keycloak: SAML request parser replaces special strings with system properties

It was found that while parsing the SAML messages the StaxParserUtil class of Picketlink replaces special strings for obtaining attribute values with system property. This could allow an attacker to determine values of system properties at the attacked system by formatting the SAML request ID fie...

keycloak: SAML request parser replaces special strings with system properties

It was found that while parsing the SAML messages the StaxParserUtil class of Picketlink replaces special strings for obtaining attribute values with system property. This could allow an attacker to determine values of system properties at the attacked system by formatting the SAML request ID fie...

CVE-2017-1000252

The KVM subsystem in the Linux kernel through 4.13.3 allows guest OS users to cause a denial of service assertion failure, and hypervisor hang or crash via an out-of bounds guestirq value, related to arch/x86/kvm/vmx.c and virt/kvm/eventfd.c...

CVE-2017-14649

ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG data, leading to a denial of service assertion failure in magick/pixelcache.c, and application crash...

Design/Logic Flaw

ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG data, leading to a denial of service assertion failure in magick/pixelcache.c, and application crash...

DEBIAN-CVE-2017-14649

ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG data, leading to a denial of service assertion failure in magick/pixelcache.c, and application crash...

CVE-2017-14649

ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG data, leading to a denial of service assertion failure in magick/pixelcache.c, and application crash...

CVE-2017-14649

CVE-2017-14649 affects GraphicsMagick 1.3.26, where ReadOneJNGImage in coder/png.c does inadequate validation of JNG data, causing an assertion failure in magick/pixel_cache.c and an application crash (DoS). Connected sources do not provide an updated fix or remediation details beyond the initial...

CVE-2017-14649

ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG data, leading to a denial of service assertion failure in magick/pixelcache.c, and application crash...

CVE-2017-12168

The accesspmuevcntr function in arch/arm64/kvm/sysregs.c in the Linux kernel before 4.8.11 allows privileged KVM guest OS users to cause a denial of service assertion failure and host OS crash by accessing the Performance Monitors Cycle Count Register PMCCNTR...

CVE-2017-1000252

A reachable assertion failure flaw was found in the Linux kernel built with KVM virtualisationCONFIGKVM support with Virtual Function I/O feature CONFIGVFIO enabled. This failure could occur if a malicious guest device sent a virtual interrupt guest IRQ with a larger 1024 index value...

CVE-2017-13746

There is a reachable assertion abort in the function jpcdecprocesssiz in jpc/jpcdec.c:1297 in JasPer 2.0.12 that will lead to a remote denial of service attack...

CVE-2017-13747

There is a reachable assertion abort in the function jpcfloorlog2 in jpc/jpcmath.c in JasPer 2.0.12 that will lead to a remote denial of service attack...

CVE-2017-13745

There is a reachable assertion abort in the function jpcdecprocesssot in jpc/jpcdec.c in JasPer 2.0.12 that will lead to a remote denial of service attack by triggering an unexpected jpcppmstabtostreams return value, a different vulnerability than CVE-2018-9154...

CVE-2017-13751

There is a reachable assertion abort in the function calcstepsizes in jpc/jpcdec.c in JasPer 2.0.12 that will lead to a remote denial of service attack...

CVE-2017-13750

There is a reachable assertion abort in the function jpcdecprocesssiz in jpc/jpcdec.c:1296 in JasPer 2.0.12 that will lead to a remote denial of service attack...

CVE-2017-13726

There is a reachable assertion abort in the function TIFFWriteDirectorySec in LibTIFF 4.0.8, related to tifdirwrite.c and a SubIFD tag. A crafted input will lead to a remote denial of service attack...

Moderate: Red Hat Security Advisory: qemu-kvm-rhev security and bug fix update

An update for qemu-kvm-rhev is now available for RHEV 3.X Hypervisor and Agents for RHEL-7 and RHEV 4.X RHEV-H and Agents for RHEL-7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detail...

CVE-2017-13658

In ImageMagick before 6.9.9-3 and 7.x before 7.0.6-3, there is a missing NULL check in the ReadMATImage function in coders/mat.c, leading to a denial of service assertion failure and application exit in the DestroyImageInfo function in MagickCore/image.c...

Moderate: Red Hat Security Advisory: Red Hat Certificate System 8 security, bug fix, and enhancement update

An update is now available for Red Hat Certificate System 8 with Advanced Access. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...