Security Bulletin: A format string vulnerability has been identified in IBM Spectrum Scale packaged in IBM Elastic Storage System (CVE-2021-29740)

Summary A security vulnerability has been identified in all levels of IBM Elastic Storage System that could allow an attacker to execute arbirtary code in IBM Spectrum Scale file system. A fix for this vulnerability is available. Vulnerability Details CVEID: CVE-2021-29740 DESCRIPTION: IBM Spectr...

Security Bulletin: A format string security vulnerability has been identified in IBM Spectrum Scale (CVE-2021-29740)

Summary A security vulnerability has been identified in IBM Spectrum Scale file system that could allow an attacker to execute arbirtary code. A fix for this vulnerability is available. Vulnerability Details CVEID: CVE-2021-29740 DESCRIPTION: IBM Spectrum Scalefile system core component is affect...

CVE-2021-29740

IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 system core component is affected by a format string security vulnerability. An attacker could execute arbitrary code in the context of process memory, potentially escalating their system privileges and taking control over the...

CVE-2021-29740

IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 system core component is affected by a format string security vulnerability. An attacker could execute arbitrary code in the context of process memory, potentially escalating their system privileges and taking control over the...

CVE-2021-29740

CVE-2021-29740 affects IBM Spectrum Scale (5.0.0–5.0.5.6 and 5.1.0–5.1.0.3) and IBM Elastic Storage System variants, due to a format-string vulnerability in the system core component that could allow arbitrary code execution with root privileges. Remediation is to upgrade to recommended fixed lev...

CVE-2021-29740

IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 system core component is affected by a format string security vulnerability. An attacker could execute arbitrary code in the context of process memory, potentially escalating their system privileges and taking control over the...

openSUSE Security Update : mpv (openSUSE-2021-788)

This update for mpv fixes the following issues : - CVE-2021-30145: Fixed format string vulnerability allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file boo1186230 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

openSUSE: Security Advisory for mpv (openSUSE-SU-2021:0788-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for mpv (important)

openSUSE Security Update: Security update for mpv Announcement ID: openSUSE-SU-2021:0788-1 Rating: important References: 1186230 Cross-References: CVE-2021-30145 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for mpv fixes t...

DEBIAN-CVE-2021-30145

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file...

CVE-2021-30145

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file...

CVE-2021-30145

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file...

CVE-2021-30145

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file...

Format string

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file...

UBUNTU-CVE-2021-30145

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file...

CVE-2021-30145

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file...

CVE-2021-30145

CVE-2021-30145 describes a format string vulnerability in mpv up to version 0.33.0 that could enable code execution when a user opens a crafted m3u playlist file. Multiple sources (including NVD/NVD list and Gentoo/OpenSUSE advisories) corroborate the impact and advise upgrading mpv to a fixed re...

CVE-2021-30145

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file...

CVE-2021-30145

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file...

PT-2021-6514 · Tcl +3 · Tcl +3

Name of the Vulnerable Software and Affected Versions: Tcl version 8.6.11 Description: A format string vulnerability in the nmakehlp.c component of the Tcl programming language may allow code execution via a crafted file. This issue is related to insufficient processing of format strings, which...