swiotlb: initialise restricted pool list_head when SWIOTLB_DYNAMIC=y

...

DEBIAN-CVE-2023-52790

In the Linux kernel, the following vulnerability has been resolved: swiotlb: fix out-of-bounds TLB allocations with CONFIGSWIOTLBDYNAMIC Limit the free list length to the size of the IO TLB. Transient pool can be smaller than IOTLBSEGSIZE, but the free list is initialized with the assumption that...

Whoc - A Container Image That Extracts The Underlying Container Runtime

A container image that extracts the underlying container runtime and sends it to a remote server. Poke at the underlying container runtime of your favorite CSP container platform! WhoC at Defcon 29 Cloud Village Azurescape - whoc-powered research, the first cross-account container takeover in the...

Directory Traversal

koa-static-cache is vulnerable to directory traversal attacks. The library does not check the path of the URL request, allowing attackers to use %2E%2E/ in its URL request to access any files from the server. This attack can only be executed if the application is in dynamic mode...

Hot Links SQL 3.x XSS vuln.

Hot Links SQL 3.x XSS vuln. Vuln. dicovered by : r0t Date: 5 dec. 2005 Orginal advisory:http://pridels.blogspot.com/2005/12/hot-links-sql-3x-xss-vuln.html vendor:http://www.mrcgiguy.com/hlsqldetails.shtml affected version:3.1.x and prior Product Description: irectory style index allows for easy...