Cross site scripting

An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to macOS Mojave 10.14...

Cross site scripting

An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5...

Cross site scripting

An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to iOS 12.1...

CVE-2018-4365

An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to iOS 12.1...

CVE-2018-4365

CVE-2018-4365 is an Apple iOS vulnerability where an out-of-bounds read existed in the Contacts component prior to iOS 12.1. The issue was addressed with improved bounds checking, per the description. The vulnerability’s scope is limited to iOS versions before 12.1, with remediation through iOS 1...

CVE-2018-4308

CVE-2018-4308 is an out-of-bounds read affecting macOS prior to Mojave 10.14, mitigated by improved bounds checking in ATS. Remediation: upgrade to macOS Mojave 10.14 or later (HT209139; Mojave 10.14.1 provided in HT209193). Exploitation status is not disclosed in the provided documents.

CVE-2018-4308

An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to macOS Mojave 10.14...

CVE-2018-4203

An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5...

CVE-2018-4203

CVE-2018-4203 describes an out-of-bounds read that was addressed by improved bounds checking. The Apple advisories indicate this affected multiple platforms prior to updates: iOS before 12, macOS Mojave 10.14, tvOS 12, and watchOS 5. The Red Hat entry reiterates the same issue and scope. Remediat...

CVE-2018-1936

IBM DB2 9.7, 10.1, 10.5, and 11.1 libdb2e.so.1 is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow an attacker to execute arbitrary code. IBM X-Force ID: 153316...

CVE-2018-1936

IBM DB2 9.7, 10.1, 10.5, and 11.1 libdb2e.so.1 is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow an attacker to execute arbitrary code. IBM X-Force ID: 153316...

CVE-2019-1789

ClamAV versions prior to 0.101.2 are susceptible to a denial of service DoS vulnerability. An out-of-bounds heap read condition may occur when scanning PE files. An example is Windows EXE and DLL files that have been packed using Aspack as a result of inadequate bound-checking...

Mozilla Firefox < 66.0 Multiple Vulnerabilities

Binary data 700487.prm...

Code injection

In HP LaserJet Enterprise, HP PageWide Enterprise, HP LaserJet Managed, and HP OfficeJet Enterprise Printers, solution application signature checking may allow potential execution of arbitrary code...

CVE-2018-5923

In HP LaserJet Enterprise, HP PageWide Enterprise, HP LaserJet Managed, and HP OfficeJet Enterprise Printers, solution application signature checking may allow potential execution of arbitrary code...

CVE-2018-5923

In HP LaserJet Enterprise, HP PageWide Enterprise, HP LaserJet Managed, and HP OfficeJet Enterprise Printers, solution application signature checking may allow potential execution of arbitrary code...

openSUSE Security Update : ghostscript (openSUSE-2019-759)

This update for ghostscript to version 9.25 fixes the following issues : These security issues were fixed : - CVE-2018-17183: Remote attackers were be able to supply crafted PostScript to potentially overwrite or replace error handlers to inject code bsc1109105 - CVE-2018-15909: Prevent type...

OPENSUSE-SU-2019:0139-1 Security update for krb5

This update for krb5 fixes the following issues: Security issues fixed: - CVE-2018-5729, CVE-2018-5730: Fixed multiple flaws in LDAP DN checking bsc1083926, bsc1083927 This update was imported from the SUSE:SLE-15:Update update project...

Mozilla Firefox and Firefox ESR Improper Boundary Checking Vulnerability

Mozilla Firefox and Firefox ESR are both products of the Mozilla Foundation in the U.S. Mozilla Firefox is an open source web browser.Firefox ESR is an extended support version of Firefox web browser. A security vulnerability exists in Mozilla Firefox versions prior to 66 and Firefox ESR versions...

The vulnerability of the command-line interface of the Cisco Nexus Operating System allows a hacker to execute any command they desire.

The vulnerability of the command-line interface of the Cisco Nexus Operating System is related to insufficient checking of arguments passed in commands. Exploiting this vulnerability allows a local attacker to execute arbitrary commands...