parserparseobjectinitializer function in the js-parser-expr.c component of the JavaScript framework for Internet of Things technology, JerryScript, and the IoT.js platform is related to the insufficient use of the assert function. Exploiting this vulnerability could allow...

The vulnerability of the implementation of the Resource Public Key Infrastructure (RPKI) function in the Cisco IOS XR operating system allows a perpetrator to cause a failure in the Border Gateway Protocol (BGP) process.

The vulnerability of the Resource Public Key Infrastructure RPKI function in the Cisco IOS XR operating system is related to the insufficient use of the assert function. Exploiting this vulnerability could allow a malicious actor to cause failures in the Border Gateway Protocol BGP process...

Vulnerability of the RouterOS operating system’s /ram/pckg/security/nova/bin/ipsec process, allowing a hacker to trigger a service failure

The vulnerability of the /ram/pckg/security/nova/bin/ipsec” function in the RouterOS operating system is related to the use of the “assert” or similar operator. Exploiting this vulnerability allows a malicious actor to cause service failures remotely...

MGASA-2021-0415 Updated exiv2 packages fix security vulnerabilities

The updated exiv2 packages fix security vulnerabilities: An assertion failure is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacker could potentially exploit the vulnerability to cause a denial of service, if they can trick the victim into running Exiv2 on a...

CVE-2021-1093

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in firmware where the driver contains an assert or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary, and may lead to denial of...

CVE-2021-1093

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in firmware where the driver contains an assert or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary, and may lead to denial of...

UBUNTU-CVE-2021-1093

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in firmware where the driver contains an assert or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary, and may lead to denial of...

PT-2021-6692 · Nvidia +2 · Nvidia Gpu Display Driver +2

Name of the Vulnerable Software and Affected Versions: NVIDIA GPU Display Driver for Windows and Linux affected versions not specified Description: The issue is related to a vulnerability in the firmware of the NVIDIA GPU Display Driver, where an assert or similar statement can be triggered by an...

The vulnerability of the MogrifyImageList function in the MagickWand/mogrify.c component of the console-based ImageMagick graphics editor allows a hacker to trigger a service failure by exploiting a deficiency in the use of the assert() function.

The vulnerability of the MogrifyImageList function in the MagickWand/mogrify.c component of the console-based ImageMagick graphics editor is related to the insufficient use of the assert function. Exploiting this vulnerability allows a malicious actor to trigger a service failure using a speciall...

The vulnerability of the ReadMATImage function in the coders/mat.c component of the console image editing tool ImageMagick, related to the insufficient use of the assert() function, allows a hacker to cause a service failure.

The vulnerability of the ReadMATImage function in the coders/mat.c component of the console image editing tool ImageMagick is related to the lack of a NULL check. Exploiting this vulnerability allows an attacker to cause a service failure...

PT-2021-7714 · Libde265 +3 · Libde265 +3

Name of the Vulnerable Software and Affected Versions: libde265 version 1.0.8 Description: The issue is related to the insufficient use of the assert function in the sps.cc component of the libde265 h.265 video codec implementation. This can be exploited by a remote attacker using a specially...

ALPINE-CVE-2021-28687

HVM soft-reset crashes toolstack libxl requires all data structures passed across its public interface to be initialized before use and disposed of afterwards by calling a specific set of functions. Many internal data structures also require this initialize / dispose discipline, but not all of...

CVE-2021-28687

HVM soft-reset crashes toolstack libxl requires all data structures passed across its public interface to be initialized before use and disposed of afterwards by calling a specific set of functions. Many internal data structures also require this initialize / dispose discipline, but not all of...