CVE-2021-46022

GNU Recutils v1.8.90 contains a Use-After-Free in rec_mset_elem_destroy() (rec-mset.c) that can cause a segmentation fault or crash. Connected sources identify this CVE as affecting Recutils and reference vendor advisories (e.g., Fedora/Ubuntu) and patches in newer packages (e.g., recutils 1.9.x)...

GNU Recutils 资源管理错误漏洞

GNU Recutils is a GNU community tool and library for accessing recfiles plain text databases. GNU Recutils has security vulnerabilities that can be exploited by attackers to cause segmentation errors or application crashes...

CVE-2022-23218

Summary: CVE-2022-23218 (glibc) is a stack-based buffer overflow in the sunrpc path handling function svcunix_create, allowing potential denial of service or arbitrary code execution if a stack protector is not present. The issue affects glibc up to version 2.34 per the description. Multiple conn...

CVE-2022-23218

The deprecated compatibility function svcunixcreate in the sunrpc module of the GNU C Library aka glibc through 2.34 copies its path argument on the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or if an application is not...

glibc 安全漏洞

glibc GNU C Library is the C standard library implemented by the GNU Project. A security vulnerability exists in the GNU C Library also known as glibc, which stems from the use of the deprecated compatibility function svcunix create in the sunrpc module to copy its path parameter onto the stack...

Fedora: Security Advisory for python-cvxopt (FEDORA-2022-0b587f0fa9)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2022-23219

The deprecated compatibility function clntcreate in the sunrpc module of the GNU C Library aka glibc through 2.34 copies its hostname argument on the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or if an application is no...

CVE-2021-46019

An untrusted pointer dereference in recdbdestroy at rec-db.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

CVE-2021-46019

An untrusted pointer dereference in recdbdestroy at rec-db.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

CVE-2021-46022

An Use-After-Free vulnerability in recmsetelemdestroy at rec-mset.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

CVE-2022-23219

The CVE-2022-23219 entry is supported by concrete details in connected sources: glibc’s sunrpc clnt_create copies its hostname onto the stack without length validation (through glibc 2.34). This can cause a stack-based buffer overflow, leading to denial of service or, on systems without stack pro...

glibc 安全漏洞

glibc GNU C Library is the C standard library implemented by the GNU Project. A security vulnerability exists in the GNU C Library also known as glibc, which stems from the use of the deprecated compatibility function clnt create in the sunrpc module to copy its hostname parameter onto the stack...

Fedora: Security Advisory for gegl04 (FEDORA-2022-5b5a738d7a)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

glibc 缓冲区错误漏洞

glibc GNU C Library is the C standard library implemented by the GNU Project. A security vulnerability exists in glibc that originates from an Off-by-one buffer overflow underflow in glibc: getcwd...

glibc 安全漏洞

glibc GNU C Library is the C standard library implemented by the GNU Project. A security vulnerability exists in glibc that originates from an Off-by-one buffer overflow underflow in glibc: getcwd...

CVE-2021-46058

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

CVE-2021-46060

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

Fedora: Security Advisory for mediawiki (FEDORA-2021-bef1126908)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2021-46060

Removed by vendor...

Security Bulletin: Publicly disclosed vulnerability in GNU Binutils affects IBM Netezza Platform Software

Summary GNU Binutils is used by IBM Netezza Platform Software. IBM Netezza Platform Software has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2021-3549 DESCRIPTION: GNU Binutils is vulnerable to a denial of service, caused by an out-of-bounds flaw in the objdump utility. By...