666 matches found
The vulnerability of xkbevd, caused by segmentation errors, allows a hacker to trigger a service failure.
The vulnerability of xkbevd is caused by segmentation errors. Exploiting this vulnerability allows an attacker to cause a service failure for the daemon by entering a specially crafted sequence of data into the command line...
openSUSE: Security Advisory for screen (openSUSE-SU-2019:1485-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : screen (openSUSE-2019-1485)
This update for screen fixes the following issues : Security issue fixed : - CVE-2015-6806: Fixed a stack overflow due to deep recursion bsc944458. Non-security issue fixed : - Fixed segmentation faults related to altscreen and resizing screen bsc1130831. This update was imported from the...
Security update for screen (moderate)
openSUSE Security Update: Security update for screen Announcement ID: openSUSE-SU-2019:1485-1 Rating: moderate References: 1130831 944458 Cross-References: CVE-2015-6806 Affected Products: openSUSE Leap 42.3 An update that solves one vulnerability and has one errata is now available. Description:...
SUSE SLED12 / SLES12 Security Update : screen (SUSE-SU-2019:1354-1)
This update for screen fixes the following issues : Security issue fixed : CVE-2015-6806: Fixed a stack overflow due to deep recursion bsc944458. Non-security issue fixed: Fixed segmentation faults related to altscreen and resizing screen bsc1130831. Note that Tenable Network Security has extract...
SUSE-SU-2019:1354-1 Security update for screen
This update for screen fixes the following issues: Security issue fixed: - CVE-2015-6806: Fixed a stack overflow due to deep recursion bsc944458. Non-security issue fixed: - Fixed segmentation faults related to altscreen and resizing screen bsc1130831...
hardware: Microarchitectural Fill Buffer Data Sampling (MFBDS)
A flaw was found in the implementation of the "fill buffer", a mechanism used by modern CPUs when a cache-miss is made on L1 CPU cache. If an attacker can generate a load operation that would create a page fault, the execution will continue speculatively with incorrect data from the fill buffer...
hardware: Microarchitectural Fill Buffer Data Sampling (MFBDS)
A flaw was found in the implementation of the "fill buffer", a mechanism used by modern CPUs when a cache-miss is made on L1 CPU cache. If an attacker can generate a load operation that would create a page fault, the execution will continue speculatively with incorrect data from the fill buffer...
hardware: Microarchitectural Fill Buffer Data Sampling (MFBDS)
A flaw was found in the implementation of the "fill buffer", a mechanism used by modern CPUs when a cache-miss is made on L1 CPU cache. If an attacker can generate a load operation that would create a page fault, the execution will continue speculatively with incorrect data from the fill buffer...
hardware: Microarchitectural Fill Buffer Data Sampling (MFBDS)
A flaw was found in the implementation of the "fill buffer", a mechanism used by modern CPUs when a cache-miss is made on L1 CPU cache. If an attacker can generate a load operation that would create a page fault, the execution will continue speculatively with incorrect data from the fill buffer...
hardware: Microarchitectural Fill Buffer Data Sampling (MFBDS)
A flaw was found in the implementation of the "fill buffer", a mechanism used by modern CPUs when a cache-miss is made on L1 CPU cache. If an attacker can generate a load operation that would create a page fault, the execution will continue speculatively with incorrect data from the fill buffer...
The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser allows a hacker to execute arbitrary code.
The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser is related to errors in memory object handling. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
CVE-2019-7149
A heap-based buffer over-read was discovered in the function readsrclines in dwarfgetsrclines.c in libdw in elfutils 0.175. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by eu-nm...
CVE-2019-7147
A buffer over-read exists in the function crc64ib in crc64.c in nasmlib in Netwide Assembler NASM 2.14rc16. A crafted asm input can cause segmentation faults, leading to denial-of-service...
Null pointer dereference
A NULL pointer dereference was discovered in wasm::WasmBinaryBuilder::processFunctions in wasm/wasm-binary.cpp when calling wasm::WasmBinaryBuilder::getFunctionIndexName in Binaryen 1.38.22. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by wasm-opt...
CVE-2019-7152
A heap-based buffer over-read was discovered in wasm::WasmBinaryBuilder::processFunctions in wasm/wasm-binary.cpp when calling wasm::WasmBinaryBuilder::getFunctionIndexName in Binaryen 1.38.22. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by wasm-op...
CVE-2019-7147
A buffer over-read exists in the function crc64ib in crc64.c in nasmlib in Netwide Assembler NASM 2.14rc16. A crafted asm input can cause segmentation faults, leading to denial-of-service...
CVE-2019-7147
A buffer over-read exists in the function crc64ib in crc64.c in nasmlib in Netwide Assembler NASM 2.14rc16. A crafted asm input can cause segmentation faults, leading to denial-of-service...
CVE-2019-7151
A NULL pointer dereference was discovered in wasm::Module::getFunctionOrNull in wasm/wasm.cpp in Binaryen 1.38.22. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by wasm-opt...
CVE-2019-7153
A NULL pointer dereference was discovered in wasm::WasmBinaryBuilder::processFunctions in wasm/wasm-binary.cpp when calling wasm::WasmBinaryBuilder::getFunctionIndexName in Binaryen 1.38.22. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by wasm-opt...