UBUNTU-CVE-2022-42703

mm/rmap.c in the Linux kernel before 5.19.7 has a use-after-free related to leaf anonvma double reuse...

CVE-2022-42703

mm/rmap.c in the Linux kernel before 5.19.7 has a use-after-free related to leaf anonvma double reuse...

The vulnerability of the leaf_hdr_load_raw() function in the internal/dcraw_common.cpp component of the LibRaw image processing library allows a hacker to cause a service failure.

The vulnerability of the leafhdrloadraw function in the internal/dcrawcommon.cpp component of the LibRaw image processing library is related to pointer dereferencing errors. Exploiting this vulnerability allows an attacker to cause service failures...

leafmarketing.com.au Cross Site Scripting vulnerability OBB-2833796

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2021-28710

certain VT-d IOMMUs may not work in shared page table mode For efficiency reasons, address translation control structures page tables may and, on suitable hardware, by default will be shared between CPUs, for second-level translation EPT, and IOMMUs. These page tables are presently set up to alwa...

CVE-2021-28710

certain VT-d IOMMUs may not work in shared page table mode For efficiency reasons, address translation control structures page tables may and, on suitable hardware, by default will be shared between CPUs, for second-level translation EPT, and IOMMUs. These page tables are presently set up to alwa...

Google Warns of a New Way Hackers Can Make Malware Undetectable on Windows

Cybersecurity researchers have disclosed a novel technique adopted by a threat actor to deliberately evade detection with the help of malformed digital signatures of its malware payloads. "Attackers created malformed code signatures that are treated as valid by Windows but are not able to be...

The vulnerability of the read_yin_leaf() function in the syntax analyzer and tools of the YANG data modeling language Libyang, related to an unvalidated return value, allows attackers to trigger service failures.

The vulnerability of the readyinleaf function in the syntax analyzer and data modeling tool of the YANG Libyang language is related to the lack of checking for NULL values in retval-extr. Exploiting this vulnerability could allow a malicious actor to cause service failures...

leafkit 跨站脚本漏洞

leafkit is a software application. Use Swift to create modular server-side software. A cross-site scripting vulnerability exists in Leafkit versions prior to 1.3.0, which affects any user who passes unprocessed data to a Leaf variable tag.Leaf does not escape any strings passed as variables to th...

UVI-2021-1000802 sch_htb: fix refcount leak in htb_parent_to_leaf_offload

schhtb: fix refcount leak in htbparenttoleafoffload This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.10 by commit...

Denial of Service in Leaf EV (car) version 2018 SV

In Nissan Leaf EV car version 2018 SV a Denial of Service exists in the Head Unit Display that can be attacked via Local Access resulting in Denial of Service HUD being disabled...

GSD-2021-1000008 Denial of Service in Leaf EV (car) version 2018 SV

In Nissan Leaf EV car version 2018 SV a Denial of Service exists in the Head Unit Display that can be attacked via Local Access resulting in Denial of Service HUD being disabled...

DEBIAN-CVE-2021-28906

In function readyinleaf in libyang extr is NULL. In some cases, it can be NULL, which leads to the operation of retval-extr-flags that results in a crash...

UBUNTU-CVE-2021-28906

In function readyinleaf in libyang extr is NULL. In some cases, it can be NULL, which leads to the operation of retval-extr-flags that results in a crash...

libyang 安全漏洞

libyang is a YANG data modeling language parser and toolkit written in C. It can be used as a toolkit for data modeling. A security vulnerability exists in libyang version 1.0.225 and earlier versions, which originates in readyinleaf, which does not check if the value of revision is NULL. no...

Fedora: Security Advisory for perl-Image-ExifTool (FEDORA-2021-e3d8833d36)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

x86 PV guest INVLPG-like flushes may leave stale TLB entries

ISSUE DESCRIPTION x86 PV guest kernels may use hypercalls with INVLPG-like behavior to invalidate TLB entries even after changes to non-leaf page tables. Such changes to non-leaf page tables will, however, also render stale possible TLB entries created by Xen's internal use of linear page tables ...

leaf-work.com Cross Site Scripting vulnerability OBB-1296979

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Leaf Node Weaknesses in Bitcoin Merkle Tree Designs

Merkle tree in Chinese is called Merkle tree, is a kind of tree in computer data structure. The vulnerability stems from certain weaknesses in the design of leaf nodes in a Merkle tree. An attacker can exploit this vulnerability to modify arbitrary payment amounts...

Juniper Networks Junos OS Input Validation Error Vulnerability (CNVD-2020-22987)

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. An input validation error vulnerability exists in the NDP proxy function of the EVPN leaf node in Juniper Networks Junos O...