8743 matches found
OESA-2025-1002 dpdk security update
The Data Plane Development Kit is a set of libraries and drivers for fast packet processing in the user space. Security Fixes: An out-of-bounds read vulnerability was found in DPDK's Vhost library checksum offload feature. This issue enables an untrusted or compromised guest to crash the...
OESA-2024-2599 dpdk security update
The Data Plane Development Kit is a set of libraries and drivers for fast packet processing in the user space. Security Fixes: An out-of-bounds read vulnerability was found in DPDK's Vhost library checksum offload feature. This issue enables an untrusted or compromised guest to crash the...
Dpdk: denial of service from malicious guest on hypervisors using dpdk vhost library
...
Top AI Trends Every Software Development Company to Follow in 2025
The software development industry is expanding tremendously. It drives up the need for technical people and new solutions.…...
USN-7178-1 dpdk vulnerability
It was discovered that DPDK incorrectly handled the Vhost library checksum offload feature. An malicious guest could possibly use this issue to cause the hypervisor's vSwitch to crash, resulting in a denial of service...
UBUNTU-CVE-2024-11614
An out-of-bounds read vulnerability was found in DPDK's Vhost library checksum offload feature. This issue enables an untrusted or compromised guest to crash the hypervisor's vSwitch by forging Virtio descriptors to cause out-of-bounds reads. This flaw allows an attacker with a malicious VM using...
Moderate: Red Hat Security Advisory: edk2:20240524 security update
An update for the edk2:20240524 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
DPDK Vhost Library 缓冲区错误漏洞
The DPDK Vhost Library is a library of user-space implementations of the vhost protocol from the DPDK organization. A buffer error vulnerability exists in the DPDK Vhost Library, which stems from the presence of a buffer overflow vulnerability that could result in a denial of service or arbitrary...
Siemens Opcenter RDL Buffer Overflow Vulnerability
The Opcenter Research Development & Laboratory RD&L suite of software products simplifies, optimizes and aligns formulation product development, improves FMCG innovation efficiency and optimizes FMCG data management. A buffer overflow vulnerability exists in Siemens Opcenter RDL, which can be...
The vulnerability of the application development environment and the Angular single-page application platform, related to improper code generation management, allows attackers to execute arbitrary code.
The vulnerability of the application development environment and the Angular single-page application platform is related to improper code generation management. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the software development environment for systems that automate technological processes, the Totally Integrated Automation Portal (Portal TIA), and the software used for modeling and simulating the operation of Siemens S7 controllers, arises from insufficient validation of input data. This allows attackers to execute arbitrary code.
The vulnerability of the software development environment for systems that automate technological processes, such as the Totally Integrated Automation Portal Portal TIA and software for simulating and testing the operation of Siemens S7 controllers, is related to insufficient verification of inpu...
Microsoft Security Update Validation Report December 2024
Microsoft’s December 2024 security updates have passed Citrix testing the updates are listed below. The testing is not all-inclusive; all tests are executed against English only environments and issues may still be found upon implementation. Follow best practices for testing and installing softwa...
[SECURITY] Fedora 41 Update: iaito-5.9.9-2.fc41
iaito is a Qt and C++ GUI for radare2. It is the continuation of Cutter before the fork to keep radare2 as backend. Its goal is making an advanced, customizable and FOSS reverse-engineering platform while keeping the user experience at mind. The iaito is created by reverse engineers for reverse...
Siemens Solid Edge V2024 Heap Buffer Overflow Vulnerability (CNVD-2024-47909)
Solid Edge is a portfolio of software tools to address a variety of product development processes: 3D design, simulation, manufacturing and design management. Siemens Solid Edge V2024 suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute code in the...
CVE-2024-45709
SolarWinds Web Help Desk was susceptible to a local file read vulnerability. This vulnerability requires the software be installed on Linux and configured to use non-default development/test mode making exposure to the vulnerability very limited...
CVE-2024-45709 SolarWinds Web Help Desk Local File Read Vulnerability
SolarWinds Web Help Desk was susceptible to a local file read vulnerability. This vulnerability requires the software be installed on Linux and configured to use non-default development/test mode making exposure to the vulnerability very limited...
CVE-2024-45709 SolarWinds Web Help Desk Local File Read Vulnerability
SolarWinds Web Help Desk was susceptible to a local file read vulnerability. This vulnerability requires the software be installed on Linux and configured to use non-default development/test mode making exposure to the vulnerability very limited...
APSB24-98 : Security update available for Adobe PDFL SDK
Adobe has released an update for the Adobe PDF Library Software Development Kit SDK for Windows, Linux and macOS. Adobe PDFL SDK contains a set of functions for developing third-party solutions and workflows built upon the Adobe PDF standard. This update resolves a critical vulnerability that cou...
CVE-2024-52599
Tuleap is an open source suite to improve management of software developments and collaboration. In Tuleap Community Edition prior to version 16.1.99.50 and Tuleap Enterprise Edition prior to versions 16.1-4 and 16.0-7, a malicious user with the ability to create an artifact in a tracker with a...
CVE-2024-52599 Tuleap vulnerable to XSS in the Gantt chart of the tracker plugin
Tuleap is an open source suite to improve management of software developments and collaboration. In Tuleap Community Edition prior to version 16.1.99.50 and Tuleap Enterprise Edition prior to versions 16.1-4 and 16.0-7, a malicious user with the ability to create an artifact in a tracker with a...