CVE-2024-53429

Open62541 v1.4.6 is has an assertion failure in fuzzbinarydecode, which leads to a crash...

Security Bulletin: AIX is vulnerable to a denial of service due to ISC BIND

Summary Multiple vulnerabilities in ISC BIND could allow a remote attacker to cause a denial of service CVE-2024-0760, CVE-2024-1737, CVE-2024-4076, CVE-2024-1975. AIX uses ISC BIND as part of its DNS functions. Vulnerability Details CVEID:CVE-2024-0760 DESCRIPTION: ISC BIND is vulnerable to a...

CVE-2024-52919

Bitcoin Core before 22.0 has a CAddrMan nIdCount integer overflow and resultant assertion failure and daemon exit via a flood of addr messages...

CVE-2024-52919

Bitcoin Core before 22.0 has a CAddrMan nIdCount integer overflow and resultant assertion failure and daemon exit via a flood of addr messages...

CVE-2024-52919

Bitcoin Core before 22.0 contains a CAddrMan nIdCount integer overflow triggered by a flood of addr messages, causing an assertion failure and daemon exit. Affected component: CAddrMan in Bitcoin Core. Impact is a crash/daemon restart; exploitation status not detailed in provided docs. Remediatio...

CVE-2024-24431

A reachable assertion in the ogsnasemmdecode function of Open5GS v2.7.0 allows attackers to cause a Denial of Service DoS via a crafted NAS packet with a zero-length EMM message length...

CVE-2024-24431

Open5GS v2.7.0 is affected by a DoS in the ogs_nas_emm_decode (ogs nas emm decode) function triggered by a crafted NAS packet with a zero-length EMM message length. The issue is a reachable assertion in that function, allowing attackers to cause Denial of Service. No exploit details are provided ...

CVE-2024-24431

A reachable assertion in the ogsnasemmdecode function of Open5GS v2.7.0 allows attackers to cause a Denial of Service DoS via a crafted NAS packet with a zero-length EMM message length...

Fedora 41 : bind / bind-dyndb-ldap (2024-7378be30dd)

The remote Fedora 41 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2024-7378be30dd advisory. Security Fixes - Validating DNS messages containing a lot of DNSSEC signatures could cause excessive CPU load, leading to a denial-of-service...

kernel: net/mlx5: Fix missing lock on sync reset reload

On sync reset reload work, when remote host updates devlink on reload actions performed on that host, it misses taking devlink lock before calling devlinkremotereloadactionsperformed which results in triggering lock assert. This may lead to a crash...

kernel: drm/i915/gt: Reset queue_priority_hint on parking

A flaw was found in the i915 module in the Linux kernel. Under some conditions, an assertion failure can be triggered and cause a denial of service...

SUSE-SU-2024:3948-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2024-8354: Fixed assertion failure in usbepget bsc1230834. - CVE-2024-8612: Fixed nformation leak in virtio devices bsc1230915. - CVE-2024-7409: Fixed denial of service via improper synchronization in QEMU NBD Server during socket closure...

keycloak-saml-core: Improper Verification of SAML Responses Leading to Privilege Escalation in Keycloak

A flaw exists in the SAML signature validation method within the Keycloak XMLSignatureUtil class. The method incorrectly determines whether a SAML signature is for the full document or only for specific assertions based on the position of the signature in the XML document, rather than the Referen...

keycloak-saml-core: Improper Verification of SAML Responses Leading to Privilege Escalation in Keycloak

A flaw exists in the SAML signature validation method within the Keycloak XMLSignatureUtil class. The method incorrectly determines whether a SAML signature is for the full document or only for specific assertions based on the position of the signature in the XML document, rather than the Referen...

keycloak-saml-core: Improper Verification of SAML Responses Leading to Privilege Escalation in Keycloak

A flaw exists in the SAML signature validation method within the Keycloak XMLSignatureUtil class. The method incorrectly determines whether a SAML signature is for the full document or only for specific assertions based on the position of the signature in the XML document, rather than the Referen...

CVE-2024-23385 Reachable Assertion in Modem

Transient DOS as modem reset occurs when an unexpected MAC RAR with invalid PDU length is seen at UE...

CVE-2024-23385 Reachable Assertion in Modem

Transient DOS as modem reset occurs when an unexpected MAC RAR with invalid PDU length is seen at UE...

SQLite3 generate_series Stack Buffer Underflow

Vulnerability details static int seriesBestIndex sqlite3vtab pVTab, sqlite3indexinfo pIdxInfo int i, j; / Loop over constraints / int idxNum = 0; / The query plan bitmask / ifndef ZEROARGUMENTGENERATESERIES int bStartSeen = 0; / EQ constraint seen on the START column / endif int unusableMask = 0;...

Updated bind packages fix security vulnerabilities

A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. CVE-2024-0760 Resolver caches and authoritative zone databases that...

CBL Mariner 2.0 Security Update: libreswan (CVE-2024-3652)

The version of libreswan installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-3652 advisory. - The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without...