Huawei EulerOS: Security Advisory for libtommath (EulerOS-SA-2023-3362)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-42562

CVE-2023-42562 affects Samsung devices via the libFacePreProcessingjni.camera.samsung.so library, where an integer overflow in the function detectionFindFaceSupportMultiInstance can trigger a heap overflow. Technical details indicate versions prior to SMR Dec-2023 Release 1 are affected. Remediat...

CVE-2023-4398

An integer overflow vulnerability in the source code of the QuickSec IPSec toolkit used in the VPN feature of the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware versions 4.50 through 5.37, USG FLEX 50W series firmware versions 4.16 through 5.37, USG20W-VPN series...

SUSE: Security Advisory (SUSE-SU-2023:4330-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for pcre2 (EulerOS-SA-2023-3059)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for pcre2 (EulerOS-SA-2023-2942)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Medium: libtommath

Issue Overview: Integer Overflow vulnerability in mpgrow in libtom libtommath before commit beba892bc0d4e4ded4d667ab1d2a94f4d75109a9, allows attackers to execute arbitrary code and cause a denial of service DoS. CVE-2023-36328 Affected Packages: libtommath Issue Correction: Run dnf update...

Amazon Linux 2023 : libtommath, libtommath-devel (ALAS2023-2023-370)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-370 advisory. Integer Overflow vulnerability in mpgrow in libtom libtommath before commit beba892bc0d4e4ded4d667ab1d2a94f4d75109a9, allows attackers to execute arbitrary code and cause a denial of service DoS...

SUSE-SU-2023:3818-1 Security update for ffmpeg

This update for ffmpeg fixes the following issues: - CVE-2021-28429: Fixed Integer overflow vulnerability in avtimecodemakestring in libavutil/timecode.c bsc1214246...

Updated ghostpcl packages fix security vulnerability

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format. CVE-2023-38560...

SUSE-SU-2023:3670-1 Security update for python-brotlipy

This update for python-brotlipy fixes the following issues: - CVE-2020-8927: Fixed integer overflow when input chunk is larger than 2GiB bsc1175825...

Fedora 37 : libtommath (2023-f5680e3b4b)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-f5680e3b4b advisory. Security fix for CVE-2023-36328 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

Huawei EulerOS: Security Advisory for freetype (EulerOS-SA-2023-2682)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Integer overflow

Integer Overflow vulnerability in RELIC before commit 34580d840469361ba9b5f001361cad659687b9ab, allows attackers to execute arbitrary code, cause a denial of service, and escalate privileges when calling realloc function in bngrow function...

CVE-2023-36328

Integer Overflow vulnerability in mpgrow in libtom libtommath before commit beba892bc0d4e4ded4d667ab1d2a94f4d75109a9, allows attackers to execute arbitrary code and cause a denial of service DoS...

Low: pcre2

Issue Overview: Integer overflow vulnerability in pcre2test before 10.41 allows attackers to cause a denial of service or other unspecified impacts via negative input. CVE-2022-41409 Affected Packages: pcre2 Issue Correction: Run dnf update pcre2 --releasever 2023.1.20230809 or dnf update...

PT-2023-23133 · Freebsd · Freebsd

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: A set of carefully crafted ipv6 packets can trigger an integer overflow in the calculation of a fragment reassembled packet's payload length field, allowing an attacker to trigger a...

Huawei EulerOS: Security Advisory for apr (EulerOS-SA-2023-2472)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 7 : apr-util (RHSA-2023:3145)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:3145 advisory. - Integer Overflow or Wraparound vulnerability in aprbase64 functions of Apache Portable Runtime Utility APR-util allows an attacker to write beyond bounds of a...

CVE-2022-41409

Integer overflow vulnerability in pcre2test before 10.41 allows attackers to cause a denial of service or other unspecified impacts via negative input...