3104 matches found
SUSE-SU-2024:3921-1 Security update for libgsf
This update for libgsf fixes the following issues: - CVE-2024-42415, CVE-2024-36474: Fixed integer overflows affecting memory allocation bsc1231282, bsc1231283...
SUSE-SU-2024:3920-1 Security update for libgsf
This update for libgsf fixes the following issues: - CVE-2024-42415, CVE-2024-36474: Fixed integer overflows affecting memory allocation bsc1231282, bsc1231283...
CVE-2022-48987
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-dv-timings.c: fix too strict blanking sanity checks Sanity checks were added to verify the v4l2bttimings blanking fields in order to avoid integer overflows when userspace passes weird values. But that assumed that...
CVE-2022-48987
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-dv-timings.c: fix too strict blanking sanity checks Sanity checks were added to verify the v4l2bttimings blanking fields in order to avoid integer overflows when userspace passes weird values. But that assumed that...
UBUNTU-CVE-2022-48987
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-dv-timings.c: fix too strict blanking sanity checks Sanity checks were added to verify the v4l2bttimings blanking fields in order to avoid integer overflows when userspace passes weird values. But that assumed that...
CVE-2022-48987 media: v4l2-dv-timings.c: fix too strict blanking sanity checks
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-dv-timings.c: fix too strict blanking sanity checks Sanity checks were added to verify the v4l2bttimings blanking fields in order to avoid integer overflows when userspace passes weird values. But that assumed that...
CVE-2022-48987
CVE-2022-48987 affects the Linux kernel in media: v4l2-dv-timings.c. The issue was a misapplied blanking sanity check: when userspace supplies only a total blanking value, the total could be assigned to front porch, backporch, or sync fields, causing an overflow check to fail. The fix adds maximu...
CVE-2022-48987 media: v4l2-dv-timings.c: fix too strict blanking sanity checks
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-dv-timings.c: fix too strict blanking sanity checks Sanity checks were added to verify the v4l2bttimings blanking fields in order to avoid integer overflows when userspace passes weird values. But that assumed that...
CVE-2022-48987 media: v4l2-dv-timings.c: fix too strict blanking sanity checks
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-dv-timings.c: fix too strict blanking sanity checks Sanity checks were added to verify the v4l2bttimings blanking fields in order to avoid integer overflows when userspace passes weird values. But that assumed that...
Debian dsa-5786 : gir1.2-gsf-1 - security update
The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5786 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5786-1 [email protected] https://www.debian.org/securit...
[SECURITY] [DLA 3881-1] aom security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3881-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk September 07, 2024 https://wiki.debian.org/LTS -...
Debian dla-3881 : aom-tools - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-3881 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3881-1 [email protected] https://www.debian.org/lts/security/...
Oracle Linux 8 : libvpx (ELSA-2024-5941)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5941 advisory. 1.7.0-11 - Add patch to fix integer overflows. - Fix compilation by including limits.h - Resolves: RHEL-40650 Tenable has extracted the preceding...
libvpx security update
1.7.0-11 - Add patch to fix integer overflows. - Fix compilation by including limits.h - Resolves: RHEL-40650...
Huawei EulerOS: Security Advisory for krb5 (EulerOS-SA-2024-2273)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux 2 : firefox (ALASFIREFOX-2024-028)
The version of firefox installed on the remote host is prior to 115.13.0-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2FIREFOX-2024-028 advisory. There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpximgalloc with a large value of the dw, d...
CVE-2024-40996
CVE-2024-40996 affects the Linux kernel. Problem: bpf: Avoid splat in pskb_pull_reason where a debug WARN may trigger for SYZKALLER-style nets; not interesting for valid traffic and can be suppressed. Root cause involves a debug hint in pskb_may_pull when CONFIG_DEBUG_NET=y; with CONFIG_DEBUG_NET...
CVE-2024-40996 bpf: Avoid splat in pskb_pull_reason
In the Linux kernel, the following vulnerability has been resolved: bpf: Avoid splat in pskbpullreason syzkaller builds CONFIGDEBUGNET=y frequently trigger a debug hint in pskbmaypull. We'd like to retain this debug check because it might hint at integer overflows and other issues kernel code...
Mageia: Security Advisory (MGASA-2024-0221)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3830-1] libvpx security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3830-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk June 16, 2024 https://wiki.debian.org/LTS -...