CVE-2021-47275 bcache: avoid oversized read request in cache missing code path

In the Linux kernel, the following vulnerability has been resolved: bcache: avoid oversized read request in cache missing code path In the cache missing code path of cached device, if a proper location from the internal B+ tree is matched for a cache miss range, function cacheddevcachemiss will b...

glibc: null pointer dereferences after failed netgroup cache insertion

A flaw was found in the glibc netgroup cache. After a failed cache insertion, addgetnetgrentX tries to send the non-existing response after the not-found header. This can lead to a null pointer dereference that causes a crash or exit...

CVE-2024-33600

nscd: Null pointer crashes after notfound response If the Name Service Cache Daemon's nscd cache fails to add a not-found netgroup response to the cache, the client request can result in a null pointer dereference. This flaw was introduced in glibc 2.15 when the cache was added to nscd. This...

The vulnerability of the microprogramming software of Mitel series 6800, 6900, 6900w, and 6970 lies in the fact that it allows for the insertion or modification of arguments, enabling an intruder to gain unauthorized access to protected information, alter the phone’s configuration, or execute arbitrary commands.

The vulnerability of the microprogramming software of Mitel series 6800, 6900, 6900w, and 6970 is related to the implementation or modification of arguments. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information, modify the phone’s configuration,...

CVE-2024-33922

Insertion of Sensitive Information into Log File vulnerability in Jordy Meow WP Media Cleaner.This issue affects WP Media Cleaner: from n/a through 6.7.2...

CVE-2024-33922

CVE-2024-33922 affects WP Media Cleaner (Jordy Meow) up to version 6.7.2, enabling unauthenticated Insertion/Inclusion of Sensitive Information into log files. Connected sources indicate a patch is available and the issue is mitigated by updating to a fixed version.

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from temporary data corruption within the scope of insertion...

CVE-2024-32953

Insertion of Sensitive Information into Log File vulnerability in Newsletters.This issue affects Newsletters: from n/a through 4.9.5...

CVE-2024-32953

CVE-2024-32953 affects the Newsletters WordPress plugin (Newsletters Lite) up to version 4.9.5. The issue is described as an insertion of sensitive information into log files, leading to potential information exposure via logs. The connected documents confirm the affected software and the log-bas...

glibc 安全漏洞

glibc GNU C Library is the C standard library implemented by the GNU Project. A security vulnerability exists in glibc, which stems from an attempt by addgetnetgrentX to send a non-existent response after a cache insertion failure, which may result in a null pointer dereference that could cause t...

CVE-2023-6833

Insertion of Sensitive Information into Log File vulnerability in Hitachi Ops Center Administrator allows local users to gain sensitive information.This issue affects Hitachi Ops Center Administrator: before 11.0.1...

CVE-2023-6833

CVE-2023-6833 affects Hitachi Ops Center Administrator prior to version 11.0.1. The vulnerability is an information exposure caused by insertion of sensitive data into log files, allowing local users to access sensitive information. Affected component: Hitachi Ops Center Administrator logging. Im...

CVE-2024-32513

CVE-2024-32513 affects Product Feed PRO for WooCommerce (AdTribes) and corresponds to an Information Exposure via log files vulnerability. Public details show affected versions up to 13.3.1 (n/a to 13.3.1) with Patch Status as Patched; CVSS v3.1 base score 5.3 (Medium). Connected sources indicate...

CVE-2024-32513 WordPress Product Feed PRO for WooCommerce plugin <= 13.3.1 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information into Log File vulnerability in AdTribes.Io Product Feed PRO for WooCommerce.This issue affects Product Feed PRO for WooCommerce: from n/a through 13.3.1...

Oracle Java SE 安全漏洞

Oracle Java SE and Oracle GraalVM are both products of Oracle Corporation.Oracle Java SE is a product for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments.Oracle GraalVM is a suite of on-the-fly compilers written in the Java languag...

SUSE CVE-2021-47190

In the Linux kernel, the following vulnerability has been resolved: perf bpf: Avoid memory leak from perfenvinsertbtf perfenvinsertbtf doesn't insert if a duplicate BTF id is encountered and this causes a memory leak. Modify the function to return a success/error value and then free the memory if...

DEBIAN-CVE-2021-47190

In the Linux kernel, the following vulnerability has been resolved: perf bpf: Avoid memory leak from perfenvinsertbtf perfenvinsertbtf doesn't insert if a duplicate BTF id is encountered and this causes a memory leak. Modify the function to return a success/error value and then free the memory if...

CVE-2021-47190 perf bpf: Avoid memory leak from perf_env__insert_btf()

In the Linux kernel, the following vulnerability has been resolved: perf bpf: Avoid memory leak from perfenvinsertbtf perfenvinsertbtf doesn't insert if a duplicate BTF id is encountered and this causes a memory leak. Modify the function to return a success/error value and then free the memory if...

CVE-2024-31298

Insertion of Sensitive Information into Log File vulnerability in Joel Hardi User Spam Remover.This issue affects User Spam Remover: from n/a through 1.0...

CVE-2024-31247

Insertion of Sensitive Information into Log File vulnerability in Frédéric GILLES FG Drupal to WordPress.This issue affects FG Drupal to WordPress: from n/a through 3.70.3...