ROS-20241204-01

A vulnerability in the libstub component of the Linux kernel is related to the use of an uninitialized resource in the uninitialized resource in the efifree function in drivers/firmware/efi/libstub/fdt.c. Exploitation of the of the vulnerability could allow an attacker to cause a denial of servic...

The vulnerability of the workqueue component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the workqueue component in the Linux operating system’s kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerabilities of the s390/qeth component of Linux operating system kernels, which allow a hacker to trigger a service failure

The vulnerability of the s390/qeth component of Linux operating system kernels is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

Cisco NX-OS Resource Management Errors (CVE-2013-1121)

The regex engine in the BGP implementation in Cisco NX-OS, when a complex regular expression is configured for inbound routes, allows remote attackers to cause a denial of service device reload via a crafted AS path set, aka Bug ID CSCuf49554. This plugin only works with Tenable.ot. Please visit...

The vulnerability of the stmmac component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the stmmac component in the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the mpt3sas component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the mpt3sas component in the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the TCP component in the Linux operating system’s kernel allows attackers to carry out attacks by replacing certain components.

The vulnerability of the TCP component in the Linux operating system’s kernel is related to errors in information representation by the user interface. Exploiting this vulnerability can allow an attacker to carry out an attack through substitution methods...

The vulnerability of the mm/slab components of the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the mm/slab components in the Linux operating system’s kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

Important: Red Hat Security Advisory: rhc-worker-playbook security update

An update for rhc-worker-playbook is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

firefox: thunderbird: Unhandled Exception in Add-on Signature Verification

The Mozilla Foundation's Security Advisory: The application can fail to account for exceptions thrown by the loadManifestFromFile method during add-on signature verification. This flaw is triggered by an invalid or unsupported extension manifest and could cause runtime errors that disrupt the...

The vulnerability of the ocfs2 component in the Linux operating system allows a hacker to gain elevated privileges within the system.

The vulnerability of the ocfs2 component in the Linux operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

The vulnerability of the nfsd component in the Linux operating system allows a hacker to gain elevated privileges within the system.

The vulnerability of the nfsd component in Linux operating systems is related to memory management errors after freeing memory. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

The vulnerability of the ethtool component in the Linux operating system’s kernel allows a hacker to gain elevated privileges within the system.

The vulnerability of the ethtool component in the Linux operating system’s kernel is related to memory-related errors after deallocation. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

The vulnerability of the websReadEvent() function in the microprogramming software for Tenda FH451, Tenda FH1201, Tenda FH1202, and Tenda FH1206 allows a hacker to trigger a service failure.

The vulnerability of the websReadEvent function in the microprogramming software for Tenda FH451, Tenda FH1201, Tenda FH1202, and Tenda FH1206 is related to pointer assignment errors. Exploiting this vulnerability could allow a malicious actor to cause service failure by sending specially crafted...

The vulnerability of the btrfs component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the btrfs component in Linux operating systems is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the ABB VPNI function in the S+ Control API of the software for management and monitoring of ABB Symphony Plus S+ Operations, S+ Engineering, and S+ Analyst allows a perpetrator to trigger a service failure.

The vulnerability of the ABB VPNI function in the S+ Control API of the ABB Symphony Plus S+ Operations, S+ Engineering, and S+ Analyst software for management and monitoring systems is related to errors in processing relative paths. Exploiting this vulnerability can allow attackers to cause...

firefox: thunderbird: Unhandled Exception in Add-on Signature Verification

The Mozilla Foundation's Security Advisory: The application can fail to account for exceptions thrown by the loadManifestFromFile method during add-on signature verification. This flaw is triggered by an invalid or unsupported extension manifest and could cause runtime errors that disrupt the...

firefox: thunderbird: Unhandled Exception in Add-on Signature Verification

The Mozilla Foundation's Security Advisory: The application can fail to account for exceptions thrown by the loadManifestFromFile method during add-on signature verification. This flaw is triggered by an invalid or unsupported extension manifest and could cause runtime errors that disrupt the...

The vulnerability of the Intel HID Event Filter driver installer in Intel NUC laptops allows a hacker to gain increased privileges.

The vulnerability of the Intel HID Event Filter driver installer for Intel NUC laptops is related to inherited permission errors. Exploiting this vulnerability can allow attackers to gain increased privileges...

The vulnerability of the Linux operating system’s crypto kernel component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s crypto kernel component is related to errors in resource management in the pcryptaeadencrypt function. Exploiting this vulnerability can allow an attacker to cause a service failure...