7652 matches found
About the security content of Security Update 2021-004 Mojave
About the security content of Security Update 2021-004 Mojave This document describes the security content of Security Update 2021-004 Mojave. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurre...
github.com/nats-io/nats-server Import token permissions checking not enforced
This advisory is canonically Problem Description The NATS server provides for Subjects which are namespaced by Account; all Subjects are supposed to be private to an account, with an Export/Import system used to grant cross-account access to some Subjects. Some Exports are public, such that anyon...
GHSA-J756-F273-XHP4 github.com/nats-io/nats-server Import token permissions checking not enforced
This advisory is canonically Problem Description The NATS server provides for Subjects which are namespaced by Account; all Subjects are supposed to be private to an account, with an Export/Import system used to grant cross-account access to some Subjects. Some Exports are public, such that anyon...
webkitgtk: out-of-bounds write may lead to code execution
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to code execution...
Important: kernel security, bug fix, and enhancement update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Integer overflow in IntelR Graphics Drivers CVE-2020-12362 kernel: memory leak in sofsetgetlargectrldata function in sound/soc/sof/ipc.c CVE-2019-18811 kernel: use-after-free caused by a...
JetBrains TeamCity Plugin Changed Permission Check Implementation Error Vulnerability
TeamCity is a Java-based build management and continuous integration server from JetBrains. A vulnerability exists in JetBrains TeamCity versions prior to 2020.2.2 in the implementation error of permission checking for plugin changes. No detailed vulnerability details are provided at this time...
PT-2024-11197 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A buffer overflow issue has been resolved in the Linux kernel. The issue is located in the otx2 set rxfh context function, which is called from ethtool set rxfh. The rss context variab...
IBM Informix Dynamic Server 14.10.x < 14.10.xC5 Buffer Overflow (6448568)
The version of IBM Informix Dynamic Server installed on the remote is 14.10.x prior to 14.10.xC5. It is, therefore, affected by a buffer overflow, caused by improper bounds checking. A local privileged user could overflow a buffer and execute arbitrary code on the system or cause a denial of...
Pystinger - Bypass Firewall For Traffic Forwarding Using Webshell
Pystinger implements SOCK4 proxy and port mapping through webshell. It can be directly used by metasploit-framework, viper, cobalt strike for session online. Pystinger is developed in python, and currently supports three proxy scripts: php, jspx and aspx. Usage Suppose the domain name of the serv...
Google Android 安全漏洞
Google Android is a Linux-based open source operating system from the Google Open Handheld Alliance Google. Google Android suffers from an elevation of privilege vulnerability. The vulnerability is caused due to a privilege checking error in the memory management driver. An attacker could exploit...
Google Android 缓冲区错误漏洞
Google Android is a Linux-based open source operating system from the Google Open Handheld Consortium Google. Google Android suffers from an elevation of privilege vulnerability. The vulnerability stems from an out-of-bounds write in the memory management driver due to a lack of boundary checking...
CVE-2021-32020
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has insufficient bounds checking during management of heap memory...
CVE-2021-32020
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has insufficient bounds checking during management of heap memory...
Design/Logic Flaw
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has insufficient bounds checking during management of heap memory...
CVE-2021-32020
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has insufficient bounds checking during management of heap memory...
CVE-2021-32020
CVE-2021-32020 affects the kernel of Amazon Web Services FreeRTOS prior to 10.4.3, where insufficient bounds checking during heap memory management is the root cause. The issue is exploitable over a network with low attack complexity and no authentication, and it carries high potential impact to ...
Security Bulletin: TensorFlow is vulnerable to a heap-based buffer overflow on IBM Watson Machine Learning on CP4D
Summary TensorFlow is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by UnsortedSegmentSum on IBM Watson Machine Learning on CP4D Vulnerability Details CVEID: CVE-2019-16778 DESCRIPTION: TensorFlow is vulnerable to a heap-based buffer overflow, caused by improper...
Qualcomm 多款产品资源管理错误漏洞
Qualcomm MDM9206 and others are products of Qualcomm Incorporated Qualcomm, U.S.A. The MDM9206 is a central processing unit CPU product.The MDM9650 is a central processing unit CPU product.The MSM8996AU is a central processing unit CPU product.The MSM8996AU is a central processing unit CPU...
Qualcomm 组件输入验证错误漏洞
The Qualcomm Component is a component of Qualcomm Incorporated USA. An intrinsic part that provides the functionality of Qualcomm devices. An input validation error vulnerability exists in the Qualcomm Component that stems from incorrect length checking of SDES packets. The following products and...
CVE-2021-20515
IBM Informix Dynamic Server 14.10 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A local privileged user could overflow a buffer and execute arbitrary code on the system or cause a denial of service condition. IBM X-Force ID: 198366...