GCC 安全漏洞

Gcc is a collection of Gnu compilers. It is primarily used to compile the C and C++ languages. A security vulnerability exists in GCC that stems from the discovery that GCC v12.0 contains uncontrolled recursion via the component libiberty/rust-demangle.c. This vulnerability allows an attacker to...

GNU Recutils 资源管理错误漏洞

GNU Recutils is a GNU community tool and library for accessing recfiles plain text databases. GNU Recutils has security vulnerabilities that can be exploited by attackers to cause segmentation errors or application crashes...

CVE-2022-23218

The deprecated compatibility function svcunixcreate in the sunrpc module of the GNU C Library aka glibc through 2.34 copies its path argument on the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or if an application is not...

glibc 安全漏洞

glibc GNU C Library is the C standard library implemented by the GNU Project. A security vulnerability exists in the GNU C Library also known as glibc, which stems from the use of the deprecated compatibility function svcunix create in the sunrpc module to copy its path parameter onto the stack...

CVE-2022-23218

Summary: CVE-2022-23218 (glibc) is a stack-based buffer overflow in the sunrpc path handling function svcunix_create, allowing potential denial of service or arbitrary code execution if a stack protector is not present. The issue affects glibc up to version 2.34 per the description. Multiple conn...

CVE-2022-23219

The deprecated compatibility function clntcreate in the sunrpc module of the GNU C Library aka glibc through 2.34 copies its hostname argument on the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or if an application is no...

PT-2022-12505 · Gnu +3 · Gnu Recutils +3

Name of the Vulnerable Software and Affected Versions: GNU Recutils version 1.8.90 Description: The issue is related to an untrusted pointer dereference in the rec db destroy function at rec-db.c, which can cause a segmentation fault or application crash. Recommendations: For GNU Recutils version...

PT-2022-12507 · Gnu +3 · Gnu Recutils +3

Name of the Vulnerable Software and Affected Versions: GNU Recutils version 1.8.90 Description: The issue is related to an Use-After-Free vulnerability in the rec record destroy function at rec-record.c. This vulnerability can lead to a segmentation fault or application crash. Recommendations: Fo...

PT-2022-12508 · Gnu +3 · Gnu Recutils +3

Name of the Vulnerable Software and Affected Versions: GNU Recutils version 1.8.90 Description: The issue is related to an Use-After-Free vulnerability in the rec mset elem destroy function at rec-mset.c. This vulnerability can lead to a segmentation fault or application crash. Recommendations: F...

glibc 安全漏洞

glibc GNU C Library is the C standard library implemented by the GNU Project. A security vulnerability exists in the GNU C Library also known as glibc, which stems from the use of the deprecated compatibility function clnt create in the sunrpc module to copy its hostname parameter onto the stack...

CVE-2022-23219

The CVE-2022-23219 entry is supported by concrete details in connected sources: glibc’s sunrpc clnt_create copies its hostname onto the stack without length validation (through glibc 2.34). This can cause a stack-based buffer overflow, leading to denial of service or, on systems without stack pro...

CVE-2021-46019

An untrusted pointer dereference in recdbdestroy at rec-db.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

Fedora: Security Advisory for gegl04 (FEDORA-2022-5b5a738d7a)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

glibc 安全漏洞

glibc GNU C Library is the C standard library implemented by the GNU Project. A security vulnerability exists in glibc that originates from an Off-by-one buffer overflow underflow in glibc: getcwd...

glibc 缓冲区错误漏洞

glibc GNU C Library is the C standard library implemented by the GNU Project. A security vulnerability exists in glibc that originates from an Off-by-one buffer overflow underflow in glibc: getcwd...

CVE-2021-46058

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

CVE-2021-46060

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

Fedora: Security Advisory for mediawiki (FEDORA-2021-bef1126908)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2021-46060

Removed by vendor...

Security Bulletin: Publicly disclosed vulnerability in GNU Binutils affects IBM Netezza Platform Software

Summary GNU Binutils is used by IBM Netezza Platform Software. IBM Netezza Platform Software has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2021-3549 DESCRIPTION: GNU Binutils is vulnerable to a denial of service, caused by an out-of-bounds flaw in the objdump utility. By...