35 matches found
EUVD-1999-1377
Malware in sbrugna...
EUVD-2004-2672
Malware in sbrugna...
CVE-2022-49404
In the Linux kernel, the following vulnerability has been resolved: RDMA/hfi1: Fix potential integer multiplication overflow errors When multiplying of different types, an overflow is possible even when storing the result in a larger type. This is because the conversion is done after the...
CVE-2022-49404 RDMA/hfi1: Fix potential integer multiplication overflow errors
In the Linux kernel, the following vulnerability has been resolved: RDMA/hfi1: Fix potential integer multiplication overflow errors When multiplying of different types, an overflow is possible even when storing the result in a larger type. This is because the conversion is done after the...
CVE-2022-49404
In the Linux kernel, the following vulnerability has been resolved: RDMA/hfi1: Fix potential integer multiplication overflow errors When multiplying of different types, an overflow is possible even when storing the result in a larger type. This is because the conversion is done after the...
CVE-2022-49404
The CVE-2022-49404 entry concerns the Linux kernel RDMA/hfi1 path. The root cause is an integer multiplication overflow during inter-packet delay calculations due to type-conversion order, allowing overflow and an incorrect result. The fix forces one operand to be u64 so the promotion occurs befo...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a possible overflow in RDMA/hfi1 during integer multiplication...
OpenSSL 0.9.6 < 0.9.6j Multiple Vulnerabilities
The version of OpenSSL installed on the remote host is prior to 0.9.6j. It is, therefore, affected by multiple vulnerabilities as referenced in the 0.9.6j advisory. - The SSL and TLS components for OpenSSL 0.9.6i and earlier, 0.9.7, and 0.9.7a allow remote attackers to perform an unauthorized RSA...
OpenSSL 0.9.7 < 0.9.7b Multiple Vulnerabilities
The version of OpenSSL installed on the remote host is prior to 0.9.7b. It is, therefore, affected by multiple vulnerabilities as referenced in the 0.9.7b advisory. - The SSL and TLS components for OpenSSL 0.9.6i and earlier, 0.9.7, and 0.9.7a allow remote attackers to perform an unauthorized RSA...
Debian DSA-5286-1 : krb5 - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5286 advisory. Greg Hudson discovered integer overflow flaws in the PAC parsing in krb5, the MIT implementation of Kerberos, which may result in remote code execution in a KDC, kadmin, o...
Slackware Linux 15.0 / current krb5 Vulnerability (SSA:2022-320-01)
The version of krb5 installed on the remote host is prior to 1.19.2 / 1.20.1. It is, therefore, affected by a vulnerability as referenced in the SSA:2022-320-01 advisory. - The Kerberos libraries used by Samba provide a mechanism for authenticating a user or service by means of tickets that can...
Slackware Linux 15.0 / current samba Vulnerability (SSA:2022-320-04)
The version of samba installed on the remote host is prior to 4.15.12 / 4.17.3. It is, therefore, affected by a vulnerability as referenced in the SSA:2022-320-04 advisory. - The Kerberos libraries used by Samba provide a mechanism for authenticating a user or service by means of tickets that can...
Samba buffer overflow vulnerabilities on 32-bit
Description The Kerberos libraries used by Samba provide a mechanism for authenticating a user or service by means of tickets that can contain Privilege Attribute Certificates PACs. Both the Heimdal and MIT Kerberos libraries, and so the embedded Heimdal shipped by Samba suffer from an integer...
GSD-2022-1004057 RDMA/hfi1: Fix potential integer multiplication overflow errors
RDMA/hfi1: Fix potential integer multiplication overflow errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.318 by commit...
GSD-2022-1003872 RDMA/hfi1: Fix potential integer multiplication overflow errors
RDMA/hfi1: Fix potential integer multiplication overflow errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.247 by commit...
GSD-2022-1003304 RDMA/hfi1: Fix potential integer multiplication overflow errors
RDMA/hfi1: Fix potential integer multiplication overflow errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.46 by commit...
Integer overflow in TFLite
Impact An attacker can craft a TFLite model that would cause an integer overflow in embedding lookup operations: cc int embeddingsize = 1; int lookupsize = 1; for int i = 0; i data.i32i; lookupsize = dim; outputshape-datak = dim; for int i = 1; i datak = dim; Both embeddingsize and lookupsize are...
SUSE: Security Advisory (SUSE-SU-2018:2145-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-11137
Integer multiplication overflow resulting in lower buffer size allocation than expected causes memory access out of bounds resulting in possible device instability in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT,...
CVE-2020-11137
CVE-2020-11137 describes an integer multiplication overflow in Qualcomm Snapdragon components that leads to a smaller-than-expected buffer allocation, causing memory access out of bounds and potential device instability across Snapdragon Auto/Compute/Connectivity/IoT families. Public sources (NVD...