CVE-2023-6660

When a program running on an affected system appends data to a file via an NFS client mount, the bug can cause the NFS client to fail to copy in the data to be written but proceed as though the copy operation had succeeded. This means that the data to be written is instead replaced with whatever...

CVE-2023-6660 NFS client data corruption and kernel memory disclosure

When a program running on an affected system appends data to a file via an NFS client mount, the bug can cause the NFS client to fail to copy in the data to be written but proceed as though the copy operation had succeeded. This means that the data to be written is instead replaced with whatever...

CVE-2023-47248

Deserialization of untrusted data in IPC and Parquet readers in PyArrow versions 0.14.0 to 14.0.0 allows arbitrary code execution. An application is vulnerable if it reads Arrow IPC, Feather or Parquet data from untrusted sources for example user-supplied input files. This vulnerability only...

Qualcomm Chipsets Security Vulnerability

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from information disclosure in the Qualcomm IPC when reading values from shared memory in a VM...

ALSA-2023:6578 Moderate: libqb security update

The libqb packages provide a library with the primary purpose of providing high performance client/server reusable features, such as high performance logging, tracing, inter-process communication, and polling. Security Fixes: libqb: Buffer overflow in logblackbox.c CVE-2023-39976 For more details...

Moderate: libqb security update

The libqb packages provide a library with the primary purpose of providing high performance client/server reusable features, such as high performance logging, tracing, inter-process communication, and polling. Security Fixes: libqb: Buffer overflow in logblackbox.c CVE-2023-39976 For more details...

Macvim Security Vulnerabilities

Vim is a cross-platform text editor. A security vulnerability exists in previous versions of Macvim 178 that stems from the use of an insecure inter-process communication mechanism, which may lead to privilege escalation...

CVE-2022-44569

A locally authenticated attacker with low privileges can bypass authentication due to insecure inter-process communication...

CVE-2022-44569

A locally authenticated attacker with low privileges can bypass authentication due to insecure inter-process communication...

CVE-2022-44569

A locally authenticated attacker with low privileges can bypass authentication due to insecure inter-process communication...

CVE-2022-44569

Summary: CVE-2022-44569 affects Ivanti Automation (Ivanti Automation Manager) with an IPC-based authentication bypass. Root cause: insecure inter-process communication that allows a locally authenticated, low-privilege attacker to bypass authentication. Impact: local elevation of access due to by...

Ivanti Automation Security Breach

Ivanti Automation is an application from Ivanti USA. It simplifies the management of complex hybrid environments by automating infrastructure, cloud and workspace automation. A security vulnerability exists in Ivanti Automation versions prior to 2023.4 that stems from insecure inter-process...

PT-2023-14505 · Ivanti · Automation

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A locally authenticated attacker with low privileges can bypass authentication due to insecure inter-process communication. There is no information...

Moderate: Red Hat Security Advisory: libqb security update

An update for libqb is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

WatchGuard EPDR Security Vulnerability

WatchGuard EPDR is an application from WatchGuard USA, Inc. prevents, detects and responds to any type of known and unknown malware as well as fileless and malware-free attacks. A security vulnerability exists in WatchGuard EPDR version 8.0.21.0002, which stems from a weak implementation of messa...

Zephyr Security Breach

Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A security vulnerability exists in Zephyr IPM that stems from the presence of a buffer overflow issue...

DEBIAN-CVE-2023-4573

When receiving rendering data over IPC mStream could have been destroyed when initialized, which could have led to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox 117, Firefox ESR 102.15, Firefox ESR 115.2, Thunderbird 102.15, and Thunderbird 115.2...

Mozilla: Memory corruption in IPC ColorPickerShownCallback

The Mozilla Foundation Security Advisory describes this flaw as: When creating a callback over IPC for showing the Color Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could...

Mozilla: Memory corruption in IPC CanvasTranslator

The Mozilla Foundation Security Advisory describes this flaw as: When receiving rendering data over IPC mStream could have been destroyed when initialized, which could have led to a use-after-free causing a potentially exploitable crash...

Mozilla: Memory corruption in IPC FilePickerShownCallback

The Mozilla Foundation Security Advisory describes this flaw as: When creating a callback over IPC for showing the File Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could...