1121 matches found
BIT-CILIUM-OPERATOR-2023-39347 Cilium NetworkPolicy bypass via pod labels
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. An attacker with the ability to update pod labels can cause Cilium to apply incorrect network policies. This issue arises due to the fact that on pod update, Cilium incorrectly uses user-provided pod labels...
Type Confusion
libxmljs is vulnerable to Type Confusion. The vulnerability is caused by parsing a specially crafted XML documented due to invoking the namespaces function on a grand-child node that refers to an entity. This allows an attacker to execute arbitrary code, or cause Denial of Service DoS...
Type Confusion
libxmljs2 is vulnerable to Type Confusion. The vulnerability is caused by parsing a specially crafted XML documented due to invoking the namespaces function on a grand-child node that refers to an entity. This allows an attacker to execute arbitrary code, or cause Denial of Service DoS...
GHSA-78H3-PG4X-J8CV libxmljs2 vulnerable to type confusion when parsing specially crafted XML
libxmljs2 is vulnerable to a type confusion vulnerability when parsing a specially crafted XML while invoking the namespaces function which invokes XmlNode::getlocalnamespaces on a grand-child of a node that refers to an entity. This vulnerability can lead to denial of service and remote code...
GHSA-MG49-JQGW-GCJ6 libxmljs vulnerable to type confusion when parsing specially crafted XML
libxmljs is vulnerable to a type confusion vulnerability when parsing a specially crafted XML while invoking the namespaces function which invokes wrapxmlNodensDefget on a grand-child of a node that refers to an entity. This vulnerability can lead to denial of service and remote code execution...
CVE-2024-34394
libxmljs2 is vulnerable to a type confusion vulnerability when parsing a specially crafted XML while invoking the namespaces function which invokes XmlNode::getlocalnamespaces on a grand-child of a node that refers to an entity. This vulnerability can lead to denial of service and remote code...
CVE-2024-34392
libxmljs is vulnerable to a type confusion vulnerability when parsing a specially crafted XML while invoking the namespaces function which invokes wrapxmlNodensDefget on a grand-child of a node that refers to an entity. This vulnerability can lead to denial of service and remote code execution...
CVE-2024-34394 libxmljs2 namespaces type confusion RCE
libxmljs2 is vulnerable to a type confusion vulnerability when parsing a specially crafted XML while invoking the namespaces function which invokes XmlNode::getlocalnamespaces on a grand-child of a node that refers to an entity. This vulnerability can lead to denial of service and remote code...
CVE-2024-34392 libxmljs namespaces type confusion RCE
libxmljs is vulnerable to a type confusion vulnerability when parsing a specially crafted XML while invoking the namespaces function which invokes wrapxmlNodensDefget on a grand-child of a node that refers to an entity. This vulnerability can lead to denial of service and remote code execution...
PT-2024-25855 · Libxmljs2 · Libxmljs2
Name of the Vulnerable Software and Affected Versions: libxmljs2 affected versions not specified Description: The issue is related to a type confusion vulnerability that occurs when parsing a specially crafted XML. This happens when the namespaces function is invoked on a grand-child of a node th...
PT-2024-25853 · Libxmljs · Libxmljs
Name of the Vulnerable Software and Affected Versions: libxmljs affected versions not specified Description: The issue is related to a type confusion vulnerability that occurs when parsing a specially crafted XML. This happens when the namespaces function is invoked on a grand-child of a node tha...
K000139430: Linux kernel vulnerability CVE-2024-1086
Security Advisory Description A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be exploited to achieve local privilege escalation. The nftverdictinit function allows positive values as drop error within the hook verdict, and hence the nfhookslow function can...
kernel: net: fix UaF in netns ops registration error path
A use-after-free vulnerability was found in the Linux kernel in the opsinit function, where improper error handling can result in an out-of-bounds error. This issue occurs if the function netassigngeneric fails and the error-handling code attempts to clean up a pointer that was never properly...
@cardinal/namespaces-components (>=4.1.0 <=5.0.0), @frakters/fusion-pool (>=1.0.0 <=1.0.4) +1 more potentially affected by CVE-2024-30253 via @solana/web3.js (=1.32.0)
@solana/web3.js NPM version =1.32.0 is affected by a known vulnerability. The following packages have a transitive dependency on @solana/web3.js and may be impacted: - @cardinal/namespaces-components =4.1.0, =1.0.0, =0.0.29, =0.0.32 Source cves: CVE-2024-30253 Source advisory:...
PT-2024-24340 · Argo Cd · Argo Cd
Name of the Vulnerable Software and Affected Versions: Argo CD versions prior to 2.10.7 Argo CD versions prior to 2.9.12 Argo CD versions prior to 2.8.16 Description: Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. The API server does not enforce project sourceNamespaces...
PT-2024-40675 · Git +1 · Libxml2
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-use-after-free READ 8 crash occurred, involving the xmlDOMWrapNSNormAcquireNormalizedNs and xmlDOMWrapReconcileNamespaces functions in the api.c...
Exploit for Use After Free in Linux Linux_Kernel
CVE-2024-1086 Universal local privilege escalation Proof-of-C...
VulnCheck KEV: CVE-2021-22555
Linux Kernel contains a heap out-of-bounds write vulnerability that could allow an attacker to gain privileges or cause a DoS via heap memory corruption through user name space...
[SECURITY] Fedora 40 Update: xerces-j2-2.12.2-10.fc40
Welcome to the future! Xerces2 is the next generation of high performance, fully compliant XML parsers in the Apache Xerces family. This new version of Xerces introduces the Xerces Native Interface XNI, a complete framework for building parser components and configurations that is extremely modul...
kernel: use-after-free in tc_new_tfilter() in net/sched/cls_api.c
A use-after-free vulnerability was found in the tcnewtfilter function in net/sched/clsapi.c in the Linux kernel. The availability of local, unprivileged user namespaces allows privilege escalation...