14 matches found
ALPINE-CVE-2021-42341
checkpath in OpenRC before 0.44.7 uses the direct output of strlen to allocate strings, which does not account for the '\0' byte at the end of the string. This results in memory corruption. CVE-2021-42341 was introduced in git commit 63db2d99e730547339d1bdd28e8437999c380cae, which was introduced ...
CVE-2021-42341
checkpath in OpenRC before 0.44.7 uses the direct output of strlen to allocate strings, which does not account for the '\0' byte at the end of the string. This results in memory corruption. CVE-2021-42341 was introduced in git commit 63db2d99e730547339d1bdd28e8437999c380cae, which was introduced ...
Memory corruption
checkpath in OpenRC before 0.44.7 uses the direct output of strlen to allocate strings, which does not account for the '\0' byte at the end of the string. This results in memory corruption. CVE-2021-42341 was introduced in git commit 63db2d99e730547339d1bdd28e8437999c380cae, which was introduced ...
CVE-2021-42341
checkpath in OpenRC before 0.44.7 uses the direct output of strlen to allocate strings, which does not account for the '\0' byte at the end of the string. This results in memory corruption. CVE-2021-42341 was introduced in git commit 63db2d99e730547339d1bdd28e8437999c380cae, which was introduced ...
CVE-2021-42341
checkpath in OpenRC before 0.44.7 uses the direct output of strlen to allocate strings, which does not account for the '\0' byte at the end of the string. This results in memory corruption. CVE-2021-42341 was introduced in git commit 63db2d99e730547339d1bdd28e8437999c380cae, which was introduced ...
CVE-2021-42341
CVE-2021-42341 concerns OpenRC: in versions prior to 0.44.7, checkpath allocates strings based on strlen() output without reserving space for the terminating ‘\0’, causing memory corruption. The vulnerability was introduced in commit 63db2d99e730547339d1bdd28e8437999c380cae as part of OpenRC 0.44...
OpenRC 安全漏洞
OpenRC is an initialization system from the Openrc team based on providing an init program. A security vulnerability exists in OpenRC versions prior to 0.44.7, which stems from a memory corruption in the software where checkpath uses the direct output of the strlen function to allocate strings,...
OpenRC Backlink Vulnerability
OpenRC is an initialization system from the OpenRC team based on providing init programs. A security vulnerability exists in OpenRC 0.42.1 and earlier versions, which stems from the fact that checkpath in OpenRC up to 0.42.1 may allow a local user to gain ownership of arbitrary files, as...
CVE-2018-21269
checkpath in OpenRC through 0.42.1 might allow local users to take ownership of arbitrary files because a non-terminal path component can be a symlink...
ALPINE-CVE-2018-21269
checkpath in OpenRC through 0.42.1 might allow local users to take ownership of arbitrary files because a non-terminal path component can be a symlink...
DEBIAN-CVE-2018-21269
checkpath in OpenRC through 0.42.1 might allow local users to take ownership of arbitrary files because a non-terminal path component can be a symlink...
CVE-2018-21269
checkpath in OpenRC through 0.42.1 might allow local users to take ownership of arbitrary files because a non-terminal path component can be a symlink...
CVE-2018-21269
checkpath in OpenRC through 0.42.1 might allow local users to take ownership of arbitrary files because a non-terminal path component can be a symlink...
GLSA-201810-08 : PostgreSQL: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201810-08 PostgreSQL: Multiple vulnerabilities Multiple vulnerabilities have been discovered in PostgreSQL. Please review the referenced CVE identifiers for details. In addition it was discovered that Gentoos PostgreSQL installati...