Exploit for Out-of-bounds Write in Polkit_Project Polkit

CVE-2021-4034 Precompiled builds for CVE-2021-4034. Of course...

CVE-2021-46328

Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via the component libcstartmain...

CVE-2021-46328

Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via the component libcstartmain...

Moddable SDK 缓冲区错误漏洞

Moddable SDK is a software development kit SDK for IoT embedded software development from Moddable, U.S. Moddable SDK in v11.5.0 is vulnerable to a heap buffer overflow vulnerability stemming from a boundary error in component libcstartmain when handling untrusted input. A remote attacker could...

Out-of-bounds Write in nix

On certain platforms, if a user has more than 16 groups, the nix::unistd::getgrouplist function will call the libc getgrouplist function with a length parameter greater than the size of the buffer it provides, resulting in an out-of-bounds write and memory corruption. The libc getgrouplist functi...

GHSA-76W9-P8MG-J927 Out-of-bounds Write in nix

On certain platforms, if a user has more than 16 groups, the nix::unistd::getgrouplist function will call the libc getgrouplist function with a length parameter greater than the size of the buffer it provides, resulting in an out-of-bounds write and memory corruption. The libc getgrouplist functi...

PHP 5.3.x <= 5.3.10 'libc/regcomp' Multiple Vulnerabilities - BSD

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

CVE-2021-29860

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the libc.a library to expose sensitive information. IBM X-Force ID: 206084...

AIX (IJ34081)

The version of AIX installed on the remote host is prior to APAR IJ34081. It is, therefore, affected by a vulnerability as referenced in the IJ34081 advisory. - IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the libc.a library to expose...

AIX (IJ35673)

The version of AIX installed on the remote host is prior to APAR IJ35673. It is, therefore, affected by a vulnerability as referenced in the IJ35673 advisory. - IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the libc.a library to expose...

AIX (IJ33560)

The version of AIX installed on the remote host is prior to APAR IJ33560. It is, therefore, affected by a vulnerability as referenced in the IJ33560 advisory. - IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the libc.a library to expose...

Vulnerability in libc affects AIX

IBM SECURITY ADVISORY First Issued: Tue Nov 16 13:38:36 CST 2021 |Updated: Fri Mar 17 15:26:09 CDT 2023 |Update: Corrected the affected upper fileset levels for AIX 7.1 TL5 | to show that SP11 is affected. Added iFix for 7.1 TL5 SP11. The most recent version of this document is available here:...

glibc security, bug fix, and enhancement update

An update is available for glibc. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The glibc packages provide the standard C libraries libc, POSIX thread librarie...

RUSTSEC-2021-0119 Out-of-bounds write in nix::unistd::getgrouplist

On certain platforms, if a user has more than 16 groups, the nix::unistd::getgrouplist function will call the libc getgrouplist function with a length parameter greater than the size of the buffer it provides, resulting in an out-of-bounds write and memory corruption. The libc getgrouplist functi...

Out-of-bounds write in nix::unistd::getgrouplist

On certain platforms, if a user has more than 16 groups, the nix::unistd::getgrouplist function will call the libc getgrouplist function with a length parameter greater than the size of the buffer it provides, resulting in an out-of-bounds write and memory corruption. The libc getgrouplist functi...

Security Bulletin:Multiple vulnerabilities fixed in IBM Security Verify Bridge - Docker

Summary Multiple vulnerabilities fixed in IBM Security Verify Bridge - Docker Vulnerability Details CVEID: CVE-2021-3450 DESCRIPTION: OpenSSL could allow a remote attacker to bypass security restrictions, caused by a a missing check in the validation logic of X.509 certificate chains by the...

Ubuntu 18.04 LTS / 20.04 LTS : c-ares vulnerability (USN-5034-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5034-1 advisory. Philipp Jeitner and Haya Shulman discovered that c-ares incorrectly validated certain hostnames returned by DNS servers. A remote attacker could...

CVE-2021-35942

The wordexp function in the GNU C Library aka glibc through 2.33 may crash or read arbitrary memory in parseparam in posix/wordexp.c when called with an untrusted, crafted pattern, potentially resulting in a denial of service or disclosure of information. This occurs because atoi was used but...

Solaris SunSSH 11.0 x86 - libpam Remote Root (3)

Exploit Title: Solaris SunSSH 11.0 x86 - libpam Remote Root 3 Exploit Author: Nathaniel Singer, Joe Rozner Date: 09/11/2020 CVE: 2020-14871 Vulnerable Versions: Oracle Solaris: 9 some releases, 10 all releases, 11.0 Description: CVE-2020-14871 is a critical pre-authentication via SSH stack-based...

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2021-1790)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...