The vulnerability of the nilfs2 component in the Linux operating system’s kernel, which allows a hacker to cause a service failure

The vulnerability of the nilfs2 component in the Linux operating system’s kernel is related to readout errors beyond the boundary in the nilfstypebymode function. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the wilc1000 component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the wilc1000 component in the Linux operating system arises due to synchronization errors when using a common resource in the wilcparsejoinbssparam function. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the usb-storage component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the usb-storage component in Linux operating systems is related to zero-division errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the nf_tables component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the nftables component in the Linux operating system’s kernel is related to resource management errors in the nftablesupdtable function. Exploiting this vulnerability can allow an attacker to cause a service failure...

ROS-20241119-02

Vulnerability of cxl/region components of Linux kernel is related to the use of uninitialized resource in the cxlregionattach function in drivers/cxl/core/region.c. Exploitation of the the vulnerability could allow an attacker to cause a denial of service A vulnerability in the tls component of t...

The vulnerability of the tpd12s015 component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the tpd12s015 component in the Linux operating system is related to resource management errors in the tpd12s015probe function. Exploiting this vulnerability can allow an attacker to cause a service failure...

squid security update

7:5.5-14.3 - Disable ESI support - Resolves: RHEL-65076 - CVE-2024-45802 squid: Denial of Service processing ESI response content 7:5.5-14.2 - Resolves: RHEL-64425 TCPMISSABORTED/100 erros when uploading 7:5.5-14.1 - Resolves: RHEL-62332 - Regression Transfer-encoding:chunked data is not sent to...

The vulnerability of the fsl-qdma component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the fsl-qdma component in the Linux operating system is related to memory release errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the f2fs component of the Linux operating system’s kernel, which allows a hacker to cause a service failure

The vulnerability of the f2fs component of the Linux operating system’s kernel arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Acrobat Reader PDF viewing and editing software is related to synchronization errors when using a common resource, allowing attackers to escalate their privileges.

The vulnerability of the Acrobat Reader PDF viewing and editing software is related to synchronization errors when using a common resource. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Windows Registry component of the Microsoft Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Windows Registry component of the Microsoft Windows operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Fortinet FortiClient protection mechanism, related to errors in processing relative paths, allows attackers to load arbitrary files into the system.

The vulnerability of the Fortinet FortiClient security device is related to errors in processing relative paths. Exploiting this vulnerability can allow attackers to load arbitrary files into the system...

DEBIAN-CVE-2024-10977

Client use of server error message in PostgreSQL allows a server not trusted under current SSL or GSS settings to furnish arbitrary non-NUL bytes to the libpq application. For example, a man-in-the-middle attacker could send a long error message that a human or screen-scraper user of psql mistake...

DEBIAN-CVE-2024-10976

Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change different rows from those intended. CVE-2023-2455 and CVE-2016-2193 fixed most interaction between row security and user ID changes. They missed cases where a subquery, WITH query, security invok...

Mageia: Security Advisory (MGASA-2024-0364)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerabilities of the s390/zcrypt components of the Linux operating system’s kernel allow attackers to gain elevated privileges within the system.

The vulnerability of the s390/zcrypt components in Linux operating systems is related to errors that occur after liberation. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

The vulnerability of the Linux operating system’s crypto kernel component, which allows a hacker to increase their privileges within the system

The vulnerability of the Linux operating system’s crypto kernel component is related to errors that occur after the release of the vulnerability. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

The vulnerability of the PhysHdr class constructor in the CryptoManager.cpp module of the database management system “Red Database” allows a hacker to trigger a database access error.

The vulnerability of the PhysHdr class constructor in the CryptoManager.cpp module of the database management system “Red Database” is related to the fact that in some cases, when switching the database to incremental backup mode, the connection to this database would fail. Exploiting this...

The vulnerability of Microsoft Exchange Server servers, related to errors in information representation by the user interface, allows attackers to perform spear-phishing attacks.

The vulnerability of Microsoft Exchange Server servers is related to errors in information representation by the user interface. Exploiting this vulnerability can allow attackers to carry out spear-phishing attacks...

The software used for creating and running NVIDIA Container Toolkit containers, as well as the NVIDIA GPU Operator resource management software, is vulnerable. This vulnerability allows attackers to compromise data integrity.

The vulnerability of the software for creating and running NVIDIA Container Toolkit containers, as well as the NVIDIA GPU Operator resource management software, is related to errors in processing symbolic links. Exploiting this vulnerability can allow an attacker to compromise data integrity...