CVE-2021-21405

Lotus is an Implementation of the Filecoin protocol written in Go. BLS signature validation in lotus uses blst library method VerifyCompressed. This method accepts signatures in 2 forms: "serialized", and "compressed", meaning that BLS signatures can be provided as either of 2 unique byte arrays...

PT-2021-14482 · Unknown +2 · Filecoin-Ffi +2

Name of the Vulnerable Software and Affected Versions: Lotus affected versions not specified Description: The issue concerns BLS signature validation in Lotus, which uses the blst library method VerifyCompressed. This method accepts signatures in two forms: serialized and compressed, allowing BLS...

openSUSE Security Update : ldb / samba (openSUSE-2020-1023)

"This update for ldb, samba fixes the following issues : Changes in samba : - Update to samba 4.11.11 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; bso14364 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

Symantec Norton Security 'CIDS' Driver < 15.1.2 DoS Vulnerability

Symantec Norton Security is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2016-5308

The Client Intrusion Detection System CIDS driver before 15.0.6 in Symantec Endpoint Protection SEP and before 15.1.2 in Norton Security allows remote attackers to cause a denial of service memory corruption and system crash via a malformed Portable Executable PE file...

Memory corruption

The Client Intrusion Detection System CIDS driver before 15.0.6 in Symantec Endpoint Protection SEP and before 15.1.2 in Norton Security allows remote attackers to cause a denial of service memory corruption and system crash via a malformed Portable Executable PE file...

CVE-2016-5308

Summary: CVE-2016-5308 affects the Symantec Norton Security/SEP CIDS driver (IDSvix86) that processes Portable Executable files. The vulnerability is triggered by a specially crafted PE file, leading to memory corruption and a denial of service (system crash) via the IDSvix86 kernel driver. Affec...

CVE-2016-5308

The Client Intrusion Detection System CIDS driver before 15.0.6 in Symantec Endpoint Protection SEP and before 15.1.2 in Norton Security allows remote attackers to cause a denial of service memory corruption and system crash via a malformed Portable Executable PE file...

Cellular IDS Enables Monitoring of BYOD Devices for Malware

Organizations struggle with securing consumer mobile devices in the enterprise because A they don’t own the device; and B mobile traffic often isn’t accessible to network managers making it difficult to scan for infections or anomalous behavior. At DEF CON last weekend, a team of researchers...