PT-2022-26411 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations. User interaction is required, where the target must visit a malicious page or open...

PT-2022-26400 · Unknown · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations. It requires user interaction, such as visiting a malicious page or opening a...

PT-2022-26386 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations. It requires user interaction, such as visiting a malicious page or opening a...

PT-2022-26376 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations. User interaction is required, where the target must visit a malicious page or open...

PT-2022-26392 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations. It requires user interaction, such as visiting a malicious page or opening a...

PT-2022-25683 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations. User interaction is required, where the target must visit a malicious page or open...

openSUSE: Security Advisory for squid (SUSE-SU-2022:3531-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE-SU-2022:3533-1 Security update for squid

This update for squid fixes the following issues: - CVE-2022-41317: Fixed exposure of sensitive information in cache manager bsc1203677. - CVE-2022-41318: Fixed buffer overread in SSPI and SMB Authentication bsc1203680...

SUSE-SU-2022:3532-1 Security update for squid

This update for squid fixes the following issues: - CVE-2022-41317: Fixed exposure of sensitive information in cache manager bsc1203677. - CVE-2022-41318: Fixed buffer overread in SSPI and SMB Authentication bsc1203680...

SUSE-SU-2022:3531-1 Security update for squid

This update for squid fixes the following issues: Updated squid to version 5.7: - CVE-2022-41317: Fixed exposure of sensitive information in cache manager bsc1203677. - CVE-2022-41318: Fixed buffer overread in SSPI and SMB Authentication bsc1203680...

squid: buffer-over-read in SSPI and SMB authentication

A flaw was found in Squid. An incorrect integer overflow protection in the Squid SSPI and SMB authentication helpers is vulnerable to a buffer overflow attack, resulting in information disclosure...

USN-5205-1 tcpreplay vulnerabilities

It was discovered that Tcpreplay incorrectly handled certain specially crafted packet capture input when processed by tcpprep. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 18.04 ESM. CVE-2018-13112 It was discovered that Tcpreplay...

The vulnerability of the swtpm TPM emulator, related to reading beyond the buffer in memory, allows a malicious actor to trigger a service failure.

The vulnerability of the swtpm TPM emulator is related to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the ImageIO component in operating systems such as iOS, iPadOS, tvOS, watchOS, iCloud for Windows, and the multimedia player iTunes for Windows allows a malicious individual to gain unauthorized access to protected information or cause service failures.

The vulnerability of the ImageIO component in iOS, iPadOS, tvOS, watchOS operating systems, iCloud for Windows service, and the multimedia player iTunes for Windows lies in its ability to read data from beyond the allowed buffer limits. Exploiting this vulnerability can allow an attacker to gain...

The vulnerability of the pre-processing processor Simcenter Femap, related to reading beyond the buffer in memory, allows a hacker to execute arbitrary code within the context of the current process.

The vulnerability of the pre-processing processor Simcenter Femap lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code within the context of the current process, while analyzing specially created .NEU...

The vulnerability of the `cv::PxMDecoder::readData` function in the `grfmt_pxm.cpp` component of the OpenCV library, which is used for computer vision, image processing, and numerical algorithms of general purpose, open-source computer vision. This vulnerability allows a attacker to cause a service denial.

The vulnerability of the cv::PxMDecoder::readData function in the grfmtpxm.cpp component of the Computer Vision, Image Processing, and Numerical Algorithms General Purpose Library OpenSource Computer Vision Library – OpenCV is related to the execution of operations outside of the buffer in memory...

OESA-2022-1973 deltarpm security update

Delta RPM packages contain the difference between an old and a new version of an RPM package. Applying a delta RPM on an old RPM results in the complete new RPM. It is not necessary to have a copy of the old RPM, because a delta RPM can also work with an installed RPM. Security Fixes: zlib throug...

OESA-2022-1974 squid security update

Squid is a high-performance proxy caching server. It handles all requests in a single, non-blocking, I/O-driven process and keeps meta data and implements negative caching of failed requests. Security Fixes: Exposure of Sensitive Information in Cache Manager...

The vulnerability of the Bluetooth HOST microprogramming system component in Qualcomm’s embedded chips allows a perpetrator to gain unauthorized access to protected information or cause service failures.

The vulnerability of the Bluetooth HOST microprogramming system component in Qualcomm embedded chips relates to the lack of checks on buffer length and reading beyond the memory boundary when processing the l2cap parameter. Exploiting this vulnerability can allow an attacker to gain unauthorized...

The vulnerability of the WLAN HOST microprogramming system component in Qualcomm’s embedded chips allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the WLAN HOST microprogramming system component in Qualcomm’s embedded chips relates to the lack of checks for buffer length and reading beyond the memory boundary during frame decompression. Exploiting this vulnerability can allow a remote attacker to cause service failures ...