UBUNTU-CVE-2024-56655

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: do not defer rule destruction via callrcu nftableschaindestroy can sleep, it can't be used from callrcu callbacks. Moreover, nftablesrulerelease is only safe for error unwinding, while transaction mutex is he...

UBUNTU-CVE-2023-34323

When a transaction is committed, C Xenstored will first check the quota is correct before attempting to commit any nodes. It would be possible that accounting is temporarily negative if a node has been removed outside of the transaction. Unfortunately, some versions of C Xenstored are assuming th...

PT-2023-28454 · Zephyr · Zephyr

Name of the Vulnerable Software and Affected Versions: Zephyr affected versions not specified Description: The issue is related to a possible buffer overflow in the Zephyr mgmt subsystem when asserts are disabled. Recommendations: At the moment, there is no information about a newer version that...

CVE-2023-5753

Potential buffer overflows in the Bluetooth subsystem due to asserts being disabled in /subsys/bluetooth/host/hcicore.c...

CVE-2023-5753

Potential buffer overflows in the Bluetooth subsystem due to asserts being disabled in /subsys/bluetooth/host/hcicore.c...

Buffer overflow

Potential buffer overflows in the Bluetooth subsystem due to asserts being disabled in /subsys/bluetooth/host/hcicore.c...

CVE-2023-5753

CVE-2023-5753 concerns the Zephyr RTOS Bluetooth subsystem. The provided documents consistently identify a potential buffer overflow caused by asserts being disabled in the file subsys/bluetooth/host/hci_core.c. The vulnerability is described across multiple sources (NVD, Red Hat, CVE lists, Vera...

CVE-2023-5753 Potential buffer overflow vulnerabilities in the Zephyr Bluetooth subsystem

Potential buffer overflows in the Bluetooth subsystem due to asserts being disabled in /subsys/bluetooth/host/hcicore.c...

PT-2023-8755 · Zephyr · Zephyr

Name of the Vulnerable Software and Affected Versions: Zephyr affected versions not specified Description: The issue is related to potential buffer overflows in the Bluetooth subsystem due to asserts being disabled in /subsys/bluetooth/host/hci core.c. This vulnerability is associated with...

CVE-2023-4262

Rejected reason: User data field is not attacker controlled...

Buffer overflow

Possible buffer overflow in Zephyr mgmt subsystem when asserts are disabled...

CVE-2023-4262

CVE-2023-4262 is associated with a potential buffer overflow in Zephyr’s management subsystem when asserts are disabled (reported by PT-2023-28454). The connected Veracode record cites a buffer overflow in libzephyr.so caused by the CLFS driver, suggesting the attacker could trigger via a special...

SUSE CVE-2006-0678

PostgreSQL 7.3.x before 7.3.14, 7.4.x before 7.4.12, 8.0.x before 8.0.7, and 8.1.x before 8.1.3, when compiled with Asserts enabled, allows local users to cause a denial of service server crash via a crafted SET SESSION AUTHORIZATION command, a different vulnerability than CVE-2006-0553...

CVE-2022-27810

It was possible to trigger an infinite recursion condition in the error handler when Hermes executed specific maliciously formed JavaScript. This condition was only possible to trigger in dev-mode when asserts were enabled. This issue affects Hermes versions prior to v0.12.0...

unbound: assertion failure and denial of service in synth_cname

A flaw was found in unbound. A reachable assertion in the synthcname function can be triggered by sending invalid packets to the server. If asserts are disabled during compilation, this issue might lead to an out-of-bounds write in dnamepktcopy function. The highest threat from this vulnerability...

[SECURITY] Fedora 35 Update: rust-similar-asserts-1.2.0-1.fc35

Provides asserteq! like macros with colorized diff output...

[SECURITY] Fedora 34 Update: rust-similar-asserts-1.2.0-1.fc34

Provides asserteq! like macros with colorized diff output...

Fedora: Security Advisory for rust-similar-asserts (FEDORA-2022-f3b8d958e8)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for rust-similar-asserts (FEDORA-2022-eb16f07001)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10 Unknown Security Pitfalls for Python

Python developers trust their applications to have a solid security state due to the use of standard libraries and common frameworks. However, within Python, just like in any other programming language, there are certain features that can be misleading or misused by developers. Often it is only a...