kernel: cifs: fix underflow in parse_server_interfaces()

In the Linux kernel, the following vulnerability has been resolved: cifs: fix underflow in parseserverinterfaces In this loop, we step through the buffer and after each item we check if the sizeleft is greater than the minimum size we need. However, the problem is that "bytesleft" is type ssizet...

UBUNTU-CVE-2024-42353

WebOb provides objects for HTTP requests and responses. When WebOb normalizes the HTTP Location header to include the request hostname, it does so by parsing the URL that the user is to be redirected to with Python's urlparse, and joining it to the base URL. urlparse however treats a // at the...

The vulnerability of the GenericReader::ParseNumber() function in the RapidJSON library for processing JSON files on Windows operating systems allows a malicious individual to escalate their privileges.

The vulnerability of the GenericReader::ParseNumber function in the RapidJSON library for processing JSON files on Windows operating systems is related to integer overflow. Exploiting this vulnerability can allow an attacker to enhance their privileges through the use of a specially created...

orc: Stack-based buffer overflow vulnerability in ORC

Stack-based buffer overflow vulnerability exists in orcparse.c of ORC. If a developer is tricked to process a specially crafted file with the affected ORC compiler, an arbitrary code may be executed on the developer's build environment. This may lead to compromise of developer machines or CI buil...

kernel: net: ieee802154: fix null deref in parse dev addr

In the Linux kernel, the following vulnerability has been resolved: net: ieee802154: fix null deref in parse dev addr Fix a logic error that could result in a null deref if the user sets the mode incorrectly for the given addr type...

kernel: net: ieee802154: fix null deref in parse dev addr

In the Linux kernel, the following vulnerability has been resolved: net: ieee802154: fix null deref in parse dev addr Fix a logic error that could result in a null deref if the user sets the mode incorrectly for the given addr type...

kernel: use-after-free in kv_parse_power_table

A use-after-free flaw was found in kvparsepowertable in drivers/amd/pm in the Linux kernel. When ps equals NULL, kvparsepowertable frees adev-pm.dpm.ps. The adev-pm.dpm.ps is used in the loop of kvdpmfini after its first free in kvparsepowertable, causing a use-after-free problem...

The vulnerability of the taprio_parse_mqprio_opt() function in the network/scheduler subsystem of the Linux operating system allows a attacker to compromise the integrity and accessibility of protected information.

The vulnerability of the taprioparsemqprioopt function in the net/sched/schtaprio.c module, part of the network scheduling subsystem in the Linux operating system’s kernel, is related to insufficient validation of data received from users. Exploiting this vulnerability could allow an attacker to...

The vulnerability of the parse_btf_field() function in the Linux kernel debugging subsystem allows a attacker to cause a service failure.

The vulnerability of the parsebtffield function in the kernel/trace/traceprobe.c module of the Linux kernel’s tracing subsystem is related to improper code validation for the btffindstructmember function’s return value. Exploiting this vulnerability could allow an attacker to trigger a service...

RUSTSEC-2024-0362 Stack overflow when parsing specially crafted JSON ABI strings

Affected versions of the alloy-json-abi crate did not properly handle parsing of malformatted JSON ABI strings. The JsonAbi::parse method can be tricked into a stack overflow when processing specially crafted input. This stack overflow can lead to a crash of the application using this crate,...

DEBIAN-CVE-2024-42160

In the Linux kernel, the following vulnerability has been resolved: f2fs: check validation of fault attrs in f2fsbuildfaultattr - It missed to check validation of fault attrs in parseoptions, let's fix to add check condition in f2fsbuildfaultattr. - Use f2fsbuildfaultattr in sbistore to clean up...

CVE-2024-42160

In the Linux kernel, the following vulnerability has been resolved: f2fs: check validation of fault attrs in f2fsbuildfaultattr - It missed to check validation of fault attrs in parseoptions, let's fix to add check condition in f2fsbuildfaultattr. - Use f2fsbuildfaultattr in sbistore to clean up...

CVE-2024-42160 f2fs: check validation of fault attrs in f2fs_build_fault_attr()

In the Linux kernel, the following vulnerability has been resolved: f2fs: check validation of fault attrs in f2fsbuildfaultattr - It missed to check validation of fault attrs in parseoptions, let's fix to add check condition in f2fsbuildfaultattr. - Use f2fsbuildfaultattr in sbistore to clean up...

ALPINE-CVE-2024-40897

Stack-based buffer overflow vulnerability exists in orcparse.c of ORC versions prior to 0.4.39. If a developer is tricked to process a specially crafted file with the affected ORC compiler, an arbitrary code may be executed on the developer's build environment. This may lead to compromise of...

DEBIAN-CVE-2024-40897

Stack-based buffer overflow vulnerability exists in orcparse.c of ORC versions prior to 0.4.39. If a developer is tricked to process a specially crafted file with the affected ORC compiler, an arbitrary code may be executed on the developer's build environment. This may lead to compromise of...

mvel: TimeOut error when calling ParseTools.subCompileExpression() function

DISPUTED A vulnerability was found in the ParseTools.subCompileExpression method in the Mvel package. This vulnerability manifests as a TimeOut error, and may allow an attacker to leverage the TimeOut error to disrupt the normal functioning of the system or application, potentially leading to...

OESA-2024-1875 ffmpeg security update

FFmpeg is a complete and free Internet live audio and video broadcasting solution for Linux/Unix. It also includes a digital VCR. It can encode in real time in many formats including MPEG1 audio and video, MPEG4, h263, ac3, asf, avi, real, mjpeg, and flash. Security Fixes: An integer overflow...

OESA-2024-1857 rapidjson security update

RapidJSON as a fast JSON parser which generator for c++. Its inspired by RapidXML. Its supports both SAX & DOM style API. Its small but complete. Its fast, Its preformance can be comparabel to strlen. Its self-contained. It doesnt depend on external libraries such as BOOST. Its Unicode and memory...

SUSE CVE-2022-48860

In the Linux kernel, the following vulnerability has been resolved: ethernet: Fix error handling in xemacliteofprobe This node pointer is returned by ofparsephandle with refcount incremented in this function. Calling ofnodeput to avoid the refcount leak. As the remove function do...

CVE-2022-48787 iwlwifi: fix use-after-free

In the Linux kernel, the following vulnerability has been resolved: iwlwifi: fix use-after-free If no firmware was present at all or, presumably, all of the firmware files failed to parse, we end up unbinding by calling devicereleasedriver, which calls remove, which then in iwlwifi calls...