CVE-2021-46195

A flaw was discovered in the GNU libiberty library within the demanglepath function in rust-demangle.c, as distributed in the GNU Compiler Collection GCC. This flaw allows a crafted symbol to cause stack memory to be exhausted, leading to a crash...

GLSA-202107-28 : GNU Chess: Buffer overflow

The remote host is affected by the vulnerability described in GLSA-202107-28 GNU Chess: Buffer overflow The cmdpgnload and cmdpgnreplay functions in cmd.cc in GNU Chess to not sufficiently validate PGN file input, potentially resulting in a buffer overflow. Impact : A remote attacker could entice...

Denial of Service in Onionshare

Between September 26, 2021 and October 8, 2021, Radically Open Security conducted a penetration test of OnionShare 2.4, funded by the Open Technology Fund's Red Team lab. - Vulnerability ID: OTF-012 - Vulnerability type: Denial of Service - Threat level: Moderate Description: The receive mode...

Fedora: Security Advisory for kernel (FEDORA-2022-a23dd56848)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

encoding.c in GNU Screen through 4.8.0 allows remote attackers to cause a denial of service (invalid write access and application crash) or possibly have unspecified other impact via a crafted UTF-8 character sequence.

...

CVE-2022-23219

A stack based buffer-overflow vulnerability was found in the deprecated compatibility function clntcreate in the sunrpc's clntgen.c module of the GNU C Library aka glibc through 2.34. This vulnerability copies its hostname argument onto the stack without validating its length, which may result in...

WordPress Download Monitor Plugin < 4.4.5 SQLi Vulnerability

The WordPress plugin Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...

GNU Recutils code issue vulnerability

GNU Recutils is a GNU community tool and library for accessing recfiles plain text databases. a security vulnerability exists in GNU Recutils, which stems from an untrusted pointer dereference in recdbdestroy in rec-db.c of GNU Recutils v1.8.90, which an attacker could exploit the vulnerability t...

GNU Recutils Resource Management Error Vulnerability (CNVD-2022-06489)

GNU Recutils is a GNU community tool and library for accessing recfiles plain text databases. GNU Recutils has security vulnerabilities that can be exploited by attackers to cause segmentation errors or application crashes...

GNU Recutils Resource Management Error Vulnerability

GNU Recutils is a GNU community tool and library for accessing recfiles plain text databases. GNU Recutils has security vulnerabilities that can be exploited by attackers to cause segmentation errors or application crashes...

The vulnerability in the `client_send_params` function of the `lib/ext/pre_shared_key.c` component of the Transport Layer Security library GnuTLS, related to the use of memory after it is freed, allows a attacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the clientsendparams function in the lib/ext/presharedkey.c component of the Transport Layer Security library GnuTLS is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to gain access to confidential data, compromise its...

Registry-Spy - Cross-platform Registry Browser For Raw Windows Registry Files

Registry Spy is a free, open-source cross-platform Windows Registry viewer. It is a fast, modern, and versatile explorer for raw registry files. Features include: Fast, on-the-fly parsing means no upfront overhead Open multiple hives at a time Searching Hex viewer Modification timestamps...

CVE-2021-46022

An Use-After-Free vulnerability in recmsetelemdestroy at rec-mset.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

CVE-2021-46021

An Use-After-Free vulnerability in recrecorddestroy at rec-record.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

CVE-2021-46019

An untrusted pointer dereference in recdbdestroy at rec-db.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

CVE-2021-46021

An Use-After-Free vulnerability in recrecorddestroy at rec-record.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

CVE-2021-46022

An Use-After-Free vulnerability in recmsetelemdestroy at rec-mset.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

DEBIAN-CVE-2021-46019

An untrusted pointer dereference in recdbdestroy at rec-db.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

DEBIAN-CVE-2021-46195

GCC v12.0 was discovered to contain an uncontrolled recursion via the component libiberty/rust-demangle.c. This vulnerability allows attackers to cause a Denial of Service DoS by consuming excessive CPU and memory resources...

DEBIAN-CVE-2021-46021

An Use-After-Free vulnerability in recrecorddestroy at rec-record.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...