Linux: Separate partition for /dev/shm

/dev/shm implements traditional shared memory concept. It is an efficient means of passing data between programs. This script tests if a separate partition exists for /dev/shm. Copyright C 2020 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you ca...

Command Injection

devcert-sanscache is vulnerable to OS command injection. The commonName parameter used to generate a developer SSL certificate is not validated and sanitized, allowing for command injection as the value is subsequently passed into an exec function...

dev-applications.net Improper Access Control vulnerability

Open Bug Bounty ID: OBB-1063250 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

OpenSSL 1.1.1 < 1.1.1e-dev Procedure Overflow Vulnerability

The version of OpenSSL installed on the remote host is prior to 1.1.1e-dev. It is, therefore, affected by a vulnerability as referenced in the 1.1.1e-dev advisory. - There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms ar...

Razer: SQL Injection at api.easy2pay.co/add-on/get-sig.php via partner_id Parameter

The tester discovered a SQL injection vulnerability that allowed the potential extraction of sensitive user information from the Razer Gold Thailand database. Razer thanks the tester for his PoC as well as working with the Triage and dev teams to clarify the issue and get it fixed...

UBUNTU-CVE-2019-20169

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function trakRead in isomedia/boxcodebase.c...

Null pointer dereference

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function sencParse in isomedia/boxcodedrm.c...

CVE-2019-20169

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function trakRead in isomedia/boxcodebase.c...

PT-2019-16116 · Gpac +1 · Gpac +1

Name of the Vulnerable Software and Affected Versions: GPAC versions 0.8.0 through 0.9.0-development-20191109 Description: An issue was discovered in the function GF IPMPX AUTH Delete in odf/ipmpx code.c, which contains an invalid pointer dereference. Recommendations: For GPAC version 0.8.0, upda...

dev-motojobs.pantheonsite.io Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1040847 Security Researcher devl00p Helped patch 2581 vulnerabilities Received 10 Coordinated Disclosure badges Received 15 recommendations , a holder of 10 badges for responsible and coordinated disclosure, found a security vulnerability affecting...

CVE-2019-4444

IBM API Connect 2018.1 through 2018.4.1.7 Developer Portal's user registration page does not disable password autocomplete. An attacker with access to the browser instance and local system credentials can steal the credentials used for registration. IBM X-Force ID: 163453...

CVE-2019-19702

The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML...

Debian: Security Advisory (DLA-2022-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-18675

The Linux kernel through 5.3.13 has a startoffset+size Integer Overflow in cpia2remapbuffer in drivers/media/usb/cpia2/cpia2core.c because cpia2 has its own mmap implementation. This allows local users with /dev/video0 access to obtain read and write permissions on kernel physical pages, which ca...

DEBIAN-CVE-2019-13683

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

UBUNTU-CVE-2019-18675

The Linux kernel through 5.3.13 has a startoffset+size Integer Overflow in cpia2remapbuffer in drivers/media/usb/cpia2/cpia2core.c because cpia2 has its own mmap implementation. This allows local users with /dev/video0 access to obtain read and write permissions on kernel physical pages, which ca...

DEBIAN-CVE-2019-18885

fs/btrfs/volumes.c in the Linux kernel before 5.1 allows a btrfsverifydevextents NULL pointer dereference via a crafted btrfs image because fsdevices-devices is mishandled within finddevice, aka CID-09ba3bc9dd15...

bind security and bug fix update

32:9.11.4-26.P2 - Permit explicit disabling of RSAMD5 in FIPS mode 1737407 32:9.11.4-25.P2 - Fix CVE-2018-5745 - Fix CVE-2019-6465 32:9.11.4-24.P2 - Do not override random numbers provider in DHCP 1668682 32:9.11.4-23.P2 - Report errors on invalid IDN 2008 names 1679307 32:9.11.4-22.P2 - Fix...

Debian: Security Advisory (DLA-1984-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Arbitrary File Overwrite

libqb is vulnerable to arbitrary file overwrite. An attacker is able to overwrite arbitrary files via a symlink attack due to the usage of predictable filenames under /dev/shm and /tmp without OEXCL...