Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: iouring: A check was added to prevent dereferencing of a NULL pointer on the forced async preparation path when no file has been assigned. In earlier kernels, it was possible to trigger a NULL pointer dereferencing on the forced...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: sched: schmultiq: fix possible OOB write in multiqtune CVE-2024-36978 In the Linux kernel, the following vulnerability has been resolved: usb-storage: alauda: Check whether the media is initialized...

Image Access Scan2Net 安全漏洞

Image Access Scan2Net is a scanning software from Image Access Germany. A security vulnerability exists in Image Access Scan2Net versions 7.40 and earlier, 7.42 and earlier, and 7.42B and earlier, which originates from an authenticated attacker who can perform SQL injection by accessing the...

PT-2024-13420 · Milesight · Milesight Ur32L

Name of the Vulnerable Software and Affected Versions: Milesight UR32L version 32.3.0.7-r2 Description: A firmware update vulnerability exists in the luci2-io file-import functionality. A specially crafted network request can lead to arbitrary firmware update. An attacker can send a network reque...

CVE-2024-24824 graylog2-server vulnerable to instantiation of arbitrary classes triggered by API request

Graylog is a free and open log management platform. Starting in version 2.0.0 and prior to versions 5.1.11 and 5.2.4, arbitrary classes can be loaded and instantiated using a HTTP PUT request to the /api/system/clusterconfig/ endpoint. Graylog's cluster config system uses fully qualified class...

The vulnerability of the btrfs_get_root_ref() function in the fs/btrfs/disk-io.c file of the Linux kernel’s file system allows a attacker to cause a service failure or gain access to protected information.

The vulnerability of the btrfsgetrootref function in the fs/btrfs/disk-io.c file of the Linux kernel’s file system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a service failure or gain access to protected information...

golang: runtime: unexpected behavior of setuid/setgid binaries

On Unix platforms, the Go runtime does not behave differently when a binary is run with the setuid/setgid bits. This can be dangerous in certain cases, such as when dumping memory state or assuming the status of standard I/O file descriptors. If a setuid/setgid binary is executed with standard I/...

Linux kernel 资源管理错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel suffers from an elevation of privilege vulnerability that stems from the lack of ctx-uringlock in the iofilegetfixed function, which could lead to a local elevatio...

SUSE CVE-2022-30630

Uncontrolled recursion in Glob in io/fs before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a path which contains a large number of path separators...

golang: io/fs: stack exhaustion in Glob

A flaw was found in the golang standard library, io/fs. Calling Glob on a path that contains a large number of path separators can cause a panic issue due to stack exhaustion. This could allow an attacker to impact availability...

CVE-2020-24807

The socket.io-file package through 2.0.31 for Node.js relies on client-side validation of file types, which allows remote attackers to execute arbitrary code by uploading an executable file via a modified JSON name field. NOTE: This vulnerability only affects products that are no longer supported...

@best/agent-hub (>=7.0.1 <=16.1.0), best (>=7.0.1 <=16.1.0) potentially affected by CVE-2020-15779 via socket.io-file (=2.0.31)

socket.io-file NPM version =2.0.31 is affected by a known vulnerability. The following packages have a transitive dependency on socket.io-file and may be impacted: - @best/agent-hub =7.0.1, =7.0.1, =16.1.0 Source cves: CVE-2020-15779 Source advisory: OSV:GHSA-9H4G-27M8-QJRG...

DSA-2310-1 linux-2.6 - several issues

Bulletin has no description...

[SECURITY] [DSA 2303-2] New linux-2.6 packages fix regression

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------- Debian Security Advisory DSA-2303-2 [email protected] http://www.debian.org/security/ Dann Frazier September 10, 2011 http://www.debian.org/security/faq -...

DSA-2303-1 linux-2.6 - several issues

Bulletin has no description...

MPlayer Lite 33064 Buffer Overflow

!/usr/bin/perl +Exploit Title: MPlayer Lite r33064 m3u Buffer Overflow ExploitDEP BYPASS +Date: 24\07\2011 +Author: C4SS!0 and h1ch4m +Software Link: http://sourceforge.net/projects/mplayer-ww/files/MPlayerRelease/Revision%2033064/mplayerliter33064.7z/download +Version: Lite 33064 +Tested On:...

MPlayer (r33064 Lite) Buffer Overflow + ROP exploit

No description provided by source. !/usr/bin/perl Exploit Title: Mplayer BOF + ROP Exploit Date: 04\05\2011 Author: NateM based on original WinXP non ROP exploit by C4SS!0 and h1ch4m Software Link:...

MPlayer (r33064 Lite) Buffer Overflow + ROP exploit

Exploit for windows platform in category local exploits !/usr/bin/perl Exploit Title: Mplayer BOF + ROP Exploit Date: 04\05\2011 Author: NateM based on original WinXP non ROP exploit by C4SS!0 and h1ch4m Software Link:...

MPlayer r33064 Lite Buffer Overflow

!/usr/bin/perl Exploit Title: Mplayer BOF + ROP Exploit Date: 04\05\2011 Author: NateM based on original WinXP non ROP exploit by C4SS!0 and h1ch4m Software Link: http://sourceforge.net/projects/mplayer-ww/files/MPlayerRelease/Revision%2033064/mplayerliter33064.7z/download Version: Lite 33064...

MPlayer (r33064 Lite) - Local Buffer Overflow (ROP)

!/usr/bin/perl Exploit Title: Mplayer BOF + ROP Exploit Date: 04\05\2011 Author: NateM based on original WinXP non ROP exploit by C4SS!0 and h1ch4m Software Link: http://sourceforge.net/projects/mplayer-ww/files/MPlayerRelease/Revision%2033064/mplayerliter33064.7z/download Version: Lite 33064...