1039 matches found
ALBA-2021:0556 glibc bug fix and enhancement update
The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Bug Fixes and Enhancement...
Solaris 10 (SPARC) - 'dtprintinfo' Local Privilege Escalation (2)
Exploit Title: Solaris 10 1/13 SPARC - 'dtprintinfo' Local Privilege Escalation 2 Date: 2021-02-01 Exploit Author: Marco Ivaldi Vendor Homepage: https://www.oracle.com/solaris/solaris10/ Version: Solaris 10 Tested on: Solaris 10 1/13 SPARC / raptordtprintcheckdirsparc2.c - Solaris/SPARC FMT LPE...
CTF-All-In-One
This is a book about CTF Capture The Flag competitions, specifically the Pwn binary exploitation module. The book is written by Yang Cheng, a member of L-Team, and is aimed at beginners. It covers the basics of binary security, including x86/x64 platforms, Linux systems, and the basics of exploit...
[SECURITY] [DLA 2474-1] musl security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2474-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta December 01, 2020 https://wiki.debian.org/LTS -...
[ASA-202011-29] musl: arbitrary code execution
Arch Linux Security Advisory ASA-202011-29 ========================================== Severity: Medium Date : 2020-11-26 CVE-ID : CVE-2020-28928 Package : musl Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1287 Summary ======= The package musl before versio...
CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...
ALPINE-CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...
CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...
DEBIAN-CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...
Buffer overflow
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...
UBUNTU-CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...
CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...
CVE-2020-28928
The CVE-2020-28928 entry concerns musl libc up to version 1.2.1. The root cause is a mishandling in wcsnrtombs of destination buffer size when applying a source character limit, which can lead to an invalid write (buffer overflow) or an infinite loop depending on input, as documented in multiple ...
CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...
CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...
musl libc buffer error vulnerability
musl libc is musl open source an open source C language standard library . Mainly used for embedded systems and mobile devices and so on. A buffer error vulnerability exists in musl libc version 1.2.1 and earlier versions, which stems from wcsnrtombs incorrectly handling a specific combination of...
CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...
Ubuntu 20.10 : c-ares vulnerability (USN-4638-1)
The remote Ubuntu 20.10 host has packages installed that are affected by a vulnerability as referenced in the USN-4638-1 advisory. c-ares could be made to denial of service if it received a specially crafted DNS request. Tenable has extracted the preceding description block directly from the Ubun...
PT-2020-6698 · Musl Libc +3 · Musl Libc +3
Name of the Vulnerable Software and Affected Versions: musl libc versions 1.2.1 and earlier Description: The issue is related to the wcsnrtombs function in musl libc, which mishandles certain combinations of destination buffer size and source character limit. This can lead to an invalid write...
glibc: use-after-free in glob() function when expanding ~user
A use-after-free vulnerability was found in glibc in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially crafted path that, when processe...