Fallback handlers can trick users into calling functions of the AmbireAccount contract

Lines of code Vulnerability details Fallback handlers can trick users into calling functions of the AmbireAccount contract Selector clashing can be used to trick users into calling base functions of the wallet. Impact Fallback handlers provide extensibility to the Ambire wallet. The main idea her...

rebindMultiA - Tool To Perform a Multiple A Record Rebind Attack

rebindMultiA is a tool to perform a Multiple A Record rebind attack. rebindmultia.com is a domain that I've set up to assist with these attacks. It makes every IP its own authoritative nameserver for the domain IP.ns.rebindmultia.com. For example, 13.33.33.37.ns.rebindmultia.com's authoritative...

kernel: net/sched: fix netdevice reference leaks in attach_default_qdiscs()

In the Linux kernel, the following vulnerability has been resolved: net/sched: fix netdevice reference leaks in attachdefaultqdiscs In attachdefaultqdiscs, if a dev has multiple queues and queue 0 fails to attach qdisc because there is no memory in attachonedefaultqdisc. Then dev-qdisc will be...

kernel: net: fix refcount bug in sk_psock_get (2)

In the Linux kernel, the following vulnerability has been resolved: net: fix refcount bug in skpsockget 2 Syzkaller reports refcount bug as follows: ------------ cut here ------------ refcountt: saturated; leaking memory. WARNING: CPU: 1 PID: 3605 at lib/refcount.c:19...

kernel: driver core: fix potential deadlock in __driver_attach

In the Linux kernel, the following vulnerability has been resolved: driver core: fix potential deadlock in driverattach In driverattach function, There are also AA deadlock problem, like the commit b232b02bf3c2 "driver core: fix deadlock in deviceattach". stack like commit b232b02bf3c2 "driver...

kernel: tcp: Fix a data-race around sysctl_tcp_ecn_fallback.

In the Linux kernel, the following vulnerability has been resolved: tcp: Fix a data-race around sysctltcpecnfallback. While reading sysctltcpecnfallback, it can be changed concurrently. Thus, we need to add READONCE to its reader...

PT-2025-25905 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.18.0 Description: A refcount bug in the Linux kernel has been resolved. The issue occurs during the SMC fallback process in the connect syscall, where the kernel replaces TCP with SMC and sets the clcsk-sk use...

Mitigation Confirmed for Mitigation of M-05: See comments

Mitigated issue M-05: Missing derivative limit and deposit availability checks will revert the whole stake function The issue was that stake calls deposit on each derivative without considering certain conditions under which some deposit might revert. There is an overlap between this issue and...

Hardcoded credentials

In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed. A targeted network sniffing attack can lead to a disclosure of sensitive information. Only users who have Access Experimental Features enabled and...

CVE-2023-1802 In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed

In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed. A targeted network sniffing attack can lead to a disclosure of sensitive information. Only users who have Access Experimental Features enabled and...

SUSE CVE-2023-28835

Nextcloud server is an open source home cloud implementation. In affected versions the generated fallback password when creating a share was using a weak complexity random number generator, so when the sharer did not change it the password could be guessable to an attacker willing to brute force...

The vulnerability of the `put_epel_hv_fallback` function in the `fallback-motion.cc` component of the h.265 Libde265 codec implementation allows a perpetrator to trigger a service failure.

The vulnerability of the putepelhvfallback function in the fallback-motion.cc component of the h.265 Libde265 codec implementation is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow a remote attacker to cause service failures...

CVE-2023-21024

In maybeFinish of FallbackHome.java, there is a possible delay of lockdown screen due to logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

The vulnerability of the put_unweighted_pred_16_fallback function (fallback-motion.cc) in the h.265 video codec implementation by libde265 allows a perpetrator to trigger a service failure.

The vulnerability of the putunweightedpred16fallback function in the fallback-motion.cc implementation of the h.265 video codec library libde265 is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to trigger a Denial-of-Service attack...

The vulnerability of the `put_weighted_pred_8_fallback` function (fallback-motion.cc) in the implementation of the h.265 Libde265 video codec allows a perpetrator to trigger a service failure.

The vulnerability of the putweightedpred8fallback function in the fallback-motion.cc implementation of the h.265 Libde265 codec is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to trigger a service failure using a specially created input file...

DEBIAN-CVE-2023-24755

libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the putweightedpred8fallback function at fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input file...

CVE-2023-24755

libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the putweightedpred8fallback function at fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input file...

UBUNTU-CVE-2023-24757

libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the putunweightedpred16fallback function at fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input file...

UBUNTU-CVE-2023-24755

libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the putweightedpred8fallback function at fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input file...

libde265 代码问题漏洞

Libde265 is a German h.265 video codec. A security vulnerability exists in libde265 version v1.0.10, which stems from a NULL pointer dereference issue found in the putweightedpred8fallback method of the fallback-motion.cc file...