Buffer overflow

IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 9.7, 10.1, 10.5, 11.1, and 11.5 db2fm is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with root privileges. IBM X-Force ID: 193661...

A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents using a 1kB stack buffer for temporary storage without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload it is possible to overflow the stack buffer corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

...

Security Bulletin: IBM® Db2® is vulnerable to buffer overflow leading to a privileged escalation (CVE-2020-4363)

Summary IBM® Db2® is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with root privileges. Vulnerability Details CVEID: CVE-2020-4363 DESCRIPTION: IBM DB2 for Linux, UNIX and Windows includes DB2 Connec...

NewStart CGSL MAIN 6.02 : kernel Multiple Vulnerabilities (NS-SA-2021-0051)

The remote NewStart CGSL host, running version MAIN 6.02, has kernel packages installed that are affected by multiple vulnerabilities: - A flaw was found in the Linux kernel before 5.9-rc4. A failure of the file system metadata validator in XFS can cause an inode with a valid, user-creatable...

EulerOS Virtualization 3.0.2.6 : libvorbis (EulerOS-SA-2021-1440)

According to the version of the libvorbis package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - lib/codebook.c in libvorbis before 1.3.6, as used in StepMania 5.0.12 and other products, has insufficient array bounds checking v...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9087)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2021-9087 advisory. - ovl: verify permissions in ovlpathopen Miklos Szeredi Orabug: 32435220 CVE-2020-16120 - ovl: switch to mounter creds in readdir Miklos Szeredi Orabug...

Secomea GateManager File Upload Vulnerability

Secomea GateManager is a remote access server product from Secomea, Denmark. A file upload vulnerability exists in versions prior to Secomea GateManager 9.4.621054022, which stems from a code upload vulnerability without integrity checking that can be exploited by an attacker to execute malicious...

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9084)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9084 advisory. - ovl: verify permissions in ovlpathopen Miklos Szeredi Orabug: 32435220 CVE-2020-16120 - ovl: switch to mounter creds in readdir Miklos Szeredi Orabug...

Exploit for Path Traversal in Microsoft

I will continue to add any new code or modify existing code ba...

MediaTek netdiag Information Disclosure Vulnerability

MediaTek netdiag is an application chip from MediaTek China. Improved processing capabilities. A security vulnerability exists in MediaTek netdiag. The vulnerability stems from a lack of privilege checking and could lead to the disclosure of local information with required system execution...

Secomea GateManager 代码问题漏洞

Secomea GateManager is a remote access server product from Secomea, Denmark. A file upload vulnerability exists in versions prior to Secomea GateManager 9.4.621054022, which stems from a code upload vulnerability without integrity checking that can be exploited by an attacker to execute malicious...

Huawei EulerOS: Security Advisory for libvorbis (EulerOS-SA-2021-1493)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 8 : grub2 (ELSA-2021-0696)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-0696 advisory. - Add CVE-2020-15706, CVE-2020-15707 to the list Orabug: 31225072 Tenable has extracted the preceding description block directly from the Oracle Linux...

EulerOS Virtualization 3.0.6.6 : libvorbis (EulerOS-SA-2021-1493)

According to the version of the libvorbis package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - lib/codebook.c in libvorbis before 1.3.6, as used in StepMania 5.0.12 and other products, has insufficient array bounds checking v...

grub2: Stack buffer overflow in grub_parser_split_cmdline()

A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with...

grub2: Out-of-bounds write in grub_usb_device_initialize()

A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the...

Google Android 缓冲区错误漏洞

Google Android is a Linux-based open source operating system from the USGoogleOpen Handheld Alliance Google. Google Android/Pixel suffers from a security vulnerability that could allow out-of-bounds writes due to a lack of boundary checking. No details of the vulnerability are available at this...

Google Android 安全特征问题漏洞

Google Android is a Linux-based open source operating system from the USGoogleOpen Handheld Alliance Google. Google Android/Pixel has a security vulnerability that stems from a lack of privilege checking in Telephony, which could bypass privileges. This could lead to local privilege escalation...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from the USGoogleOpen Handheld Alliance Google. Google Android suffers from a security vulnerability that stems from a lack of bounds checking in Parseins in easmdls.c, which may write out of bounds. This could lead to the disclosure of...

GPU driver 资源管理错误漏洞

The Qualcomm Adreno GPU is a mobile platform-integrated GPU from Qualcomm Incorporated USA. A resource management error vulnerability exists in the GPU driver, which stems from improper reference memory checking...