CVE-2020-1918

In-memory file operations ie: using fopen on a data URI did not properly restrict negative seeking, allowing for the reading of memory prior to the in-memory buffer. This issue affects HHVM versions prior to 4.56.3, all versions between 4.57.0 and 4.80.1, all versions between 4.81.0 and 4.93.1, a...

OESA-2021-1018 php security update

PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is...

CentOS 8 : curl (CESA-2019:3701)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:3701 advisory. - curl: NTLM type-2 heap out-of-bounds buffer read CVE-2018-16890 - wget: Information exposure in setfilemetadata function in xattr.c CVE-2018-20483 -...

Qualcomm Automotive Telematics Security Breach

Qualcomm Automotive Telematics is a support firmware for automotive telematics from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Automotive Telematics where a newly created buffer is read again from mmc without validation. mdm9630, mdm9640, mdm9650, mdm9655, msm8909w,...

Adobe Illustrator 2020 Out-of-Bounds Read Vulnerability (CNVD-2020-57876)

Adobe Illustrator 2020 is a vector graphics editor. Adobe Illustrator 2020 suffers from an out-of-bounds read vulnerability. An attacker can exploit this vulnerability to execute arbitrary code...

Security Advisory - Buffer Read Overflow Vulnerability in Huawei Product

There is a buffer overflow vulnerability in Huawei Product. A function in a module does not verify inputs sufficiently. Attackers can exploit this vulnerability by sending specific request. This could compromise normal service of the affected device. Vulnerability ID: HWPSIRT-2020-02172 This...

Security Bulletin: Publicly disclosed vulnerability from Libreswan affects IBM Netezza Host Management

Summary Open Source Libreswan is used by IBM Netezza Host Management. IBM Netezza Host Management has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2020-1763 DESCRIPTION: libreswan is vulnerable to a denial of service, caused by an out-of-bounds buffer read flaw in the pluto...

NewStart CGSL MAIN 6.01 : libreswan Vulnerability (NS-SA-2020-0035)

The remote NewStart CGSL host, running version MAIN 6.01, has libreswan packages installed that are affected by a vulnerability: - An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan from versions 3.27 till 3.31 where, an unauthenticated attacker could use this flaw to...

PT-2020-12048 · Python Imaging Library +2 · Pillow +2

Name of the Vulnerable Software and Affected Versions: Pillow versions prior to 7.1.0 Pillow versions 7.x prior to 7.0.1 Pillow version 6.2.3 and earlier Description: An out-of-bounds read can occur when reading PCX files where state-shuffle is instructed to read beyond state-buffer in the...

FreeBSD Kernel NAT Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of FreeBSD Kernel. Authentication is required to exploit this vulnerability. The specific flaw exists within the implementation of NAT. The issue results from the lack of proper validation of...

Updated libreswan packages fix security vulnerability

Updated libreswan packages fix security vulnerability: An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan. An unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the...

CVE-2020-1763

An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan from versions 3.27 till 3.31 where, an unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the crash...

UBUNTU-CVE-2020-1763

An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan from versions 3.27 till 3.31 where, an unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the crash...

CVE-2020-1763

Libreswan pluto daemon contained an out-of-bounds buffer read in versions 3.27–3.31. An unauthenticated attacker could crash libreswan by sending specially crafted IKEv1 Informational Exchange packets; the daemon respawns after the crash. Documented advisories from Debian, Mageia, Gentoo, and oth...

CVE-2020-1763

An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan from versions 3.27 till 3.31 where, an unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the crash...

CVE-2020-1763

An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan. An unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the crash. Mitigation Red Hat has investigated whether a...

libreswan: DoS attack via malicious IKEv1 informational exchange message

An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan. An unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the crash...

Multiple Huawei products cross-border read vulnerability (CNVD-2020-28979)

The Huawei AR1200, among others, is an enterprise router from Huawei, a Chinese company. The buffer error vulnerability exists in several Huawei products and stems from a failure to read data from the end of an expected buffer when parsing a specific message. An attacker could exploit the...

Microsoft Windows user32 Icon Extraction Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Debian: Security Advisory (DLA-2136-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...