Important: Red Hat Security Advisory: postgresql:12 security update

An update for the postgresql:12 module is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as...

The vulnerability of the CNCSoft-B software and DOPSoft software lies in the possibility of an operation being executed outside the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of CNCSoft-B and DOPSoft software lies in the execution of operations beyond the buffer limits in memory when processing DPA files. Exploiting this vulnerability allows an attacker to execute arbitrary code by opening a specially created malicious file or a specially created...

The vulnerability of the microprogrammed software of Zyxel ATP network devices, USG FLEX, USG FLEX 50(W), USG20(W)-VPN, and VPN, arises from the execution of operations beyond the buffer limits in memory. This allows attackers to cause service failures.

The vulnerability of the microprogrammed software in Zyxel ATP, USG FLEX, USG FLEX 50W, USG20W-VPN, and VPN network devices is related to the operation of writing data outside the buffer in memory during the processing of the sdwanifaceipc file. Exploiting this vulnerability can allow a malicious...

The vulnerability of the sub_48AF78 function in D-Link DIR878 router microprogramming software allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the sub48AF78 function in D-Link DIR878 router microprogramming software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures or execute arbitrary code...

The vulnerability of the MPI process tracing tools Intel Trace Analyzer and Collector lies in the possibility of an operation being executed outside the buffer in memory, allowing a hacker to exploit this privilege.

The vulnerability of the MPI process tracing tools Intel Trace Analyzer and Collector lies in the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to gain increased privileges...

Important: Red Hat Security Advisory: postgresql:12 security update

An update for the postgresql:12 module is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

The vulnerability in the SParse_uniprop_string function of the regcomp.c file in the Perl programming language interpreter allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the SParseunipropstring function in the regcomp.c file of the Perl interpreter is related to the execution of operations outside of the buffer. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the...

The vulnerability of the monitoring software for PLCCs from Fuji Electric, Tellus Lite V-Simulator, arises from writing beyond the buffer boundaries, allowing a intruder to execute arbitrary code.

The vulnerability of the monitoring software for PLCCs from Fuji Electric, Tellus Lite V-Simulator, lies in the fact that it allows data to be written beyond the buffer boundaries. Exploiting this vulnerability could enable a hacker to execute arbitrary code...

The vulnerability of the nvme_add_user_metadata() function in the drivers/nvme/host/ioctl.c file of the NVMe driver for the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the nvmeaddusermetadata function in the drivers/nvme/host/ioctl.c file of the Linux NVMe driver kernel relates to access beyond the reserved buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

The vulnerability of the njs_vmcode_return function (src/njs_vmcode.c) in the njs interpreter of the nginx server allows a hacker to cause a service failure.

The vulnerability of the njsvmcodereturn function src/njsvmcode.c in the njs interpreter of the nginx server is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability of the microprogrammed software of ZyXEL USG FLEX and ATP devices, related to the operation of writing data beyond the buffer in memory, allows a intruder to cause service failure.

The vulnerability of the microprogrammed network device software of ZyXEL USG FLEX and ATP lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure by executing certain commands...

The vulnerability of the professional video editing software Adobe Premiere Pro, related to recording beyond buffer boundaries in memory, allows a hacker to execute arbitrary code.

The vulnerability of the professional video editing software Adobe Premiere Pro lies in the recording beyond buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially created file...

postgresql: Buffer overrun from integer overflow in array modification

A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification. This issue exists due to an integer overflow during array modification where a remote user can trigger the overflow by providing...

Important: Red Hat Security Advisory: postgresql security update

An update for postgresql is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

Important: Red Hat Security Advisory: postgresql:13 security update

An update for the postgresql:13 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

postgresql: Buffer overrun from integer overflow in array modification

A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification. This issue exists due to an integer overflow during array modification where a remote user can trigger the overflow by providing...

Important: Red Hat Security Advisory: postgresql:13 security update

An update for the postgresql:13 module is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

ALSA-2023:7581 Important: postgresql:13 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: Buffer overrun from integer overflow in array modification CVE-2023-5869 postgresql: Memory disclosure in aggregate function calls CVE-2023-5868 postgresql: extension script @substitutions@...

Important: postgresql:13 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: Buffer overrun from integer overflow in array modification CVE-2023-5869 postgresql: Memory disclosure in aggregate function calls CVE-2023-5868 postgresql: extension script @substitutions@...

postgresql: Buffer overrun from integer overflow in array modification

A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification. This issue exists due to an integer overflow during array modification where a remote user can trigger the overflow by providing...