Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:3806-1 Rating: important References: 1094840 1133021 1152489 1154353 1157177 1167773 1169263 1170269 1176940 1180749 1184924 1188601 1190523 1190795 1191628 1191790 1191851 1191958 1191961 1191980...

The vulnerability of Mediatek Command Queue driver in Android operating systems of Huawei mobile phones allows attackers to escalate their privileges.

The vulnerability of Mediatek’s Command Queue driver in Android operating systems of Huawei mobile phones involves the execution of write operations beyond the buffer in memory. Exploiting this vulnerability can allow attackers to gain increased privileges...

OPENSUSE-SU-2021:1501-1 Security update for the Linux Kernel

The openSUSE Leap 15.2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past jscSLE-22573 You can reenable via systemctl...

Design/Logic Flaw

Failure to flush the Translation Lookaside Buffer TLB of the I/O memory management unit IOMMU may lead an IO device to write to memory it should not be able to access, resulting in a potential loss of integrity...

freerdp: improper client input validation for gateway connections allows to overwrite memory

A flaw was found in the FreeRDP client when it fails to validate input data when using gateway connections. This flaw could allow a malicious gateway to send a specially crafted input to a client leading to an out of bounds write in client memory. The highest threat from this flaw is that it coul...

freerdp: improper region checks in all clients allow out of bound write to memory

A flaw was found in the FreeRDP client where it fails to validate input data when using connections with GDI or SurfaceCommands. This flaw could allow a malicious server sending graphics updates to a client to cause an out of bounds write in client memory using a specially crafted input. The...

freerdp: improper client input validation for gateway connections allows to overwrite memory

A flaw was found in the FreeRDP client when it fails to validate input data when using gateway connections. This flaw could allow a malicious gateway to send a specially crafted input to a client leading to an out of bounds write in client memory. The highest threat from this flaw is that it coul...

freerdp: improper region checks in all clients allow out of bound write to memory

A flaw was found in the FreeRDP client where it fails to validate input data when using connections with GDI or SurfaceCommands. This flaw could allow a malicious server sending graphics updates to a client to cause an out of bounds write in client memory using a specially crafted input. The...

Mozilla Firefox Security Advisory (MFSA2018-08) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

F5 Networks BIG-IP : libssh2 vulnerabilities (K90011301)

The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10.8 / 16.1.0. It is, therefore, affected by multiple vulnerabilities as referenced in the K90011301 advisory. CVE-2019-3856An integer overflow flaw, which could lead to an out of bounds write, was discovered in libss...

SUSE: Security Advisory (SUSE-SU-2020:2879-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

NewStart CGSL CORE 5.04 / MAIN 5.04 : libldb Vulnerability (NS-SA-2021-0106)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has libldb packages installed that are affected by a vulnerability: - A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can lead to an out-of-bounds memory write, leading to a crash o...

NewStart CGSL MAIN 6.02 : libldb Vulnerability (NS-SA-2021-0130)

The remote NewStart CGSL host, running version MAIN 6.02, has libldb packages installed that are affected by a vulnerability: - A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can lead to an out-of-bounds memory write, leading to a crash of the LDAP...

The vulnerabilities of the decode_mcu() and decode_mcu_fast() functions in the libjpeg-turbo library allow a hacker to cause a service failure.

The vulnerability of the decodemcu and decodemcufast functions in the libjpeg-turbo library arises from the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause a service failure by using a specially crafted file...

Ubuntu 20.04 LTS : Linux kernel (Azure) vulnerabilities (USN-5120-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5120-1 advisory. It was discovered that the f2fs file system in the Linux kernel did not properly validate metadata in some situations. An attacker could use this to...

CVE-2021-41159

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. All FreeRDP clients prior to version 2.4.1 using gateway connections /gt:rpc fail to validate input data. A malicious gateway might allow client memory to be written out of bounds. This issue h...

DEBIAN-CVE-2021-41160

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. In affected versions a malicious server might trigger out of bound writes in a connected client. Connections using GDI or SurfaceCommands to send graphics updates to the client might send 0...

CVE-2021-41159

A flaw was found in the FreeRDP client when it fails to validate input data when using gateway connections. This flaw could allow a malicious gateway to send a specially crafted input to a client leading to an out of bounds write in client memory. The highest threat from this flaw is that it coul...

Ubuntu 20.04 LTS : Linux kernel (OEM) vulnerabilities (USN-5106-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5106-1 advisory. Valentina Palmiotti discovered that the iouring subsystem in the Linux kernel could be coerced to free adjacent memory. A local attacker could use this t...

CVE-2021-25479

A possible heap-based buffer overflow vulnerability in Exynos CP Chipset prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution...