Important: libpng

Issue Overview: Integer underflow in the pngcheckkeyword function in pngwutil.c in libpng 0.90 through 0.99, 1.0.x before 1.0.66, 1.1.x and 1.2.x before 1.2.56, 1.3.x and 1.4.x before 1.4.19, and 1.5.x before 1.5.26 allows remote attackers to have unspecified impact via a space character as a...

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch.

...

OESA-2023-1025 openvswitch security update

Open vSwitch is a production quality, multilayer virtual switch licensed under the open source Apache 2.0 license. Security Fixes: An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch.CVE-2022-4338...

libtiff: uint32_t underflow leads to out of bounds read and write in tiffcrop.c

A flaw was found in libtiff's tiffcrop utility that has a uint32t underflow that can lead to an out-of-bounds read and write. This flaw allows an attacker who supplies a crafted file to tiffcrop likely via tricking a user to run tiffcrop on it with certain parametersto cause a crash or, in some...

RHEL 8 : kpatch-patch (RHSA-2023:0059)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0059 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fixe...

RHEL 8 : kernel (RHSA-2023:0058)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0058 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: openvswitch: integer underflow leads to...

DEBIAN-CVE-2022-4338

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch...

CVE-2022-4338

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch...

CVE-2022-4338

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch...

Integer overflow

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch...

CVE-2022-4338

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch...

UBUNTU-CVE-2022-4338

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch...

kernel: openvswitch: integer underflow leads to out-of-bounds write in reserve_sfa_size()

An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and reserving memory for a new action of a new flow, the reservesfasize function does not return -EMSGSIZE as expected, potentially leading to an out-of-bounds write...

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Important: Red Hat Security Advisory: kpatch-patch security update

An update for kpatch-patch is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, i...

kernel: openvswitch: integer underflow leads to out-of-bounds write in reserve_sfa_size()

An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and reserving memory for a new action of a new flow, the reservesfasize function does not return -EMSGSIZE as expected, potentially leading to an out-of-bounds write...

CVE-2022-4338

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch...

CVE-2022-4338

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch...

CVE-2022-4338

CVE-2022-4338 is an integer underflow in Open vSwitch (Organization Specific TLV) affecting various Open vSwitch versions. Connected sources confirm the issue and link multiple vendor advisories. Impact is high per CVSS, with network attack vector and high confidentiality/integrity/availability i...

Debian: Security Advisory (DLA-3253-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...