CVE-2022-36008 Message length overflow in frontier

Frontier is Substrate's Ethereum compatibility layer. A security issue was discovered affecting parsing of the RPC result of the exit reason in case of EVM reversion. In release build, this would cause the exit reason being incorrectly parsed and returned by RPC. In debug build, this would cause ...

Denial Of Service (DoS)

pocketmine/pocketmine-mp is vulnerable to denial of service. The vulnerability exists in the chat function of Player.php due to the lack of message length checks, allowing an attacker to crash the application by providing large messages with many newlines...

PT-2022-10425 · Qualcomm · Snapdragon Connectivity +7

Name of the Vulnerable Software and Affected Versions: Snapdragon Auto affected versions not specified Snapdragon Compute affected versions not specified Snapdragon Connectivity affected versions not specified Snapdragon Consumer IOT affected versions not specified Snapdragon Industrial IOT...

Important: linuxptp security update

The linuxptp packages provide Precision Time Protocol PTP implementation for Linux according to IEEE standard 1588 for Linux. The dual design goals are to provide a robust implementation of the standard and to use the most relevant and modern Application Programming Interfaces API offered by the...

GSD-2021-1001065 ethtool: strset: fix message length calculation

ethtool: strset: fix message length calculation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.13 by commit...

UVI-2021-1001065 ethtool: strset: fix message length calculation

ethtool: strset: fix message length calculation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.13 by commit...

GSD-2021-1000984 ethtool: strset: fix message length calculation

ethtool: strset: fix message length calculation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.46 by commit...

UVI-2021-1000984 ethtool: strset: fix message length calculation

ethtool: strset: fix message length calculation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.46 by commit...

Remote code execution

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. A Message Length is not checked in the HiQnet Protocol, leading to remote code execution...

Qualcomm 芯片安全漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way of miniaturizing circuits mainly semiconductor devices, but also passive components, etc. and is often manufactured on the surface of semiconductor wafers. A security vulnerability exists in Qualcomm chips that stems from an incorrec...

openSUSE Security Update : the Linux Kernel (openSUSE-2021-532)

The openSUSE Leap 15.2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to be 0 leading...

PT-2021-2240 · Moodle +1 · Moodle +1

Name of the Vulnerable Software and Affected Versions: Moodle versions prior to 3.10.1 Moodle versions prior to 3.9.4 Moodle versions prior to 3.8.7 Moodle versions prior to 3.5.16 Description: The issue is related to a lack of character limit when sending messages in Moodle, which could result i...

Qualcomm Qualcomm Wlan Firmware Buffer Error Vulnerability

Qualcomm Wlan Firmware is a Bluetooth support firmware from Qualcomm, Inc. A buffer error vulnerability exists in Qualcomm WLAN Firmware, which results in a buffer over-read due to a failure to check the length of incoming messages. The following products and versions are affected: AQT1000, AR803...

Security Advisory YSA-2021-01 | Yubico

The yubihsm library, included in the yubihsm-shell project, does not properly validate the length of authenticated messages during device communication. A maliciously-crafted YubiHSM 2 device, or someone with access to traffic between the HSM and yubihsm library, could cause the yubihsm library t...

CVE-2020-24388

An issue was discovered in the sendsecuremsg function of yubihsm-shell through 2.0.2. The function does not validate the embedded length field of a message received from the device. This could lead to an oversized memcpy call that will crash the running process. This could be used by an attacker ...

OPENSUSE-SU-2020:1385-1 Security update for gettext-runtime

This update for gettext-runtime fixes the following issues: - Fix boo941629-unnessary-rpath-on-standard-path.patch bsc941629 - Added msgfmt-double-free.patch to fix a double free error CVE-2018-18751 bsc1113719 - Add patch msgfmt-reset-msg-length-after-remove.patch which does reset the length of...

OPENSUSE-SU-2020:1278-1 Security update for gettext-runtime

This update for gettext-runtime fixes the following issues: - Fix boo941629-unnessary-rpath-on-standard-path.patch bsc941629 - Added msgfmt-double-free.patch to fix a double free error CVE-2018-18751 bsc1113719 - Add patch msgfmt-reset-msg-length-after-remove.patch which does reset the length of...

libIEC61850 Integer Overflow Vulnerability

libIEC61850 is an open source GPLv3 implementation of the IEC 61850 client and server libraries. An integer underflow vulnerability exists in versions of libIEC61850 prior to 1.4.3, which can be exploited by an attacker to cause a heap buffer overflow, crash an application, or enable remote code...

SUSE-SU-2020:2296-1 Security update for gettext-runtime

This update for gettext-runtime fixes the following issues: - Fix boo941629-unnessary-rpath-on-standard-path.patch bsc941629 - Added msgfmt-double-free.patch to fix a double free error CVE-2018-18751 bsc1113719 - Add patch msgfmt-reset-msg-length-after-remove.patch which does reset the length of...

CVE-2019-15234

SHAREit through 4.0.6.177 does not check the full message length from the received packet header which is used to allocate memory for the next set of data. This could lead to a system denial of service due to uncontrolled memory allocation. This is different from CVE-2019-14941...