633 matches found
UBUNTU-CVE-2022-41915
Netty project is an event-driven asynchronous network application framework. Starting in version 4.1.83.Final and prior to 4.1.86.Final, when calling DefaultHttpHeadesr.set with an iterator of values, header value validation was not performed, allowing malicious header values in the iterator to...
CVE-2022-41915
CVE-2022-41915 (Netty) : Netty versions 4.1.83.Final through 4.1.85.Final are affected. When calling DefaultHttpHeaders.set with an Iterator, header value validation was not performed, enabling HTTP Response Splitting via malicious iterator values. This is patched in 4.1.86.Final. Remediation/wor...
CVE-2022-41915
Netty project is an event-driven asynchronous network application framework. Starting in version 4.1.83.Final and prior to 4.1.86.Final, when calling DefaultHttpHeadesr.set with an iterator of values, header value validation was not performed, allowing malicious header values in the iterator to...
CVE-2022-41915
Netty project is an event-driven asynchronous network application framework. Starting in version 4.1.83.Final and prior to 4.1.86.Final, when calling DefaultHttpHeadesr.set with an iterator of values, header value validation was not performed, allowing malicious header values in the iterator to...
GHSA-HH82-3PMQ-7FRP Netty vulnerable to HTTP Response splitting from assigning header value iterator
Impact When calling DefaultHttpHeaders.set with an iterator of values as opposed to a single given value, header value validation was not performed, allowing malicious header values in the iterator to perform HTTP Response Splitting. Patches The necessary validation was added in Netty 4.1.86.Fina...
OSV-2022-1209 Heap-buffer-overflow in OT::hb_ot_apply_context_t::skipping_iterator_t::next
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53714 Crash type: Heap-buffer-overflow READ 4 Crash state: OT::hbotapplycontextt::skippingiteratort::next OT::Layout::GSUBimpl::Ligature::apply bool OT::hbacceleratesubtablescontextt::applytoOT::Layout::GSUBimpl::Liga...
PT-2022-35001 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.3 Description: The issue is related to the use of an unlocked iterator in the SDMA update of the drm/amdgpu module. The actual impact and attack plausibility have not yet been proven. Recommendations: For...
Nginx 资源管理错误漏洞
Nginx is a lightweight web server/reverse proxy server and email IMAP/POP3 proxy server from Nginx, Inc. njs is one of the scripting language components that supports extended NGINX functionality. A security vulnerability exists in Nginx NJS version 0.7.2, which stems from heap-based...
PT-2022-5322 · Nginx · Nginx Njs
Name of the Vulnerable Software and Affected Versions: Nginx NJS version 0.7.2 Description: The issue is related to a heap-use-after-free bug caused by an illegal memory copy in the njs json parse iterator call function at njs json.c. This bug can be exploited by a remote attacker to execute...
PT-2022-37319 · Git +1 · Skia
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. Technical details about the crash include the SkPath::Iter::next function, SkStroke::strokePat...
GSD-2022-1003905 f2fs: fix dereference of stale list iterator after loop body
f2fs: fix dereference of stale list iterator after loop body This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.247 by commit...
GSD-2022-1003742 f2fs: fix dereference of stale list iterator after loop body
f2fs: fix dereference of stale list iterator after loop body This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.198 by commit...
GSD-2022-1003561 f2fs: fix dereference of stale list iterator after loop body
f2fs: fix dereference of stale list iterator after loop body This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.121 by commit...
GSD-2022-1003325 f2fs: fix dereference of stale list iterator after loop body
f2fs: fix dereference of stale list iterator after loop body This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.46 by commit...
GSD-2022-1003031 f2fs: fix dereference of stale list iterator after loop body
f2fs: fix dereference of stale list iterator after loop body This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.14 by commit...
GSD-2022-1002690 f2fs: fix dereference of stale list iterator after loop body
f2fs: fix dereference of stale list iterator after loop body This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.3 by commit...
GSD-2022-1002652 misc: fastrpc: fix list iterator in fastrpc_req_mem_unmap_impl
misc: fastrpc: fix list iterator in fastrpcreqmemunmapimpl This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.3 by commit...
MGASA-2022-0234 Updated php packages fix security vulnerability
CLI -Fixed bug 8575 CLI closes standard streams too early. Core -Fixed Haiku ZTS builds. Date -Fixed bug 8471 Segmentation fault when converting immutable and mutable DateTime instances created using reflection. php-fpm - Fixed bug 72185 writes empty fcgi record causing nginx 502. Mysqlnd - Fixed...
GHSA-QQMC-HWQP-8G2W Use after free in lru crate
Lru crate has use after free vulnerability. Lru crate has two functions for getting an iterator. Both iterators give references to key and value. Calling specific functions, like pop, will remove and free the value, and but it's still possible to access the reference of value which is already...
Use after free in lru crate
Lru crate has use after free vulnerability. Lru crate has two functions for getting an iterator. Both iterators give references to key and value. Calling specific functions, like pop, will remove and free the value, and but it's still possible to access the reference of value which is already...