libquartz: XXE attacks via job description

The Terracotta Quartz Scheduler is susceptible to an XML external entity attack XXE through a job description. This issue stems from inadequate handling of XML external entity XXE declarations in the initDocumentParser function within xml/XMLSchedulingDataProcessor.java. By enticing a victim to...

libquartz: XXE attacks via job description

The Terracotta Quartz Scheduler is susceptible to an XML external entity attack XXE through a job description. This issue stems from inadequate handling of XML external entity XXE declarations in the initDocumentParser function within xml/XMLSchedulingDataProcessor.java. By enticing a victim to...

HTTP/2: large amount of data requests leads to denial of service

A flaw was found in HTTP/2. An attacker can request a large amount of data by manipulating window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this queue can consume excess CPU, memory, or both, leading to a...

[SECURITY] Fedora 31 Update: bashtop-0.9.24-1.fc31

Resource monitor written in Bash that shows usage and stats for processor, memory, disks, network and processes...

CVE-2020-1643

Execution of the "show ospf interface extensive" or "show ospf interface detail" CLI commands on a Juniper Networks device running Junos OS may cause the routing protocols process RPD to crash and restart if OSPF interface authentication is configured, leading to a Denial of Service DoS. By...

[SECURITY] Fedora 32 Update: bashtop-0.9.24-1.fc32

Resource monitor written in Bash that shows usage and stats for processor, memory, disks, network and processes...

Fedora: Security Advisory for bashtop (FEDORA-2020-ff38f3a401)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2020-5750)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5750 advisory. - ALSA: core: Fix card races between register and disconnect Takashi Iwai Orabug: 31351891 CVE-2019-15214 - media: dvb-usb-v2: lmedm04: move ts2020...

kernel: memory leak in ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c

A flaw was found in the AMD Cryptographic Co-processor driver in the Linux kernel. An attacker, able to send invalid SHA type commands, could cause the system to crash. The highest threat from this vulnerability is to system availability...

hw: Vector Register Data Sampling

A flaw was found in Intel processors where a local attacker is able to gain information about registers used for vector calculations by observing register states from other processes running on the system. This results in a race condition where store buffers, which were not cleared, could be read...

nghttp2: overly large SETTINGS frames can lead to DoS

A resource consumption vulnerability was found in nghttp2. This flaw allows an attacker to repeatedly construct an overly large HTTP/2 SETTINGS frame with a length of 14,400 bytes that causes excessive CPU usage, leading to a denial of service...

nghttp2: overly large SETTINGS frames can lead to DoS

A resource consumption vulnerability was found in nghttp2. This flaw allows an attacker to repeatedly construct an overly large HTTP/2 SETTINGS frame with a length of 14,400 bytes that causes excessive CPU usage, leading to a denial of service...

Amazon Linux 2 : microcode_ctl (ALAS-2020-1444)

The version of microcodectl installed on the remote host is prior to 2.1-47. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1444 advisory. A new domain bypass transient execution attack known as Special Register Buffer Data Sampling SRBDS has been found. Th...

OSV-2020-518 Global-buffer-overflow in perfetto::trace_processor::ParseSystraceTracePoint

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13481 Crash type: Global-buffer-overflow READ 1 Crash state: perfetto::traceprocessor::ParseSystraceTracePoint perfetto::traceprocessor::ProtoTraceParser::ParsePrint perfetto::traceprocessor::ProtoTraceParser::ParseFtracePacke...

OSV-2020-376 Heap-buffer-overflow in perfetto::trace_processor::fuchsia_trace_utils::ReadTimestamp

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=14767 Crash type: Heap-buffer-overflow READ 8 Crash state: perfetto::traceprocessor::fuchsiatraceutils::ReadTimestamp perfetto::traceprocessor::FuchsiaTraceParser::ParseTracePacket...

Medium: microcode_ctl

Issue Overview: A new domain bypass transient execution attack known as Special Register Buffer Data Sampling SRBDS has been found. This flaw allows data values from special internal registers to be leaked by an attacker able to execute code on any core of the CPU. An unprivileged, local attacker...

OSV-2020-240 UNKNOWN READ in perfetto::trace_processor::TraceStorage::GetIdForVariadicType

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19999 Crash type: UNKNOWN READ Crash state: perfetto::traceprocessor::TraceStorage::GetIdForVariadicType perfetto::traceprocessor::GlobalArgsTracker::AddArgSet perfetto::traceprocessor::ArgsTracker::Flush...

Cisco IOS XR Software Standby Route Processor Gigabit Ethernet Management Interface Access Control List Bypass Vulnerability (cisco-sa-xracl-zbWSWREt)

An authentication bypass vulnerability exists in Cisco IOS XR Software due to a logic error, which prevents the ACL from working when applied against the standby route processor management interface. An unauthenticated, remote attacker can exploit this by attempting to access the device through t...

hw: Vector Register Data Sampling

A flaw was found in Intel processors where a local attacker is able to gain information about registers used for vector calculations by observing register states from other processes running on the system. This results in a race condition where store buffers, which were not cleared, could be read...

hw: Vector Register Data Sampling

A flaw was found in Intel processors where a local attacker is able to gain information about registers used for vector calculations by observing register states from other processes running on the system. This results in a race condition where store buffers, which were not cleared, could be read...