CVE-2018-15375 Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers Arbitrary Memory Write Vulnerabilities

A vulnerability in the embedded test subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers could allow an authenticated, local attacker to write arbitrary values to arbitrary locations in the memory space of an affected device. The vulnerability is due to the...

CVE-2018-15376 Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers Arbitrary Memory Write Vulnerabilities

A vulnerability in the embedded test subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers could allow an authenticated, local attacker to write arbitrary values to arbitrary locations in the memory space of an affected device. The vulnerability is due to the...

CVE-2018-15375 Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers Arbitrary Memory Write Vulnerabilities

A vulnerability in the embedded test subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers could allow an authenticated, local attacker to write arbitrary values to arbitrary locations in the memory space of an affected device. The vulnerability is due to the...

Google Patches Critical Vulnerabilities in Android OS

Google patched six critical remote code execution flaws in its Android operating system as part of its October Android Security Bulletin. Four of those remote code execution flaws are tied to Android’s Media framework and impact a wide range of Android devices including Google’s Pixel and Nexus...

SUSE-SU-2018:2978-1 Security update for unzip

This update for unzip fixes the following security issues: - CVE-2014-9913: Specially crafted zip files could trigger invalid memory writes possibly resulting in DoS or corruption bsc1013993 - CVE-2015-7696: Specially crafted zip files with password protection could trigger a crash and lead to...

openSUSE Security Update : nodejs8 (openSUSE-2018-1047)

This update for nodejs8 to version 8.11.4 fixes the following issues : Security issues fixed : - CVE-2018-12115: Fixed an out-of-bounds memory write in Buffer that could be used to write to memory outside of a Buffer's memory space buffer bsc1105019 - Upgrade to OpenSSL 1.0.2p, which fixed : -...

Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers Arbitrary Memory Write Vulnerabilities

Multiple vulnerabilities in the embedded test subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers could allow an authenticated, local attacker to write arbitrary values to arbitrary locations in the memory space of an affected device. The vulnerabilities ar...

Security update for nodejs8 (moderate)

This update for nodejs8 to version 8.11.4 fixes the following issues: Security issues fixed: - CVE-2018-12115: Fixed an out-of-bounds memory write in Buffer that could be used to write to memory outside of a Buffer's memory space buffer bsc1105019 - Upgrade to OpenSSL 1.0.2p, which fixed: -...

SUSE-SU-2018:2812-1 Security update for nodejs8

This update for nodejs8 to version 8.11.4 fixes the following issues: Security issues fixed: - CVE-2018-12115: Fixed an out-of-bounds memory write in Buffer that could be used to write to memory outside of a Buffer's memory space buffer bsc1105019 - Upgrade to OpenSSL 1.0.2p, which fixed: -...

Netwide Assembler (NASM) Invalid Memory Write Vulnerability

Netwide Assembler NASM is a Linux-based assembler that creates binaries and writes bootloaders. An invalid memory write vulnerability exists in the 'expandsmacro' function of the preproc.c file in NASM version 2.14rc15, which can be exploited by an attacker to cause a denial of service invalid...

CVE-2018-16999

Netwide Assembler NASM 2.14rc15 has an invalid memory write segmentation fault in expandsmacro in preproc.c, which allows attackers to cause a denial of service via a crafted input file...

DEBIAN-CVE-2018-16999

Netwide Assembler NASM 2.14rc15 has an invalid memory write segmentation fault in expandsmacro in preproc.c, which allows attackers to cause a denial of service via a crafted input file...

CVE-2018-16999

Netwide Assembler NASM 2.14rc15 has an invalid memory write segmentation fault in expandsmacro in preproc.c, which allows attackers to cause a denial of service via a crafted input file...

CVE-2018-16999

Netwide Assembler NASM 2.14rc15 has an invalid memory write segmentation fault in expandsmacro in preproc.c, which allows attackers to cause a denial of service via a crafted input file...

Input validation

Netwide Assembler NASM 2.14rc15 has an invalid memory write segmentation fault in expandsmacro in preproc.c, which allows attackers to cause a denial of service via a crafted input file...

UBUNTU-CVE-2018-16999

Netwide Assembler NASM 2.14rc15 has an invalid memory write segmentation fault in expandsmacro in preproc.c, which allows attackers to cause a denial of service via a crafted input file...

CVE-2018-16999

Netwide Assembler NASM 2.14rc15 has an invalid memory write segmentation fault in expandsmacro in preproc.c, which allows attackers to cause a denial of service via a crafted input file...

CVE-2018-16999

CVE-2018-16999 affects Netwide Assembler (NASM) up to version 2.14rc15, where an invalid memory write (segmentation fault) in expand_smacro (preproc.c) can cause a denial of service with a crafted input file. Connected advisories corroborate the issue across multiple distributions (openSUSE/Magei...

CVE-2018-16999

Netwide Assembler NASM 2.14rc15 has an invalid memory write segmentation fault in expandsmacro in preproc.c, which allows attackers to cause a denial of service via a crafted input file...

SUSE-SU-2018:2647-1 Security update for nodejs4

This update for nodejs4 fixes the following issues: Security issues fixed: - CVE-2018-12115: Fixed an out-of-bounds memory write in Buffer that could be used to write to memory outside of a Buffer's memory space buffer bsc1105019 - Upgrade to OpenSSL 1.0.2p, which fixed: - CVE-2018-0732: Client...