141 matches found
GSD-2021-1001702 io_uring: allow conditional reschedule for intensive iterators
iouring: allow conditional reschedule for intensive iterators This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.11 by commit...
Regular Expression Denial Of Service (ReDoS)
ansi-regex is vulnerable to regular expression denial of service. The vulnerability exists due to an inefficient handling of user-provided string pattern, causing intensive processing of regular expression machine and application crash...
Regular Expression Denial Of Service (ReDoS)
prism is vulnerable to regular expression denial of service. An attacker is able to send a malicious input string,leading to an intensive usage of CPU and an application crash...
[SECURITY] Fedora 34 Update: nodejs-14.16.0-1.fc34
Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...
Hamilton-medical Hamilton-T1 Information Disclosure Vulnerability
The Hamilton-medical Hamilton-T1 is an industrial control device from Hamilton-medical USA. It combines the functionality of a full-featured ICU ventilator with the compactness and ruggedness required for transport Features. An information disclosure vulnerability exists in the Hamilton-T1...
CVE-2020-4958
IBM Security Identity Governance and Intelligence 5.2.6 does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. IBM X-Force ID: 192209...
[SECURITY] Fedora 33 Update: nodejs-14.15.4-1.fc33
Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...
[SECURITY] Fedora 32 Update: nodejs-12.18.4-1.fc32
Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...
[SECURITY] Fedora 32 Update: nodejs-12.19.0-1.fc32
Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...
[SECURITY] Fedora 31 Update: nodejs-12.18.3-1.fc31
Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...
HPESBHF04009 rev.1 - Certain HPE Solid State Drives, Local Disclosure of Information
Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 6.4TB NVMe x4 Lanes Mixed Use MO006400KWVVA SSD - Prior to HPK1 HPE 3.2TB NVMe x4 Lanes Mixed Use MO003200KWVUV SSD - Prior to HPK1 HPE 1.6TB NVMe x4 Lanes Mixed Use...
Gadgetinspector - A Byte Code Analyzer For Finding Deserialization Gadget Chains In Java Applications
This project inspects Java libraries and classpaths for gadget chains. Gadgets chains are used to construct exploits for deserialization vulnerabilities. By automatically discovering possible gadgets chains in an application's classpath penetration testers can quickly construct exploits and...
[SECURITY] Fedora 31 Update: nodejs-12.15.0-1.fc31
Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...
[SECURITY] Fedora 31 Update: nodejs-12.14.1-3.fc31
Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...
Information Leakage Vulnerability in Intensive Intelligent Portal Platform of TORS Information Technology Co.
The main company of TORS Information Technology Co., Ltd. provides general platform products, industry application solutions and data services for key industry markets, such as government, media, security, finance, enterprise, intellectual property, publishing and net credit. Intensive Intelligen...
Fedora Update for nodejs FEDORA-2019-5a6a7bc12c
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
How to pin Citrix Hypervisor Virtual CPUs to specific Physical CPUs
Citrix Hypervisor maps vCPUs to pCPUs by default in a semi-even way to distribute VM load on the host. In some cases it may be needed to have a specific mapping, for example, if some VMs will be CPU intensive while other wont, the intensive VMs can be mapped to exclusive physical CPUs while the...
When Endpoint Detection and Response (EDR) is not enough
As cybercriminals continue to validate the reality that no prevention-based security control is going to stop every threat every time, companies are expanding beyond prevention-only approaches and closing the gap with endpoint detection and response solutions. But as we consider this strategy, on...
[SECURITY] Fedora 28 Update: nodejs-8.11.3-1.fc28
Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...
Turning the Tables on Cyber Attackers
Today, Carbon Black joins the community of public companies NASDAQ: CBLK. While we are humbled and excited by this milestone, we also acknowledge there’s plenty of progress still to be made. For Carbon Black as a company and the industry as a whole, that progress starts with shifting the balance ...