OESA-2022-1764 lua security update

Lua is a powerful, efficient, lightweight, embeddable scripting language. It supports procedural programming, object-oriented programming, functional programming, data-driven programming, and data description. Security Fixes: An issue in the component luaGrunerror of Lua v5.4.4 and below leads to...

Vulnerability of the Oracle Database - Enterprise Edition RDBMS Security component of the Oracle Database Server system, which allows a perpetrator to cause service interruptions.

The vulnerability of the Oracle Database – Enterprise Edition RDBMS Security component of the Oracle Database Server is related to resource release errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using the Oracle Net protocol...

The vulnerability of the microprogramming software in the integrated facial authentication module of Intel RealSense ID Solution F450 allows a intruder to disclose protected information.

The vulnerability of the microprogramming software in the integrated facial authentication module of Intel RealSense ID Solution F450 is related to initialization errors. Exploiting this vulnerability can allow attackers to disclose protected information...

The vulnerability of the Oracle Solaris operating system’s kernel, which allows a hacker to trigger a service failure

The vulnerability of the Oracle Solaris operating system’s kernel is related to resource release errors. Exploiting this vulnerability can allow an attacker to cause service failures...

Vulnerability of the Server component: The stored procedures of the Oracle MySQL Server database management system, which allow attackers to cause service interruptions.

The vulnerability of the Server component – the stored procedure in the Oracle MySQL Server database management system – is related to resource release errors. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL protocol...

The vulnerability of the Remote Administration Daemon component for operating systems based on Oracle Solaris allows a hacker to trigger a maintenance failure.

The vulnerability of the Remote Administration Daemon component for operating systems based on Oracle Solaris is related to errors in resource release. Exploiting this vulnerability could allow a malicious actor to cause service interruptions through various network protocols...

Vulnerability of the Server component of the Oracle MySQL Server, a database management system in the Federated system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component in the Oracle Database Management System involves errors related to resource release. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL protocol...

Vulnerability of the Server component: The Optimizer component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component of the database management system’s optimizer is related to resource release errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using the MySQL protocol...

Vulnerability of the Server component: The Optimizer component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component of the database management system’s optimizer is related to resource release errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using the MySQL protocol...

The vulnerability of the SMB Server component in Oracle Solaris allows a hacker to trigger a service failure.

The vulnerability of the SMB Server component in Oracle Solaris relates to resource release errors. Exploiting this vulnerability can allow an attacker to cause service failures...

PT-2022-3774 · Oracle +8 · Mysql Server +7

Name of the Vulnerable Software and Affected Versions: Oracle MySQL Server versions 8.0.29 and prior Description: The issue is related to errors in resource release in the encryption component of the Oracle MySQL Server system. It allows a remote attacker to cause a denial of service using the...

PT-2022-3779 · Oracle +1 · Mysql Shell +1

Name of the Vulnerable Software and Affected Versions: MySQL Shell versions 8.0.28 and prior Description: The issue is related to resource release errors in the Oracle MySQL Shell component. It may allow an attacker to cause a denial of service. The exploitation requires an unauthenticated attack...

riscv-isa-sim 安全漏洞

riscv-isa-sim is a RISC-V ISA simulator. A security vulnerability exists in riscv-isa-sim that stems from an incorrect implementation of exception prioritization when accessing memory...

The vulnerabilities of Firefox browsers, Firefox ESR, and the email client Thunderbird, related to errors during initialization of variables, allow attackers to trigger a service failure.

The vulnerabilities of Firefox browsers, Firefox ESR, and the email client Thunderbird are related to errors during initialization. Exploiting these vulnerabilities can allow a malicious actor to trigger service interruptions by using a specially created message...

The vulnerability of the netback driver for Linux operating systems allows a hacker to trigger a service failure.

The vulnerability of the netback driver for Linux operating systems is related to resource release errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

[SECURITY] Fedora 35 Update: golang-github-pelletier-toml-1.9.4-2.fc35

Go-toml provides the following features for using data parsed from TOML documents: - Load TOML documents from files and string data - Easily navigate TOML structure using Tree - Mashaling and unmarshaling to and from data structures - Line & column position data for all parsed elements - Query...

Kubeaudit - Tool To Audit Your Kubernetes Clusters Against Common Security Controls

kubeaudit is a command line tool and a Go package to audit Kubernetes clusters for various different security concerns, such as: run as non-root use a read-only root filesystem drop scary capabilities, don't add new ones don't run privileged and more! tldr.kubeaudit makes sure you deploy secure...

Upgraded Q -> M from 358 [1657932899986]

Judge has assessed an item in Issue 358 as Medium risk. The relevant finding follows: --- The text was updated successfully, but these errors were encountered: All reactions...

Upgraded Q -> M from 316 [1657933321396]

Judge has assessed an item in Issue 316 as Medium risk. The relevant finding follows: --- The text was updated successfully, but these errors were encountered: All reactions...

Upgraded Q -> M from 279 [1657955636898]

Judge has assessed an item in Issue 279 as Medium risk. The relevant finding follows: --- The text was updated successfully, but these errors were encountered: All reactions...