tomcat: Late application of security constraints can lead to resource exposure for unauthorised users

Security constraints defined by annotations of Servlets in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 were only applied once a Servlet had been loaded. Because security constraints defined in this way apply to the URL pattern and any URLs below that...

OpenJDK: GTK library loading use-after-free (AWT, 8185325)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: AWT. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multip...

CVE-2017-17131

Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V600R006C00; TE50 V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00; VP9660 V500R002C10 have an DoS vulnerability due to insufficient validation of the parameter when a putty comment key is loaded. An authenticated...

Cimg heap buffer out-of-bounds read vulnerability (CNVD-2018-05449)

CImg is an open source C++ tool library for image processing . A heap buffer out-of-bounds read vulnerability exists in the 'loadbmp' function of the CImg.h file in CImg version 220. No detailed vulnerability details are provided at this time...

UBUNTU-CVE-2018-7641

An issue was discovered in CImg v.220. A heap-based buffer over-read in loadbmp in CImg.h occurs when loading a crafted bmp image, a different vulnerability than CVE-2018-7588. This is in a "32 bits colors" case, aka case 32...

UBUNTU-CVE-2018-7637

An issue was discovered in CImg v.220. A heap-based buffer over-read in loadbmp in CImg.h occurs when loading a crafted bmp image, a different vulnerability than CVE-2018-7588. This is in a "16 colors" case, aka case 4...

UBUNTU-CVE-2018-7639

An issue was discovered in CImg v.220. A heap-based buffer over-read in loadbmp in CImg.h occurs when loading a crafted bmp image, a different vulnerability than CVE-2018-7588. This is in a "16 bits colors" case, aka case 16...

DEBIAN-CVE-2018-7640

An issue was discovered in CImg v.220. A heap-based buffer over-read in loadbmp in CImg.h occurs when loading a crafted bmp image, a different vulnerability than CVE-2018-7588. This is in a Monochrome case, aka case 1...

UBUNTU-CVE-2018-7638

An issue was discovered in CImg v.220. A heap-based buffer over-read in loadbmp in CImg.h occurs when loading a crafted bmp image, a different vulnerability than CVE-2018-7588. This is in a "256 colors" case, aka case 8...

Command Injection Vulnerability in Multiple Citrix Products

Citrix NetScaler Application Delivery Controller and others are products of Citrix Systems, Inc.Citrix NetScaler Application Delivery Controller ADC. NetScaler ADC is a suite of service and application delivery solutions Application Delivery Controller; NetScaler Gateway is a secure remote access...

Cimg Double Release Vulnerability

CImg is an open source C++ tool library for image processing . A double release vulnerability exists in the loadbmp file of the CImg.h file in CImg version 220. No details of the vulnerability are provided at this time...

Cimg Denial of Service Vulnerability

CImg is an open source C++ tool library for image processing . A security vulnerability exists in the loadbmp file of the CImg.h file in CImg version 220. An attacker can exploit this vulnerability to cause a denial of service with a specially crafted bmp image...

DEBIAN-CVE-2018-7589

An issue was discovered in CImg v.220. A double free in loadbmp in CImg.h occurs when loading a crafted bmp image...

DEBIAN-CVE-2018-7587

An issue was discovered in CImg v.220. DoS occurs when loading a crafted bmp image that triggers an allocation failure in loadbmp in CImg.h...

DEBIAN-CVE-2018-7550

The loadmultiboot function in hw/i386/multiboot.c in Quick Emulator aka QEMU allows local guest OS users to execute arbitrary code on the QEMU host via a mhloadendaddr value greater than mhbssendaddr, which triggers an out-of-bounds read or write memory access...

CVE-2018-5314

Command injection vulnerability in Citrix NetScaler ADC and NetScaler Gateway 11.0 before build 70.16, 11.1 before build 55.13, and 12.0 before build 53.13; and the NetScaler Load Balancing instance distributed with NetScaler SD-WAN/CloudBridge 4000, 4100, 5000 and 5100 WAN Optimization Edition...

GNU Binutils Binary File Descriptor Library Denial of Service Vulnerability (CNVD-2018-05200)

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...

UBUNTU-CVE-2018-7589

An issue was discovered in CImg v.220. A double free in loadbmp in CImg.h occurs when loading a crafted bmp image...

ALPINE-CVE-2018-7570

The assignfilepositionsfornonloadsections function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service NULL pointer dereference and application crash via an ELF file with a RELRO segment that lack...

CVE-2018-7570

The assignfilepositionsfornonloadsections function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service NULL pointer dereference and application crash via an ELF file with a RELRO segment that lack...