Lucene search
K

16992 matches found

RedHat Linux
RedHat Linux
added 2020/11/04 1:6 a.m.2 views

glibc: stack corruption from crafted input in cosl, sinl, sincosl, and tanl functions

A flaw was found in glibc in versions prior to 2.32. Pseudo-zero values are not validated causing a stack corruption due to a stack-based overflow. The highest threat from this vulnerability is to system availability...

5.5CVSS7.1AI score0.00758EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2020/11/04 1:6 a.m.2 views

glibc: array overflow in backtrace functions for powerpc

An out-of-bounds write vulnerability was found in glibc when handling signal trampolines on PowerPC. The backtrace function did not properly check the array bounds when storing the frame address resulting in a denial of service or potential code execution. The highest threat from this vulnerabili...

7CVSS7.4AI score0.00537EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/11/04 1:6 a.m.3 views

glibc: use-after-free in glob() function when expanding ~user

A use-after-free vulnerability was found in glibc in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially crafted path that, when processe...

7CVSS7AI score0.00535EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2020/11/03 12:5 p.m.32 views

Moderate: libarchive security update

The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such as python-libarchive, and several popular desktop file...

5.5CVSS6.6AI score0.00661EPSS
Exploits1References1
OSV
OSV
added 2020/11/03 12:5 p.m.25 views

ALSA-2020:4443 Moderate: libarchive security update

The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such as python-libarchive, and several popular desktop file...

5.5CVSS5.7AI score0.00661EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2020/11/03 12:0 a.m.62 views

EulerOS 2.0 SP2 : binutils (EulerOS-SA-2020-2330)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a heap-based buffer over-read in dexpression1 in...

7.8CVSS6.8AI score0.02317EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2020/11/03 12:0 a.m.26 views

EulerOS 2.0 SP2 : patch (EulerOS-SA-2020-2378)

According to the version of the patch package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and...

5.9CVSS6.6AI score0.03927EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2020/11/02 8:22 p.m.61 views

Security Bulletin: IBM BladeCenter Advanced Management Module (AMM) is affected by multiple vulnerabilities in GNU C Library (glibc), krb5 and php

Summary IBM BladeCenter Advanced Management Module AMM has addressed the following vulnerabilities. Vulnerability Details Summary IBM BladeCenter Advanced Management Module AMM has addressed the following vulnerabilities. Vulnerability Details: CVE-ID: CVE-2013-2207 Description: The GNU C Library...

10CVSS1.1AI score0.50129EPSS
Exploits19Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/11/02 12:0 a.m.41 views

openSUSE Security Update : binutils (openSUSE-2020-1804)

This update for binutils fixes the following issues : binutils was updated to version 2.35. jscECO-2373 Update to binutils 2.35 : - The assembler can now produce DWARF-5 format line number tables. - Readelf now has a 'lint' mode to enable extra checks of the files it is processing. - Readelf will...

7.8CVSS6.6AI score0.02752EPSS
Exploits8References21
Tenable Nessus
Tenable Nessus
added 2020/10/30 12:0 a.m.29 views

EulerOS 2.0 SP5 : mailman (EulerOS-SA-2020-2291)

According to the version of the mailman package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An issue was discovered in GNU Mailman before 2.1.28. A crafted URL can cause arbitrary text to be displayed on a web page from a trusted...

6.5CVSS6.5AI score0.02541EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/10/30 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for mailman (EulerOS-SA-2020-2256)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.9AI score0.02698EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/10/30 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for mailman (EulerOS-SA-2020-2291)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.02541EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/10/28 12:0 a.m.40 views

Amazon Linux 2 : glibc (ALAS-2020-1517)

The version of glibc installed on the remote host is prior to 2.26-36. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1517 advisory. In the GNU C Library aka glibc or libc6 through 2.28, the getaddrinfo function would successfully parse a string that contained an IP...

5.3CVSS6.2AI score0.00479EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2020/10/27 12:0 a.m.345 views

Adtec Digital Products Hardcoded Credentials / Remote Root

Exploit Title: Adtec Digital Multiple Products - Default Hardcoded Credentials Remote Root Date: 2020-07-24 Exploit Author: LiquidWorm Software Link: https://www.adtecdigital.com / https://www.adtecdigital.com/support/documents-downloads Version: Multiple Adtec Digital Multiple Products - Default...

7.4AI score
Exploits0
0day.today
0day.today
added 2020/10/27 12:0 a.m.44 views

Adtec Digital Multiple Products - Default Hardcoded Credentials Remote Root Vulnerability

Exploit Title: Adtec Digital Multiple Products - Default Hardcoded Credentials Remote Root Date: 2020-07-24 Exploit Author: LiquidWorm Software Link: https://www.adtecdigital.com / https://www.adtecdigital.com/support/documents-downloads Version: Multiple Adtec Digital Multiple Products - Default...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/10/27 12:0 a.m.32 views

Amazon Linux 2 : mailman (ALAS-2020-1536)

The version of mailman installed on the remote host is prior to 2.1.15-30. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1536 advisory. A cross-site scripting vulnerability XSS has been discovered in mailman due to the hostname field not being properly...

6.5CVSS6.2AI score0.02541EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2020/10/27 12:0 a.m.15 views

Fedora: Security Advisory for librepo (FEDORA-2020-b40fc174b5)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.5CVSS7.9AI score0.02526EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/10/27 12:0 a.m.28 views

Huawei GaussDB Kernel Detection (Linux/Unix SSH Login)

SSH login-based detection of Huawei GaussDB Kernel. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

0.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/10/27 12:0 a.m.6 views

The vulnerability of the libbfd library in the GNU Binutils development environment allows a hacker to trigger a service failure.

The vulnerability of the libbfd library function elfreadnotes elf.c in the GNU Binutils development environment is related to the distribution of resources without restrictions. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.6AI score0.01228EPSS
Exploits1References5Affected Software1
CNVD
CNVD
added 2020/10/23 12:0 a.m.10 views

Unspecified Vulnerability in GNU C Library (CNVD-2021-26206)

The GNU C Library glibc, libc6 is an open-source, free C language compiler released under the LGPL license.Library is one of the libraries. A security vulnerability exists in the GNU C Library aka glibc versions prior to 2.2. The vulnerability stems from a missing statement about the unspecified...

9.8CVSS6.7AI score0.02373EPSS
Exploits1References1
Rows per page
Query Builder