GO-2024-2846 Containers started with non-empty inheritable Linux process capabilities in github.com/containerd/containerd

Containers started with non-empty inheritable Linux process capabilities in github.com/containerd/containerd...

CVE-2024-36022

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2024-31079

CVE-2024-31079 affects NGINX Plus and NGINX Open Source when using the HTTP/3 QUIC module (ngx_http_v3_module). The underlying issue is triggered by undisclosed HTTP/3 requests timed during the connection draining process, causing worker processes to terminate or similar impact. Exploitation stat...

GHSA-5F5V-5C3V-GW5V Silverstripe IE requests not properly behaving with rewritehashlinks

Non IE browsers don’t appear to be affected, but I haven’t tested a wide range of browsers to be sure Requests that come through from IE do NOT appear to encode all entities in the URL string, meaning they are inserted into output content directly by SSViewer::process when rewriting hashlinks, as...

Silverstripe IE requests not properly behaving with rewritehashlinks

Non IE browsers don’t appear to be affected, but I haven’t tested a wide range of browsers to be sure Requests that come through from IE do NOT appear to encode all entities in the URL string, meaning they are inserted into output content directly by SSViewer::process when rewriting hashlinks, as...

CVE-2024-35871

A vulnerability was found in the Linux kernel affecting the RISC-V architecture, where the kernel global pointer gp can be leaked to user space. This issue occurs when a user-mode helper thread, such as /sbin/init starts a new process via execve without clearing the kernel registers, allowing...

CVE-2024-35871 riscv: process: Fix kernel gp leakage

In the Linux kernel, the following vulnerability has been resolved: riscv: process: Fix kernel gp leakage childregs represents the registers which are active for the new thread in user context. For a kernel thread, childregs-gp is never used since the kernel gp is not touched by switchto. For a...

CVE-2024-35871 riscv: process: Fix kernel gp leakage

In the Linux kernel, the following vulnerability has been resolved: riscv: process: Fix kernel gp leakage childregs represents the registers which are active for the new thread in user context. For a kernel thread, childregs-gp is never used since the kernel gp is not touched by switchto. For a...

OSV-2024-477 Heap-buffer-overflow in ultrahdr::gain_map_metadata::decodeGainmapMetadata

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68933 Crash type: Heap-buffer-overflow READ 1 Crash state: ultrahdr::gainmapmetadata::decodeGainmapMetadata ultrahdr::JpegR::decodeJPEGR UltraHdrDecFuzzer::process...

CVE-2024-32058

Summary (CVE-2024-32058): Siemens/Simcenter Femap prior to V2406 is affected by a memory corruption vulnerability when parsing crafted IGS files, potentially enabling code execution in the current process. The issue is caused by memory corruption in the parser (buffer/memory handling) for IGS inp...

CVE-2023-50186

GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

CVE-2023-51551

CVE-2023-51551 concerns Foxit PDF Reader/Editor components handling AcroForm signatures. The vulnerability is a use-after-free in Signature object processing, arising from not validating the existence of an object before use, which can lead to remote code execution in the process context. Exploit...

CVE-2023-40476

GStreamer H265 Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

CVE-2023-38103 GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability

GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

CVE-2023-37327

GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

CVE-2024-26958

In the Linux kernel, the following vulnerability has been resolved: nfs: fix UAF in direct writes In production we have been hitting the following warning consistently ------------ cut here ------------ refcountt: underflow; use-after-free. WARNING: CPU: 17 PID: 1800359 at lib/refcount.c:28...

CVE-2024-32493

An issue was discovered in Znuny LTS 6.5.1 through 6.5.7 and Znuny 7.0.1 through 7.0.16 where a logged-in agent is able to inject SQL in the draft form ID parameter of an AJAX request...

clamav -- Possible crash in the HTML file parser that could cause a denial-of-service (DoS) condition

Błażej Pawłowski reports: A vulnerability in the HTML parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to an issue in the C to Rust foreign function interface. An attacker could exploit this...

CVE-2024-21092

CVE-2024-21092 affects Oracle Agile Product Lifecycle Management for Process, specifically the Product Quality Management component in version 6.2.4.2. The vulnerability arises from insufficient input validation, enabling a low-privileged, network-accessing attacker over HTTP to perform unauthori...

Foxit PDF Reader Code Execution Vulnerability (CNVD-2024-20601)

Foxit PDF Reader is China Foxit Foxit company a PDF reader. Foxit PDF Reader has a code execution vulnerability that stems from a post-release reuse problem when dealing with Doc objects, which can be exploited by an attacker to execute arbitrary code in the context of the current process...