PT-2025-8015 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version Description: A race condition exists in the Linux kernel, specifically in the rxrpc exit net function. This issue can lead to a use-after-free error when the peer keepalive timer is still armed...

The vulnerability of the Exiv2 metadata management library, related to the execution of a loop with an unreachable exit condition, allows a hacker to cause a service failure.

The vulnerability of the Exiv2 media metadata management library lies in the execution of a loop with an unreachable exit condition. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a specially created image file...

CVE-2022-0667

When the vulnerability is triggered the BIND process will exit. BIND 9.18.0...

DEBIAN-CVE-2022-0667

When the vulnerability is triggered the BIND process will exit. BIND 9.18.0...

CVE-2022-0667

When the vulnerability is triggered the BIND process will exit. BIND 9.18.0...

CVE-2022-0667

When the vulnerability is triggered the BIND process will exit. BIND 9.18.0...

CVE-2022-0667

CVE-2022-0667 affects ISC BIND 9.18.0 where the recursive client backstop lifetime timer can trigger an assertion failure, causing BIND to terminate. This enables a remote denial-of-service and, potentially, cache poisoning. Upstream fixes are in 9.18.1 (and related patches).

GSD-2022-1000742 netfilter: nf_tables: unregister flowtable hooks on netns exit

netfilter: nftables: unregister flowtable hooks on netns exit This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.12 by commit...

CVE-2022-0667

When the vulnerability is triggered the BIND process will exit. BIND 9.18.0...

CVE-2022-0667

When the vulnerability is triggered the BIND process will exit. BIND 9.18.0...

PT-2025-31761

Name of the Vulnerable Software and Affected Versions iperf versions prior to 3.19.1 Description The software contains a flaw in iperf auth.c where a malformed authentication attempt causes a Base64Decode assertion failure, leading to application termination. Recommendations Update to version...

Linux/x86_64 - sudo enumeration Shellcode (245 bytes)

sudo vulnerability enumeration shellcode / sudo vulnerability enumeration shellcode xordynamic - Linux/x8664 Author : Kağan Çapar contact: email protected shellcode len : 245 bytes compilation: gcc -fno-stack-protector -z execstack .c -o "disasssemble only main." 0000000000001179 : 1179: 55 push...

RUSTSEC-2022-0103 Incorrect signature verification on gzip-compressed install images

The coreos-installer is a program to fetch a disk image and stream it to a target disk. During the installation process the installation image gpg signatures are verified. The signature verification can be bypassed for gzip-compressed images due to a flaw in gzip coreos-installer wrapper. When th...

CVE-2022-24356

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader Foxit reader 11.0.1.0719 macOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

DEBIAN-CVE-2021-4093

A flaw was found in the KVM's AMD code for supporting the Secure Encrypted Virtualization-Encrypted State SEV-ES. A KVM guest using SEV-ES can trigger out-of-bounds reads and writes in the host kernel via a malicious VMGEXIT for a string I/O instruction for example, outs or ins using the exit...

Solaris/SPARC - setuid(0) + chmod (/bin/ksh) + exit(0) Shellcode

/ sparcsolarischmod.c - Solaris/SPARC chmod shellcode Copyright c 2022 Marco Ivaldi Solaris/SPARC setuid/chmod/exit shellcode. Tested on: SunOS 5.10 GenericVirtual sun4u sparc SUNW,SPARC-Enterprise / char sc = / Solaris/SPARC chmod shellcode 12 + 32 + 20 = 64 bytes / / setuid0 / "\x90\x08\x3f\xff...

Loop with Unreachable Exit Condition ('Infinite Loop')

An issue was discovered in the /api/connector endpoint handler in Yubico yubihsm-connector before 3.0.1 in YubiHSM SDK before 2021.04. The handler does not validate the length of the request, which can lead to a state where yubihsm-connector becomes stuck in a loop waiting for the YubiHSM to send...

The vulnerability of the Django web application framework, related to the execution of a loop with an unavailable exit condition, allows a hacker to perform a denial-of-service attack.

The vulnerability of the Django web application framework lies in the execution of a loop with an unreachable exit condition. Exploiting this vulnerability allows a remote attacker to perform a denial-of-service attack...

USN-5265-1 linux, linux-aws, linux-aws-5.11, linux-aws-5.13, linux-azure-5.11, linux-gcp, linux-gcp-5.11, linux-hwe-5.13, linux-kvm, linux-oem-5.13, linux-oracle, linux-oracle-5.11, linux-raspi vulnerabilities

Jeremy Cline discovered a use-after-free in the nouveau graphics driver of the Linux kernel during device removal. A privileged or physically proximate attacker could use this to cause a denial of service system crash. CVE-2020-27820 It was discovered that the Bluetooth subsystem in the Linux...

The vulnerability of the Thunderbird email client’s user interface, as well as the Firefox and Firefox ESR browsers, stems from incorrect restrictions on the number of visible layers or frames. This allows attackers to exploit these incorrect restrictions to perform unauthorized actions.

The vulnerability of the Thunderbird email client’s user interface, as well as the Firefox and Firefox ESR browsers, is related to an incorrect limitation on the number of visible layers or frames, due to a mistake in adjusting the size of the pop-up window when requesting full-screen access...