Eclipse ThreadX RTOS 输入验证错误漏洞

Eclipse ThreadX RTOS is an advanced real-time operating system RTOS from Eclipse ThreadX designed for deeply embedded applications. A security vulnerability exists in Eclipse ThreadX RTOS versions prior to 6.4.0, which stems from a buffer overflow vulnerability due to a lack of parameter checking...

CVE-2021-47148

A vulnerability was found in octeontx2-pf driver of Linux Kernel, where a buffer overflow could occur due to insufficient bounds checking on the variable rsscontext. This could potentially lead to memory corruption. The issue has been addressed by implementing proper bounds checking to ensure tha...

CVE-2021-47148

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: fix a buffer overflow in otx2setrxfhcontext This function is called from ethtoolsetrxfh and "rsscontext" comes from the user. Add some bounds checking to prevent memory corruption...

DEBIAN-CVE-2021-47148

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: fix a buffer overflow in otx2setrxfhcontext This function is called from ethtoolsetrxfh and "rsscontext" comes from the user. Add some bounds checking to prevent memory corruption...

CVE-2021-47148

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: fix a buffer overflow in otx2setrxfhcontext This function is called from ethtoolsetrxfh and "rsscontext" comes from the user. Add some bounds checking to prevent memory corruption...

UBUNTU-CVE-2021-47148

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: fix a buffer overflow in otx2setrxfhcontext This function is called from ethtoolsetrxfh and "rsscontext" comes from the user. Add some bounds checking to prevent memory corruption...

CVE-2021-47148 octeontx2-pf: fix a buffer overflow in otx2_set_rxfh_context()

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: fix a buffer overflow in otx2setrxfhcontext This function is called from ethtoolsetrxfh and "rsscontext" comes from the user. Add some bounds checking to prevent memory corruption...

CVE-2021-47148

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: fix a buffer overflow in otx2setrxfhcontext This function is called from ethtoolsetrxfh and "rsscontext" comes from the user. Add some bounds checking to prevent memory corruption...

USN-6710-1: Firefox vulnerabilities

Manfred Paul discovered that Firefox did not properly perform bounds checking during range analysis, leading to an out-of-bounds write vulnerability. A attacker could use this to cause a denial of service, or execute arbitrary code. CVE-2024-29943 Manfred Paul discovered that Firefox incorrectly...

Ubuntu: Security Advisory (USN-6710-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Linux kernel 安全漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel that stems from a lack of NULL pointer checking...

EulerOS Virtualization 2.9.0 : mozjs60 (EulerOS-SA-2024-1473)

According to the versions of the mozjs60 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an...

EulerOS Virtualization 2.9.1 : mozjs60 (EulerOS-SA-2024-1458)

According to the versions of the mozjs60 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an...

CVE-2023-52614

In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Fix buffer overflow in transstatshow Fix buffer overflow in transstatshow. Convert simple snprintf to the more secure scnprintf with size of PAGESIZE. Add condition checking if we are exceeding PAGESIZE and exit ear...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from inadequate checking of the canmapfrag function...

The vulnerability of the software file loading function of the Cisco AppDynamics Controller allows a perpetrator to gain access to protected information.

The vulnerability of the software file loading function of the Cisco AppDynamics Controller is related to deficiencies in path name checking for the directory. Exploiting this vulnerability could allow an attacker operating remotely to gain access to protected information...

Mageia: Security Advisory (MGASA-2024-0059)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: IBM Informix archecker, cdr, and onsmsync are vulnerable to heap buffer overflow.

Summary IBM Informix archecker, cdr, and onsmsync are vulnerable to heap buffer overflow when invoked with invalid parameters. Vulnerability Details CVEID:CVE-2023-28527 DESCRIPTION: IBM Informix cdr is vulnerable to a heap buffer overflow, caused by improper bounds checking which could allow a...

MGASA-2024-0059 Updated libgit2 packages fix security vulnerabilities

When using an SSH remote with the optional libssh2 backend, libgit2 does not perform certificate checking by default. CVE-2023-22742 Using well-crafted inputs to gitindexadd can cause heap corruption that could be leveraged for arbitrary code execution. CVE-2024-24577...

Updated libgit2 packages fix security vulnerabilities

When using an SSH remote with the optional libssh2 backend, libgit2 does not perform certificate checking by default. CVE-2023-22742 Using well-crafted inputs to gitindexadd can cause heap corruption that could be leveraged for arbitrary code execution. CVE-2024-24577...