MS03-026: Buffer Overrun in RPC May Allow Code Execution

Technical UpdateSeptember 10, 2003: The following changes were made to this article: Updated the "Security Patch Replacement Information" sections to indicate that this patch has been replaced by 824146 MS03-039. For more information about the 824146 security patch MS03-039, click the following...

krb5-appl security update

1.0.1-10 - Apply previous patch - Resolves: 1814774 1.0.1-9 - Fix CVE-2020-10188 netclear/nextitem buffer overrun - Resolves: 1814774 1.0.1-8 - bump release number to sort newer than the recent 6.2 update...

The vulnerability of the JavaScript script handler in Google Chrome’s V8 browser allows attackers to compromise data integrity, cause service failures, or gain unauthorized access to confidential information.

The vulnerability of the JavaScript script handler in Google Chrome’s V8 browser is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to compromise data integrity, cause service failures, or gain unauthorized access to...

The vulnerability of the WebKit rendering module, related to the execution of operations beyond the buffer boundaries in memory, allows a malicious actor to execute arbitrary code.

The vulnerability of the WebKit rendering module is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted web page...

The vulnerability of the WebKit rendering module, related to the execution of operations beyond the buffer boundaries in memory, allows an attacker to execute arbitrary code.

The vulnerability of the WebKit rendering module is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted web page...

The vulnerability of the WebKit rendering module, related to the execution of operations beyond the buffer boundaries in memory, allows an attacker to execute arbitrary code.

The vulnerability of the WebKit rendering module is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted web page...

The vulnerability of the FreeTDS library set up on the Ubuntu operating system allows a hacker to cause a service failure or execute arbitrary code.

The vulnerability of the FreeTDS library set up on the Ubuntu operating system is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to cause service failures or execute arbitrary code...

CVE-2019-9025

An issue was discovered in PHP 7.3.x before 7.3.1. An invalid multibyte string supplied as an argument to the mbsplit function in ext/mbstring/phpmbregex.c can cause PHP to execute memcpy with a negative argument, which could read and write past buffers allocated for the data...

The vulnerability of the Adobe Photoshop graphic editor is related to the issue of executing code outside the buffer boundaries in memory, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Photoshop graphic editor is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code on the target system by opening the malicious file...

The vulnerability of the Adobe Photoshop graphic editor is related to the issue of executing code outside the buffer boundaries in memory, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Photoshop graphic editor is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code on the target system by opening the malicious file...

CVE-2020-8875

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

The vulnerability of Intel Graphics Driver drivers arises from operations that go beyond buffer boundaries in memory, allowing attackers to escalate their privileges or cause system failures.

The vulnerability of Intel Graphics Drivers drivers arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to increase their privileges or cause service failures...

The vulnerability of the Media Foundation component in Windows operating systems allows attackers to compromise the confidentiality, integrity, or accessibility of protected information.

The vulnerability of the Media Foundation component in Windows operating systems relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, or accessibility of protected informati...

The vulnerability of the MPI process tracing tools Intel Trace Analyzer and Collector lies in the execution of operations beyond buffer boundaries in memory, allowing attackers to execute arbitrary code.

The vulnerability of the MPI process tracing tools Intel Trace Analyzer and Collector lies in the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the ext4_xattr_set_entry function (fs/ext4/xattr.c) in the Linux kernel allows a hacker to execute arbitrary code.

The vulnerability of the ext4xattrsetentry function fs/ext4/xattr.c in the Linux kernel is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Apache Tika content detection and analysis environment, related to the execution of operations beyond the buffer in memory, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Apache Tika content detection and analysis engine lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected...

The vulnerability of the sysmain.dll file in the Windows operating system allows a hacker to gain increased privileges.

The vulnerability of the sysmain.dll file in the Windows operating system is related to operations that go beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

The vulnerability of the “adem2d.dll” library in the ADEM CAD/CAM/CAPP system allows a hacker to alter the program’s address space data.

The vulnerability of the “adem2d.dll” library in the ADEM CAD/CAM/CAPP system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to alter the address space of the program, which may lead to the corruption of user data...

The vulnerability of the LibTIFF library, related to writing beyond the buffer boundaries in memory, allows an attacker to cause a service failure or execute arbitrary code.

The vulnerability of the LibTIFF library lies in the writing beyond buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures or execute arbitrary code using a specially crafted file...

Updated upx packages fix security vulnerabilities

The updated packages fix security vulnerabilities: PackLinuxElf64::unpack in plxelf.cpp in UPX 3.95 allows remote attackers to cause a denial of service double free, limit the ability of a malware scanner to operate on the entire original data, or possibly have unspecified other impact via a...