Eyes Of Network (EON) <= 5.3 RCE Vulnerability

Eyes Of Network EON is prone to a remote code execution RCE vulnerability on the mail options configuration page. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Ubuntu: Security Advisory (USN-3323-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated libgsasl packages fix security vulnerability

GNU SASL libgsasl server-side read-out-of-bounds with malicious authenticated GSS-API client. CVE-2022-2469...

CVE-2022-38533

In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfdgetl32 when called from the stripmain function in strip-new via a crafted file...

CVE-2022-38533

In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfdgetl32 when called from the stripmain function in strip-new via a crafted file...

CVE-2022-38533

In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfdgetl32 when called from the stripmain function in strip-new via a crafted file...

CVE-2022-38533

CVE-2022-38533 affects GNU binutils prior to 2.40. A heap-buffer-overflow in the error function bfd_getl32, triggered when binutils is used by strip-new/strip_main on a crafted file, can lead to a crash and, in some disclosures, potential code execution. The issue is documented across multiple co...

SUSE SLES12 Security Update : glibc (SUSE-SU-2022:2886-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2886-1 advisory. - resquery in libresolv in glibc before 2.25 allows remote attackers to cause a denial of service NULL pointer dereference and process crash...

DEBIAN-CVE-2021-3998

A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...

DEBIAN-CVE-2021-4209

A NULL pointer dereference flaw was found in GnuTLS. As Nettle's hash update functions internally call memcpy, providing zero-length input may cause undefined behavior. This flaw leads to a denial of service after authentication in rare circumstances...

DEBIAN-CVE-2021-3999

A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd may lead to memory corruption when the size of the buffer is exactly 1. A local attacker who can control the input buffer and size passed to getcwd in a setuid program could use this flaw to potentially execute...

CVE-2021-4209

A NULL pointer dereference flaw was found in GnuTLS. As Nettle's hash update functions internally call memcpy, providing zero-length input may cause undefined behavior. This flaw leads to a denial of service after authentication in rare circumstances...

PT-2022-5380

Name of the Vulnerable Software and Affected Versions GNU Libtasn1 versions prior to 4.19.0 Description The issue is related to an off-by-one error in the asn1 encode simple der function of the Libtasn1 library. This can be exploited by a remote attacker to disclose protected information or cause...

CVE-2021-3999

A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd may lead to memory corruption when the size of the buffer is exactly 1. A local attacker who can control the input buffer and size passed to getcwd in a setuid program could use this flaw to potentially execute...

Security Bulletin: GNU C library (glibc) vulnerability affects IBM/Cisco Switches and Directors (CVE-2015-0235)

Summary GNU C library glibc vulnerability that has been referred to as GHOST affects BM/Cisco Switches and Directors Vulnerability Details CVEID:CVE-2015-0235 DESCRIPTION: The gethostbyname functions of the GNU C Library glibc are vulnerable to a buffer overflow. By sending a specially crafted, b...

The vulnerability of the schroot package in the Debian GNU/Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the schroot package in the Debian GNU/Linux operating system is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to cause a service failure...

OTFCC code issue vulnerability

OTFCC is Caryll open source a C library and utilities. It is used to parse and write OpenType font files. OTFCC version 0.10.4 contains a code issue vulnerability that stems from a lack of proper validation of user-supplied data in the /x8664-linux-gnu/libc.so.6 0xbb384 file, which can be exploit...

GNU LibreDWG 资源管理错误漏洞

GNU LibreDWG is a GNU community C library for working with DWG files. A resource management error vulnerability exists in LibreDWG version v0.12.4.4608, which stems from a post-release reuse condition in bitcopychain...

CVE-2022-2469

GNU SASL libgsasl server-side read-out-of-bounds with malicious authenticated GSS-API client...

GNU Binutils 安全漏洞

GNU Binutils is a set of tools for working with binary files. A memory leak vulnerability exists in GNU Binutils, which originates from the function findabstractinstance in dwarf2.c contains a memory leak that can be exploited by an attacker to cause the program to crash...