CVE-2025-62490 Use-after-free in js_print_object in QuickJS

In quickjs, in jsprintobject, when printing an array, the function first fetches the array length and then loops over it. The issue is, printing a value is not side-effect free. An attacker-defined callback could run during jsprintvalue, during which the array could get resized and len1 become ou...

CVE-2022-49087 rxrpc: fix a race in rxrpc_exit_net()

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix a race in rxrpcexitnet Current code can lead to the following race: CPU0 CPU1 rxrpcexitnet rxrpcpeerkeepaliveworker if rxnet-live rxnet-live = false; deltimersync&rxnet-peerkeepalivetimer;...

CLSA-2024-1723622576 Fix of 29 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-42236 - usb: gadget: configfs: Prevent OOB read/write in usbstringcopy CVE-url: https://ubuntu.com/security/CVE-2024-41095 - drm/nouveau/dispnv04: fix null pointer dereference in nv17tvgetldmodes CVE-url: https://ubuntu.com/security/CVE-2024-41098 -...

SUSE CVE-2024-38780

In the Linux kernel, the following vulnerability has been resolved: dma-buf/sw-sync: don't enable IRQ from syncprintobj Since commit a6aa8fca4d79 "dma-buf/sw-sync: Reduce irqsave/irqrestore from known context" by error replaced spinunlockirqrestore with spinunlockirq for both syncdebugfsshow and...

DEBIAN-CVE-2024-38780

In the Linux kernel, the following vulnerability has been resolved: dma-buf/sw-sync: don't enable IRQ from syncprintobj Since commit a6aa8fca4d79 "dma-buf/sw-sync: Reduce irqsave/irqrestore from known context" by error replaced spinunlockirqrestore with spinunlockirq for both syncdebugfsshow and...

AZL-42835 CVE-2024-38780 affecting package kernel for versions less than 5.15.162.2-1

In the Linux kernel, the following vulnerability has been resolved: dma-buf/sw-sync: don't enable IRQ from syncprintobj Since commit a6aa8fca4d79 "dma-buf/sw-sync: Reduce irqsave/irqrestore from known context" by error replaced spinunlockirqrestore with spinunlockirq for both syncdebugfsshow and...

UBUNTU-CVE-2024-38780

In the Linux kernel, the following vulnerability has been resolved: dma-buf/sw-sync: don't enable IRQ from syncprintobj Since commit a6aa8fca4d79 "dma-buf/sw-sync: Reduce irqsave/irqrestore from known context" by error replaced spinunlockirqrestore with spinunlockirq for both syncdebugfsshow and...

Foxit Reader/PhantomPDF Memory Misreference Vulnerability

Foxit PhantomPDF is a practical PDF solution. A memory misreference vulnerability exists in Print object and App object handling in Foxit Reader before 7.2.2 and Foxit PhantomPDF before 7.2.2. A remote attacker can execute arbitrary code using a constructed PDF document...

PT-2012-1923 · Moodle · Moodle

Name of the Vulnerable Software and Affected Versions: Moodle versions 2.0.x through 2.0.5 Moodle versions 2.1.x through 2.1.2 Description: A cross-site scripting issue exists in the print object function in lib/datalib.php. This occurs when a developer debugging script is enabled, allowing remot...

Anzio Web Print Object ActiveX Control Remote BOF Vulnerability

Anzio is prone to a heap-based buffer overflow vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Anzio Web Print Object ActiveX Control Remote BOF Vulnerability

The host is running Anzio, which is prone to a heap-based buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodanziowebprintobjbofvuln900115.nasl 5370 2017-02-20 15:24:26Z cfi $ Description: Anzio Web Print Object ActiveX Control Remote BOF Vulnerability Authors: Sharath S...

CVE-2008-3480

Stack-based buffer overflow in the Anzio Web Print Object WePO ActiveX control 3.2.19 and 3.2.24, as used in Anzio Print Wizard, allows remote attackers to execute arbitrary code via a long mainurl parameter...

CVE-2008-3480

The CVE-2008-3480 issue affects the Anzio Web Print Object (WePO) ActiveX control, with stack/heap-based overflow when processing a long mainurl parameter in WePO 3.2.19 and 3.2.24 (and related components), enabling remote arbitrary code execution. CoreLabs/Core advisory CORE-2008-0624 documents ...

Anzio Web Print Object (WePO) ActiveX组件"mainurl"缓冲区溢出漏洞

CVE ID:CVE-2008-3480 CNCVE ID：CNCVE-20083480 Anzio Web Print Object是一款Windows ActiveX WEB页组件，当放置在WEB页上时可从文件或WEB服务器推打印作业到用户本地打印机而不需要限制一些附加的HTML。 Anzio Web Print Object处理"mainurl"参数存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 WePO ActiveX组件提供参数"mainurl"从本地文件名或URL中获取内容来打印： param name="mainurl"...

Core Security Technologies Advisory 2008.0624

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Anzio Web Print Object Buffer Overflow Advisory Information Title: Anzio Web Print Object Buffer Overflow Advisory ID: CORE-2008-0624 Advisory URL:...

Anzio Web Print Object <= 3.2.30 ActiveX Buffer Overflow Exploit

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Anzio Web Print Object Buffer Overflow Advisory Information Title: Anzio Web Print Object Buffer Overflow Advisory ID: CORE-2008-06...

CORE-2008-0624: Anzio Web Print Object Buffer Overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Anzio Web Print Object Buffer Overflow Advisory Information Title: Anzio Web Print Object Buffer Overflow Advisory ID: CORE-2008-0624 Advisory URL:...

Anzio Web Print Object Buffer Overflow

Advisory ID Internal CORE-2008-0624 Advisory Information Title: Anzio Web Print Object Buffer Overflow Advisory ID: CORE-2008-0624 Advisory URL:http://www.coresecurity.com/content/anzio-web-print-object-buffer-overflow Date published: 2008-08-20 Date of last update: 2008-08-20 Vendors contacted:...

Anzio Web Print Object 3.2.30 - ActiveX Buffer Overflow

Anzio Web Print Object 3.2.30 - ActiveX Buffer Overflow -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Anzio Web Print Object Buffer Overflow Advisory Information Title: Anzio Web Print Object Buffer Overflow...