16 matches found
OpenClaw 安全漏洞
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a command execution vulnerability that can be exploited by an attacker to bypass expected execution limits...
USN-4890-1: Linux kernel vulnerabilities | Cloud Foundry
Severity High Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Description Piotr Krysiuk discovered that the BPF subsystem in the Linux kernel did not properly compute a speculative execution limit on pointer arithmetic in some situations. A local attacker could use this to expose...
USN-4887-1 linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gke-5.3, linux-gke-5.4, linux-gkeop, linux-gkeop-5.4, linux-hwe, linux-hwe-5.4, linux-hwe-5.8, linux-kvm, linux-oem-5.10, linux-oem-5.6, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-raspi2-5.3 vulnerabilities
De4dCr0w of 360 Alpha Lab discovered that the BPF verifier in the Linux kernel did not properly handle mod32 destination register truncation when the source register was known to be 0. A local attacker could use this to expose sensitive information kernel memory or possibly execute arbitrary code...
openSUSE Security Update : nasm (openSUSE-2020-954)
This update for nasm fixes the following issues : nasm was updated to version 2.14.02. This allows building of Mozilla Firefox 78ESR and also contains lots of bugfixes, security fixes and improvements. - Fix crash due to multiple errors or warnings during the code generation pass if a list file i...
openSUSE Security Update : nasm (openSUSE-2020-952)
This update for nasm fixes the following issues : nasm was updated to version 2.14.02. This allows building of Mozilla Firefox 78ESR and also contains lots of bugfixes, security fixes and improvements. - Fix crash due to multiple errors or warnings during the code generation pass if a list file i...
Security update for nasm (moderate)
openSUSE Security Update: Security update for nasm Announcement ID: openSUSE-SU-2020:0952-1 Rating: moderate References: 1084631 1086186 1086227 1086228 1090519 1090840 1106878 1107592 1107594 1108404 1115758 1115774 1115795 1173538 Cross-References: CVE-2018-1000667 CVE-2018-10016 CVE-2018-10254...
SUSE SLED15 / SLES15 Security Update : nasm (SUSE-SU-2020:1843-1)
This update for nasm fixes the following issues : nasm was updated to version 2.14.02. This allows building of Mozilla Firefox 78ESR and also contains lots of bugfixes, security fixes and improvements. Fix crash due to multiple errors or warnings during the code generation pass if a list file is...
CVE-2018-17191
Apache NetBeans incubating 9.0 NetBeans Proxy Auto-Configuration PAC interpretation is vulnerable for remote command execution RCE. Using the nashorn script engine the environment of the javascript execution for the Proxy Auto-Configuration leaks privileged objects, that can be used to circumvent...
DEBIAN-CVE-2018-17191
Apache NetBeans incubating 9.0 NetBeans Proxy Auto-Configuration PAC interpretation is vulnerable for remote command execution RCE. Using the nashorn script engine the environment of the javascript execution for the Proxy Auto-Configuration leaks privileged objects, that can be used to circumvent...
CVE-2018-17191
Apache NetBeans incubating 9.0 NetBeans Proxy Auto-Configuration PAC interpretation is vulnerable for remote command execution RCE. Using the nashorn script engine the environment of the javascript execution for the Proxy Auto-Configuration leaks privileged objects, that can be used to circumvent...
Adobe Reader/Acrobat JavaScript API Execution Limit Bypass Vulnerability (CNVD-2015-04647)
Adobe Reader Acrobat is the United States Adobe developed a very popular and excellent PDF document reading software. An execution limit bypass vulnerability exists in the Adobe Reader/Acrobat JavaScript API that allows attackers to bypass JavaScript API execution limits via unknown vectors...
Adobe Reader/Acrobat JavaScript API Execution Limit Bypass Vulnerability (CNVD-2015-04650)
Adobe Reader Acrobat is the United States Adobe developed a very popular and excellent PDF document reading software. An execution limit bypass vulnerability exists in the Adobe Reader/Acrobat JavaScript API that allows attackers to bypass JavaScript API execution limits via unknown vectors...
Adobe Reader/Acrobat JavaScript API Execution Limit Bypass Vulnerability (CNVD-2015-04651)
Adobe Reader Acrobat is the United States Adobe developed a very popular and excellent PDF document reading software. An execution limit bypass vulnerability exists in the Adobe Reader/Acrobat JavaScript API that allows attackers to bypass JavaScript API execution limits via unknown vectors...
Adobe Reader/Acrobat Javascript API Execution Limit Bypass Vulnerability (CNVD-2015-03083)
Adobe Reader/Acrobat are popular applications for processing PDF files. A vulnerability exists in Adobe Reader/Acrobat's handling of special PDF files, which allows remote attackers to exploit the vulnerability to construct malicious files and trick users into parsing them, which can bypass...
Adobe Reader/Acrobat Javascript API Execution Limit Bypass Vulnerability (CNVD-2015-03084)
Adobe Reader/Acrobat are popular applications for processing PDF files. A vulnerability exists in Adobe Reader/Acrobat's handling of special PDF files, which allows remote attackers to exploit the vulnerability to construct malicious files and trick users into parsing them, which can bypass...
Adobe Reader/Acrobat Javascript API Execution Limit Bypass Vulnerability (CNVD-2015-03148)
Adobe Reader/Acrobat are popular applications for processing PDF files. A vulnerability exists in Adobe Reader/Acrobat's handling of special PDF files, which allows remote attackers to exploit the vulnerability to construct malicious files and trick users into parsing them, which can bypass...