12 matches found
Exploit for CVE-2024-2961
CVE-2026-22200: osTicket Arbitrary File Read to RCE...
📄 Magento Adobe Commerce 2.4.5-p7 Arbitrary File Read
Magento Adobe Commerce version 2.4.5-p7 suffers from an arbitrary file read vulnerability. ============================================================================================================================================= | Title : Magento Adobe Commerce 2.4.5-p7 arbitrary file read...
TencentOS Server 3: glibc (TSSA-2024:0134)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0134 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
Exploit for CVE-2024-2961
sectoolset -- Github安全相关工具集合 主要内容: 0x00 漏洞利用实战练习&CTF安全竞赛 0x01 安全扫描器 0x02 安全防守 0x03 渗透测试 0x04 漏洞库及利用工具(POC,EXP 0x05 二进制及代码分析工具 0x06 威胁情报&蜜罐 0x07 安全文档资料 0x10 AI&大模型安全 0x11 所有内容 乌云镜像 乌云镜像,已挂 乌云镜像,已挂 近期安全热点 CVE-2025-48384: Git子模块回车符CR解析注入可致RCE GitHub MCP漏洞:劫持MCP服务访问私有仓库数据 glibc iconv中的缓冲区溢出导致PHP...
glibc/iconv Vulnerability (CVE-2024-2961)
PMASA-2025-3 Announcement-ID: PMASA-2025-3 Date: 2025-01-21 Summary glibc/iconv Vulnerability CVE-2024-2961 Description There was a vulnerability found in glibc/iconv that could potentially affect phpMyAdmin under specific circumstances. By default, phpMyAdmin is not vulnerable, but since we use...
Important: glibc
Issue Overview: The iconv function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable. CVE-2024-2961...
The vulnerability of the iconv function in the glibc library, which allows a hacker to cause a service failure
The vulnerability of the iconv function in the glibc library is related to the lack of use of the assert function. This vulnerability allows a malicious actor to cause a service failure...
PT-2024-2991
The software that is vulnerable is the GNU C Library glibc versions 2.39 and older, specifically the iconv function when converting strings to the ISO-2022-CN-EXT character set. This vulnerability can be exploited through PHP-based web applications. The vulnerability is a buffer overflow in the...
MGASA-2021-0289 Updated glibc packages fix a security vulnerability
A vulnerability was found in the iconv program provided by glibc when it's invoked with the -c option. It can enter an infinite loop while parsing an invalid multi-byte sequence CVE-2016-10228...
glibc: Assertion failure in ISO-2022-JP-3 gconv module related to combining characters
A flaw was found in glibc's iconv functionality. This flaw allows an attacker capable of supplying a crafted sequence of characters to an application using iconv to convert from ISO-2022-JP-3 to cause an assertion failure. The highest threat from this vulnerability is to system availability...
The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier when processing invalid multi-byte input sequences in IBM1364 IBM1371 IBM1388 IBM1390 and IBM1399 encodings fails to advance the input state which could lead to an infinite loop in applications resulting in a denial of service a different vulnerability from CVE-2016-10228.
...
Updated glibc packages fix security vulnerability
Security fixes: - fix buffer overrun in EUC-KR conversion module bz 2497 CVE-2019-25013 - arm: CVE-2020-6096: Fix multiarch memcpy for negative length BZ 25620 - arm: CVE-2020-6096: fix memcpy and memmove for negative length BZ 25620 - iconv: Fix incorrect UCS4 inner loop bounds BZ 26923...