Cross site scripting

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, tvOS 14.0, iOS 14.0 and iPadOS 14.0. An application may be able to read restricted memory...

CVE-2020-27927

CVE-2020-27927 is an Apple font-parsing vulnerability. The issue is described as an out-of-bounds write in the FontParser component that processes malicious font files, leading to arbitrary code execution. Affected platforms include macOS Big Sur 11.0.1 and iOS 14.2 / iPadOS 14.2, tvOS 14.2, and ...

CVE-2020-27927

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. Processing a maliciously crafted font file may lead to arbitrary code execution...

CVE-2020-10011

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 14.2 and iPadOS 14.2, macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave. Processing a maliciously crafted USD file may lead to unexpected application terminati...

CVE-2020-9943

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, tvOS 14.0, iOS 14.0 and iPadOS 14.0. A malicious application may be able to read restricted memory...

CVE-2020-9943

CVE-2020-9943 is an out-of-bounds read in Apple’s Audio stack (CoreAudio) that could allow a malicious app to read restricted memory. It was addressed by improved bounds checking and memory handling. The fixed versions include macOS Big Sur 11.0.1, iOS 14.0 and iPadOS 14.0, watchOS 7.0, and tvOS ...

CVE-2020-9944

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, tvOS 14.0, iOS 14.0 and iPadOS 14.0. An application may be able to read restricted memory...

CVE-2020-9944

CVE-2020-9944: An out-of-bounds read in certain Apple media components was addressed by improved bounds checking. Affected: macOS Big Sur 11.0.1 and prior; affected watchOS 7.0, tvOS 14.0, iOS 14.0, and iPadOS 14.0. Impact (as stated): an application may be able to read restricted memory. Public ...

Buffer Overflow

mathtex is vulnerable to buffer overflow. The vulnerability is caused by improper bounds checking by the mathtex.cgi script. An attacker may inflict a buffer overflow and execute arbitrary code on the system or cause the application to crash...

Privilege Escalation

linux-kvm is vulnerable to privilege escalation. The vulnerability exists as the rbd block device driver in drivers/block/rbd.c used incomplete permission checking for access to rbd devices, which could be leveraged by local attackers to map or unmap rbd block devices...

IBM DB2 10.5 < FP11 40479 / 11.1 < FP5 40478 / 11.5 < 11.5.5000.1587 Buffer Overflow (Windows)

A buffer overflow condition exists in IBM DB2 due to improper bounds checking. An unauthenticated, local attacker can exploit this to execute arbitrary code on the system with root privileges. Note that Nessus has not tested for this issue but has instead relied only on the application's...

IBM DB2 10.5 < FP11 40479 / 11.1 < FP5 40478 / 11.5 < 11.5.5.0 Buffer Overflow (Unix)

A buffer overflow condition exists in IBM DB2 due to improper bounds checking. An unauthenticated, local attacker can exploit this to execute arbitrary code on the system with root privileges. Note that Nessus has not tested for this issue but has instead relied only on the application's...

FreeBSD : FreeBSD -- Multiple vulnerabilities in rtsold (e2748c9d-3483-11eb-b87a-901b0ef719ab)

Two bugs exist in rtsold8's RDNSS and DNSSL option handling. First, rtsold8 failed to perform sufficient bounds checking on the extent of the option. In particular, it does not verify that the option does not extend past the end of the received packet before processing its contents. The kernel...

Updated webkit2 packages fix security vulnerabilities

The webkit2 package has been updated to version 2.30.3, fixing several security issues and other bugs. A type confusion issue may lead to arbitrary code execution with a maliciously crafted web content, fixed with improved memory handling CVE-2020-9948. An use after free issue may lead to arbitra...

MGASA-2020-0441 Updated webkit2 packages fix security vulnerabilities

The webkit2 package has been updated to version 2.30.3, fixing several security issues and other bugs. A type confusion issue may lead to arbitrary code execution with a maliciously crafted web content, fixed with improved memory handling CVE-2020-9948. An use after free issue may lead to arbitra...

CVE-2020-9983

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to code execution...

UBUNTU-CVE-2020-9983

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to code execution...

GaussDB Kernel: Checking the CREATEROLE Permission

Only the role with the CREATEROLE permission can create, modify, or delete other roles. Such a role can also grant permissions to or revoke permissions of other roles. To avoid arbitrary permission granting, delete roles that do not require the CREATEROLE permission. Copyright C 2020 Greenbone...

CVE-2020-7559

A CWE-120: Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability exists in PLC Simulator on EcoStruxureª Control Expert now Unity Pro all versions that could cause a crash of the PLC simulator present in EcoStruxureª Control Expert software when receiving a specially...

CVE-2020-4701

IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 10.5, 11.1, and 11.5 is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with root privileges...