ALSA-2023:2873 Moderate: gcc-toolset-12-binutils security update

The binutils packages provide a collection of binary utilities for the manipulation of object code in various object file formats. It includes the ar, as, gprof, ld, nm, objcopy, objdump, ranlib, readelf, size, strings, strip, and addr2line utilities. Security Fixes: binutils: NULL pointer...

Security Bulletin: A security vulnerability in GO affects IBM Cloud Automation Manager.

Summary A security vulnerability in GO affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2020-16845 DESCRIPTION: Go Language is vulnerable to a denial of service, caused by an infinite read loop in ReadUvarint and ReadVarint in encoding/binary. By sending a specially-crafted...

SightLogix Camera SLP Detection

Binary data sightlogixslpdetect.nbin...

CVE-2023-31983

A Command Injection vulnerability in Edimax Wireless Router N300 Firmware BR-6428NSv4 allows attacker to execute arbitrary code via the mp function in /bin/webs without any limitations...

MinIO Installed (Linux)

Binary data minioinstalledlinux.nbin...

Vim Installed (Windows)

Binary data vimwininstalled.nbin...

PT-2023-23556 · Edimax · Edimax Wireless Router N300

Name of the Vulnerable Software and Affected Versions: Edimax Wireless Router N300 Firmware BR-6428NS v4 Description: A Command Injection issue allows an attacker to execute arbitrary code via the formAccept function in "/bin/webs" without any limitations. Recommendations: For Edimax Wireless...

RHEL 9 : freeradius (RHSA-2023:2166)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:2166 advisory. FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service RADIUS server, designed to allow...

CVE-2023-31497

Incorrect access control in Quick Heal Technologies Limited Seqrite Endpoint Security EPS all versions prior to v8.0 allows attackers to escalate privileges to root via supplying a crafted binary to the target system...

CVE-2023-31497

Incorrect access control in Quick Heal Technologies Limited Seqrite Endpoint Security EPS all versions prior to v8.0 allows attackers to escalate privileges to root via supplying a crafted binary to the target system...

CVE-2023-31497

Incorrect access control in Quick Heal Technologies Limited Seqrite Endpoint Security EPS all versions prior to v8.0 allows attackers to escalate privileges to root via supplying a crafted binary to the target system...

Novi Survey Detection

Binary data novisurveydetect.nbin...

PT-2023-23363 · Seqrite · Seqrite Endpoint Security

Name of the Vulnerable Software and Affected Versions: Seqrite Endpoint Security EPS versions prior to 8.0 Description: The issue is related to incorrect access control, allowing attackers to escalate privileges to root by supplying a crafted binary to the target system. Recommendations: For...

Microsoft Message Queuing RCE (CVE-2023-21554, QueueJumper)

Binary data msmq2023-04.nbin...

Design/Logic Flaw

Certain size values in firmware binary headers could trigger out of bounds reads during signature validation, leading to denial of service or potentially limited leakage of information about out-of-bounds memory contents...

CVE-2021-26365

CVE-2021-26365 concerns AMD Secure Processor (ASP) and AMD System Management Unit (SMU) firmware where certain size values in firmware binary headers can cause out-of-bounds reads during signature validation, potentially enabling denial of service or leakage of memory contents. Public references ...

CVE-2021-26365

Certain size values in firmware binary headers could trigger out of bounds reads during signature validation, leading to denial of service or potentially limited leakage of information about out-of-bounds memory contents...

CVE-2023-27409

A vulnerability has been identified in SCALANCE LPE9403 All versions V2.1. A path traversal vulnerability was found in the deviceinfo binary via the mac parameter. This could allow an authenticated attacker with access to the SSH interface on the affected device to read the contents of any file...

kernel: bpf, x86: fix freeing of not-finalized bpf_prog_pack

In the Linux kernel, the following vulnerability has been resolved: bpf, x86: fix freeing of not-finalized bpfprogpack syzbot reported a few issues with bpfprogpack 1, 2. This only happens with multiple subprogs. In jitsubprogs, we first call bpfintjitcompile on each sub program. And then, we cal...

CVE-2023-29336

Win32k Elevation of Privilege Vulnerability Recent assessments: gwillcox-r7 at May 31, 2023 9:15pm UTC reported: Doing a patch diff between a Windows 10 1607 x86 version of win32kfull.sys prior to the patch and after the patch shows that only one function changed: xxxEnableMenuItem. Looking at th...