USN-5928-1 systemd vulnerabilities

It was discovered that systemd did not properly validate the time and accuracy values provided to the formattimespan function. An attacker could possibly use this issue to cause a buffer overrun, leading to a denial of service attack. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ESM,...

Ubuntu: Security Advisory (USN-5928-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the Adobe Bridge file manager relates to the issue of writing operations beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Adobe Bridge file manager is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially created malicious file...

The vulnerability of the Adobe Bridge file manager arises from the possibility of writing operations beyond the buffer boundaries in memory, allowing an attacker to gain unauthorized access to protected information.

The vulnerability of the Adobe Bridge file manager is related to the issue of writing operations beyond the buffer boundaries in memory when processing embedded fonts. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Adobe Bridge file manager relates to the issue of writing operations beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Adobe Bridge file manager is related to the issue of writing operations beyond the buffer boundaries in memory when processing embedded fonts. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created malicious file or a speciall...

The vulnerability of the Windows Common Log File System Driver in the Windows operating system allows a hacker to gain increased privileges.

The vulnerability of the Windows Common Log File System Driver in the operating system is caused by an operation that goes beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Console component of InHand Networks’ InRouter302 microprogramming system lies in the ability to write data beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Console component of InHand Networks’ InRouter302 microprogramming system lies in the writing of data beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the software for opening, viewing, printing, and transforming DWG drawing files in TrueView arises from the operation that goes beyond buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of TrueView’s software for opening, viewing, printing, and transforming DWG drawings arises from the execution of operations beyond the buffer limits in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of Microsoft Word text editors arises from the possibility of writing operations beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Word relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by opening a specially created file...

SUSE SLES15 / openSUSE 15 Security Update : tpm2-0-tss (SUSE-SU-2023:0613-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0613-1 advisory. - tpm2-tss is an open source software implementation of the Trusted Computing Group TCG Trusted Platform Module TPM 2 Software Stack TSS2...

The vulnerability of the Distributed File System component of the Windows operating system, which allows a hacker to execute arbitrary code.

The vulnerability of the Distributed File System component of the Windows operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the vrend_renderer_transfer_write_iov function in the vrend_renderer.c component of the virtual OpenGL renderer Virglrenderer allows a attacker to gain access to confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of the vrendrenderertransferwriteiov function in the vrendrenderer.c component of the virtual OpenGL renderer Virglrenderer relates to writing beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to access confidential data, compromise its integrit...

openssl: read buffer overflow in X.509 certificate verification

A flaw was found in Open SSL. A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification, and requires either a CA to have signed the malicious certificate or for the...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : tpm2-0-tss (SUSE-SU-2023:0526-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0526-1 advisory. - tpm2-tss is an open source software implementation of the Trusted Computing Group TCG Trusted Platform...

RHEL 9 : openssl (RHSA-2023:0946)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0946 advisory. OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength...

The vulnerability of the Protected Extensible Authentication Protocol (PEAP) implementation in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Protected Extensible Authentication Protocol PEAP implementation in Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected...

The vulnerability of the Internet Storage Name Service (iSNS) for Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Internet Storage Name Service iSNS on Windows operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

CVE-2022-4203

A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate...

CVE-2022-4203

A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate...

ALPINE-CVE-2022-4203

A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate...