CVE-2020-9958

CVE-2020-9958 is an Apple iOS/iPadOS vulnerability described as an out-of-bounds write that could cause an application to terminate unexpectedly or write to kernel memory. According to connected sources, the issue is addressed in iOS 14.0 and iPadOS 14.0, with Apple’s security content confirming ...

CVE-2020-9936

CVE-2020-9936 is an out-of-bounds write issue addressed with improved bounds checking. Apple confirms fixes across multiple platforms: iOS 13.6 / iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8, and corresponding Windows updates (iTunes 12.10.8 for Windows, iCloud for Windows 11.3...

CVE-2020-9891

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. Processing a maliciously crafted audio file may lead to arbitrary code execution...

CVE-2020-9890

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. Processing a maliciously crafted audio file may lead to arbitrary code execution...

CVE-2020-9890

CVE-2020-9890 is an out-of-bounds read in the Apple Audio stack that could allow code execution when processing a maliciously crafted audio file. It is fixed in iOS 13.6 / iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, and watchOS 6.2.8. The linked Apple and NVD entries confirm the vulnerabili...

CVE-2020-9889

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. Processing a maliciously crafted audio file may lead to arbitrary code execution...

CVE-2020-9888

CVE-2020-9888 affects Apple OS components handling audio on iOS/iPadOS, macOS, tvOS, and watchOS. The root cause is an out-of-bounds read vulnerability in audio processing, mitigated by improved bounds checking. Impact described as potential arbitrary code execution when processing a maliciously ...

CVE-2020-9884

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. Processing a maliciously crafted audio file may lead to arbitrary code execution...

CVE-2020-9799

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15.6. A malicious application may be able to execute arbitrary code with kernel privileges...

Ubuntu: Security Advisory (USN-4578-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-16120

Overlayfs did not properly perform permission checking when copying up files in an overlayfs and could be exploited from within a user namespace, if, for example, unprivileged user namespaces were allowed. It was possible to have a file not readable by an unprivileged user to be copied to a...

SUSE-SU-2020:2906-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP1 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-26088: Fixed an improper CAPNETRAW check in NFC socket creation could have been used by local attackers to create raw sockets, bypassing security...

PT-2020-6391

Name of the Vulnerable Software and Affected Versions SonicOS versions 6.0.5.3 and earlier SonicOS versions 6.5.1.11-4n and earlier SonicOS versions 6.5.4.7-79n and earlier SonicOSv versions 6.5.4.4-44v-21-794 and earlier SonicOS version 7.0.0.0-1 Description A buffer overflow vulnerability in...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-2176)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the Cisco IOS XE operating system, related to insufficient checking of unusual or exceptional states, allows a intruder to trigger a service failure.

The vulnerability of the Cisco IOS XE operating system is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a remote attacker to cause service failures...

The vulnerability of the Cisco IOS XE operating system, related to insufficient checking of unusual or exceptional states, allows a intruder to trigger a service failure.

The vulnerability of the Cisco IOS XE operating system is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a remote attacker to cause service failures...

EulerOS 2.0 SP9 : kernel (EulerOS-SA-2020-2166)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the...

Directory Traversal

ruby is vulnerable to directory traversal. It mishandles path checking within File.fnmatch functions...

Buffer overflow

A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A flawed bounds checking in the copydata function leads to a buffer overflow allowing an attacker in a virtual machine to write arbitrary data to any address in the vhostcrypto application. The highest threat from this...

DEBIAN-CVE-2020-14376

A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A lack of bounds checking when copying ivdata from the VM guest memory into host memory can lead to a large buffer overflow. The highest threat from this vulnerability is to data confidentiality and integrity as well as syst...