364 matches found
Moderate: libmaxminddb security update
The libmaxminddb package contains the MaxMind DB library. Security Fixes: libmaxminddb: improper initialization in dumpentrydatalist in maxminddb.c CVE-2020-28241 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer ...
libmaxminddb: improper initialization in dump_entry_data_list() in maxminddb.c
An improper initialization issue was found in libmaxminddb. A remote user could exploit this flaw by sending a specially crafted MaxMind DB file that, when parsed by an application linked to libmaxminddb, would possibly crash the application, resulting in a denial of service condition...
libmaxminddb: improper initialization in dump_entry_data_list() in maxminddb.c
An improper initialization issue was found in libmaxminddb. A remote user could exploit this flaw by sending a specially crafted MaxMind DB file that, when parsed by an application linked to libmaxminddb, would possibly crash the application, resulting in a denial of service condition...
Moderate: Red Hat Security Advisory: libmaxminddb security update
An update for libmaxminddb is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...
CVE-2023-4503
An improper initialization vulnerability was found in Galleon. When using Galleon to provision custom EAP or EAP-XP servers, the servers are created unsecured. This issue could allow an attacker to access remote HTTP services available from the server...
CVE-2023-4503 Eap-galleon: custom provisioning creates unsecured http-invoker
An improper initialization vulnerability was found in Galleon. When using Galleon to provision custom EAP or EAP-XP servers, the servers are created unsecured. This issue could allow an attacker to access remote HTTP services available from the server...
Siemens SCALANCE LPE9403 Improper Initialization (CVE-2021-20317)
A corrupted timer tree caused the task wakeup to be missing in the timerqueueadd function in lib/timerqueue.c. This flaw allows a local attacker with special user privileges to cause a denial of service, slowing and eventually stopping the system while running OSP. This plugin only works with...
Input validation
Improper initialization of x87 and SSE floating-point configuration registers in the sconeentry component of SCONE before 5.8.0 for Intel SGX allows a local attacker to compromise the execution integrity of floating-point operations in an enclave or access sensitive information via side-channel...
CVE-2022-46487
Improper initialization of x87 and SSE floating-point configuration registers in the sconeentry component of SCONE before 5.8.0 for Intel SGX allows a local attacker to compromise the execution integrity of floating-point operations in an enclave or access sensitive information via side-channel...
eap-galleon: custom provisioning creates unsecured http-invoker
An improper initialization vulnerability was found in Galleon. When using Galleon to provision custom EAP or EAP-XP servers, the servers are created unsecured. This issue could allow an attacker to access remote HTTP services available from the server...
eap-galleon: custom provisioning creates unsecured http-invoker
An improper initialization vulnerability was found in Galleon. When using Galleon to provision custom EAP or EAP-XP servers, the servers are created unsecured. This issue could allow an attacker to access remote HTTP services available from the server...
CVE-2023-28737
Improper initialization in some IntelR Aptio V UEFI Firmware Integrator Tools may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2023-27306
Improper Initialization in firmware for some IntelR OptaneTM SSD products may allow an authenticated user to potentially enable denial of service via local access...
CVE-2022-46301
Improper Initialization for some Intel Unison software may allow a privileged user to potentially enable denial of service via local access...
CVE-2022-45109
Improper initialization for some Intel Unison software may allow an authenticated user to potentially enable information disclosure via local access...
CVE-2022-45109
Improper initialization for some Intel Unison software may allow an authenticated user to potentially enable information disclosure via local access...
CVE-2022-46301
Improper Initialization for some Intel Unison software may allow a privileged user to potentially enable denial of service via local access...
CVE-2023-27306
Improper Initialization in firmware for some IntelR OptaneTM SSD products may allow an authenticated user to potentially enable denial of service via local access...
CVE-2023-28737
Improper initialization in some IntelR Aptio V UEFI Firmware Integrator Tools may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-46301
Improper Initialization for some Intel Unison software may allow a privileged user to potentially enable denial of service via local access...