SUSE-SU-2023:3601-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-36402: Fixed an integer overflow vulnerability in vmwgfx driver in that allowed a local attacker with a user account on the system to gain privilege,...

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2020 are related to an operation that goes beyond the buffer in memory, allowing attackers to exploit their privileges.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 are related to the execution of operations beyond the buffer in memor...

The vulnerability of the CpmDisplayFeatureSmm component in AMD microprogramming software relates to writing beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the CpmDisplayFeatureSmm component in AMD microprogramming software is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the DDP microprogramming software-based wireless access points from D-Link, model DAP-2622, allows a intruder to execute any arbitrary code.

The vulnerability of the DDP microprogramming software used in D-Link DAP-2622 wireless access points lies in the fact that the execution of commands is carried out outside of the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the resolve_dependencies function in the libsolv library, which allows a malicious actor to trigger a service failure.

The vulnerability of the resolvedependencies function in the libsolv library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability of the tiffcrop utility (tools/tiffcrop.c:3516) in the libtiff library, which allows a hacker to cause a service failure.

The vulnerability of the tiffcrop utility tools/tiffcrop.c:3516 in the libtiff library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the _TIFFmemcpy function in the libtiff library, which allows a hacker to cause a service failure

The vulnerability of the LibTIFF library service is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to cause a service failure remotely...

The vulnerability in the `org.json.JSONTokener.nextValue::JSONTokener.java` component of the file and network operations handling library hutool-json, which allows a attacker to cause a service failure.

The vulnerability in the org.json.JSONTokener.nextValue::JSONTokener.java component of the file and network operations library hutool-json is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability of the extractContigSamplesShifted24bits function in the libtiff library allows a hacker to cause a service failure.

The vulnerability of the extractContigSamplesShifted24bits function in the libtiff library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability of the tiffcrop utility (libtiff/tif_unix.c:368, tools/tiffcrop.c:2903, tools/tiffcrop.c:6778) in the libtiff library, which allows a hacker to cause a service failure.

The vulnerability of the tiffcrop utility libtiff/tifunix.c:368, tools/tiffcrop.c:2903, tools/tiffcrop.c:6778 in the libtiff library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the tiffcrop utility (tools/tiffcrop.c:3724) in the libtiff library, which allows a hacker to cause a service failure.

The vulnerability of the tiffcrop utility tools/tiffcrop.c:3724 in the libtiff library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to trigger a service failure.

The vulnerability of the Core component of the Oracle VM VirtualBox software lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the DDP microprogramming software-based wireless access points from D-Link, model DAP-2622, allows a intruder to execute any arbitrary code.

The vulnerability of the DDP microprogramming software used in D-Link DAP-2622 wireless access points lies in the fact that the execution of commands is carried out outside of the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to trigger a service failure.

The vulnerability of the Core component of the Oracle VM VirtualBox software lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the DDP microprogramming software-based wireless access points from D-Link, model DAP-2622, allows a intruder to execute any arbitrary code.

The vulnerability of the DDP microprogramming software used in D-Link DAP-2622 wireless access points lies in the fact that the execution of commands is carried out outside of the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the DDP microprogramming software-based wireless access points from D-Link, model DAP-2622, allows a intruder to execute any arbitrary code.

The vulnerability of the DDP microprogramming software used in D-Link DAP-2622 wireless access points lies in the fact that the execution of commands is carried out outside of the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the DDP microprogramming software-based wireless access points from D-Link, model DAP-2622, allows a intruder to execute any arbitrary code.

The vulnerability of the DDP microprogramming software used in D-Link DAP-2622 wireless access points lies in the fact that the execution of commands is carried out outside of the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the _TIFFmemcpy function in the LibTIFF library, which allows a hacker to cause a service failure.

The vulnerability of the TIFFmemcpy function in the LibTIFF library is related to writing beyond the buffer boundaries into memory. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability in the stats/rate_hist.c component of the library, which implements the AV1 codec of the Debian GNU/Linux operating system, allows a hacker to execute arbitrary code.

The vulnerability in the stats/ratehist.c component of the library, which implements the AV1 codec for the Debian GNU/Linux operating system, relates to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker, working remotely, to execute arbitrary co...

Fedora 37 : netconsd (2023-84b7db808d)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-84b7db808d advisory. Update to prevent invalid fragment values from leading to a buffer overrun Tenable has extracted the preceding description block directly from the Fedora...