hw: cpu: incomplete clean-up in specific special register write operations (aka DRPW)

A flaw was found in hw. Incomplete cleanup in specific special register write operations for some Intel® Processors may allow an authenticated user to enable information disclosure via local access...

USN-5682-1 linux-aws-5.4 vulnerabilities

It was discovered that the BPF verifier in the Linux kernel did not properly handle internal data structures. A local attacker could use this to expose sensitive information kernel memory. CVE-2021-4159 It was discovered that an out-of-bounds write vulnerability existed in the Video for Linux 2...

USN-5677-1 linux-gcp, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities

It was discovered that the BPF verifier in the Linux kernel did not properly handle internal data structures. A local attacker could use this to expose sensitive information kernel memory. CVE-2021-4159 It was discovered that an out-of-bounds write vulnerability existed in the Video for Linux 2...

hw: cpu: incomplete clean-up of microarchitectural fill buffers (aka SBDS)

A flaw was found in hw. Incomplete cleanup of microarchitectural fill buffers on some Intel® Processors may allow an authenticated user to enable information disclosure via local access...

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-5667-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5667-1 advisory. Selim Enes Karaduman discovered that a race condition existed in the General notification queue implementation of the Linux kernel, leading t...

Bento4 AP4_Processor::ProcessFragments Denial of Service Vulnerability

Bento4 is an open source C library for reading and writing MP4 files. Bento4 v1.6.0-639 contains a denial of service vulnerability that stems from a segmentation violation in the AP4Processor::ProcessFragments method of the mp4decrypt component. An attacker could exploit the vulnerability to caus...

The vulnerability of the pre-processing processor Simcenter Femap, caused by overflow in dynamic memory buffers, allows a hacker to disclose protected information.

The vulnerability of the pre-processing processor Simcenter Femap arises due to an overflow in the buffer in the dynamic memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose sensitive information as a result of analyzing specially created .NEU files...

CVE-2022-41419

Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4Processor::Process function in the mp4encrypt binary...

UBUNTU-CVE-2022-41425

Bento4 v1.6.0-639 was discovered to contain a segmentation violation via the AP4Processor::ProcessFragments function in mp4decrypt...

Bento4 安全漏洞

Bento4 is an open source C library for reading and writing MP4 files. version v1.6.0-639 of Bento4 contains a denial of service vulnerability that stems from a memory leak in the AP4Processor::Process function in the mp4encrypt binary. An attacker could exploit the vulnerability to cause a denial...

PT-2022-25859 · Bento4 · Bento4

Name of the Vulnerable Software and Affected Versions: Bento4 version 1.6.0-639 Description: A segmentation violation was discovered in the AP4 Processor::ProcessFragments function in mp4decrypt, which is part of Bento4. Recommendations: For Bento4 version 1.6.0-639, consider avoiding the use of...

PT-2022-25855 · Bento4 · Bento4

Name of the Vulnerable Software and Affected Versions: Bento4 version 1.6.0-639 Description: A memory leak was discovered in Bento4 via the AP4 Processor::Process function in the mp4encrypt binary. Recommendations: For version 1.6.0-639, consider restricting the use of the AP4 Processor::Process...

Improper beacon events in matrix-js-sdk can result in availability issues

Impact Improperly formed beacon events from MSC3488 can disrupt or impede the matrix-js-sdk from functioning properly, potentially impacting the consumer's ability to process data safely. Note that the matrix-js-sdk can appear to be operating normally but be excluding or corrupting runtime data...

UBUNTU-CVE-2022-39236

Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript. Starting with version 17.1.0-rc.1, improperly formed beacon events can disrupt or impede the matrix-js-sdk from functioning properly, potentially impacting the consumer's ability to process data safely. Note that the...

UBUNTU-CVE-2021-43980

The simplified implementation of blocking reads and writes introduced in Tomcat 10 and back-ported to Tomcat 9.0.47 onwards exposed a long standing but extremely hard to trigger concurrency bug in Apache Tomcat 10.1.0 to 10.1.0-M12, 10.0.0-M1 to 10.0.18, 9.0.0-M1 to 9.0.60 and 8.5.0 to 8.5.77 tha...

Apache Tomcat 竞争条件问题漏洞

Apache Tomcat is the United States Apache Apache Foundation of a lightweight Web application server. The program implements support for Servlets and JavaServer Page JSP. A security vulnerability exists in Apache Tomcat, which stems from a simplified implementation of blocking reads and writes, wi...

Carlo Gavazzi UWP 路径遍历漏洞

Carlo Gavazzi UWP is a monitoring and control Universal Web Platform from Carlo Gavazzi. It is used for applications such as building automation, energy efficiency performance management and parking lot guidance. A path traversal vulnerability exists in Carlo Gavazzi UWP 3.0, which can be exploit...

Security Bulletin: A vulnerability in FasterXML Woodstox affects IBM Tivoli Business Service Manager (220573)

Summary FasterXML Woodstox is shipped with IBM Tivoli Business Manager 6.2.0 as part of its XML processor insfrastructure. Information about security vulnerabilities affecting FasterXML Woodstox has been published in a security bulletin. Vulnerability Details IBM X-Force ID: 220573 DESCRIPTION:...

OSV-2022-943 UNKNOWN WRITE in perfetto::trace_processor::TrackEventParser::ParseTrackDescriptor

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=51695 Crash type: UNKNOWN WRITE Crash state: perfetto::traceprocessor::TrackEventParser::ParseTrackDescriptor perfetto::traceprocessor::TrackEventModule::ParsePacket...

PT-2022-37301 · Perfetto · Perfetto

Name of the Vulnerable Software and Affected Versions: perfetto affected versions not specified Description: The issue is related to a crash in the perfetto trace processor. The crash occurs in the TrackEventParser::ParseTrackDescriptor function, which is called by TrackEventModule::ParsePacket a...