EulerOS 2.0 SP10 : open-iscsi (EulerOS-SA-2023-1958)

According to the versions of the open-iscsi package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is...

EulerOS 2.0 SP10 : open-iscsi (EulerOS-SA-2023-1980)

According to the versions of the open-iscsi package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is...

Vim < 9.0.1499 DoS

According to its version, the version of Vim installed on the remote host is prior to 9.0.1499. It is, therefore affected by a denial of service vulnerability via an out-of-range pointer offset. Note that Nessus has not tested for this issue but has instead relied only on the application's...

kernel: drm/i915/reset: Fix error_state_read ptr + offset use

In the Linux kernel, the following vulnerability has been resolved: drm/i915/reset: Fix errorstateread ptr + offset use Fix our pointer offset usage in errorstateread when there is no i915gpucoredump but buf offset is non-zero. This fixes a kernel page fault can happen when multiple tests are...

OESA-2023-1278 vim security update

Vim is an advanced text editor that seeks to provide the power of the de-facto Unix editor 'Vi', with a more complete feature set. Vim is a highly configurable text editor built to enable efficient text editing. It is an improved version of the vi editor distributed with most UNIX systems. Securi...

kernel: drm/i915/reset: Fix error_state_read ptr + offset use

In the Linux kernel, the following vulnerability has been resolved: drm/i915/reset: Fix errorstateread ptr + offset use Fix our pointer offset usage in errorstateread when there is no i915gpucoredump but buf offset is non-zero. This fixes a kernel page fault can happen when multiple tests are...

kernel: phy: qcom-qmp-combo: fix NULL-deref on runtime resume

In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp-combo: fix NULL-deref on runtime resume Commit fc64623637da "phy: qcom-qmp-combo,usb: add support for separate PCSUSB region" started treating the PCSUSB registers as potentially separate from the PCS registers but...

kernel: loop: Check for overflow while configuring loop

In the Linux kernel, the following vulnerability has been resolved: loop: Check for overflow while configuring loop The userspace can configure a loop using an ioctl call, wherein a configuration of type loopconfig is passed see loioctl's case on line 1550 of drivers/block/loop.c. This proceeds t...

freerdp: undefined behaviour in zgfx decoder

An out-of-bounds read vulnerability was discovered in FreeRDP due to missing a range check for input offset index in the ZGFX decoder. A malicious server can trick a FreeRDP based client to read out-of-bound data and try to decode it, resulting in a crash...

SUSE CVE-2023-2426

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 9.0.1499...

CVE-2023-2426

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 9.0.1499...

CVE-2023-2426

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 9.0.1499...

CVE-2023-2426

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 9.0.1499...

UBUNTU-CVE-2023-2426

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 9.0.1499...

CVE-2023-2426 Use of Out-of-range Pointer Offset in vim/vim

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 9.0.1499...

CVE-2023-2426

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 9.0.1499...

Vim 安全漏洞

Vim is a cross-platform text editor. A buffer overflow vulnerability exists in versions prior to Vim 9.0.1499, which stems from an out-of-range pointer offset in mbyte.c's mbcharlen, and can be exploited by an attacker to cause a denial of service...

CVE-2023-2426 Use of Out-of-range Pointer Offset in vim/vim

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 9.0.1499...

CVE-2023-2426

CVE-2023-2426 affects the Vim editor (vim/vim) prior to 9.0.1499. The provided connected documents confirm a vulnerability in Vim with the root cause described as an out-of-range pointer offset in mb_charlen, leading to potential denial of service. Public advisories indicate remediation by upgrad...

Incorrect implementation of RecordParser.readKeyValue()

Lines of code Vulnerability details Impact RecordParser.readKeyValue returns a wrong value if the terminator not found. This is a fundamental library and any contract using it may experience unexpected errors and problems due to this bug. Proof of Concept The implementation logic of...