CVE-2019-2316

When computing the digest a local variable is used after going out of scope in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9640, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730...

Fedora Update for libreoffice FEDORA-2019-5561d20558

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 30 Update: libreoffice-6.2.5.2-1.fc30

LibreOffice is an Open Source, community-developed, office productivity sui te. It includes the key desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor and drawing program, with a user interface and feature set similar to other office suites...

DEBIAN-CVE-2019-13590

An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h startread function, there is an integer overflow on the result of integer addition wraparound to 0 fed into the lsxcalloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid...

CVE-2019-11133

Improper access control in the IntelR Processor Diagnostic Tool before version 4.1.2.24 may allow an authenticated user to potentially enable escalation of privilege, information disclosure or denial of service via local access...

Improper access control

Improper access control in the IntelR Processor Diagnostic Tool before version 4.1.2.24 may allow an authenticated user to potentially enable escalation of privilege, information disclosure or denial of service via local access...

CVE-2019-11133

Improper access control in the IntelR Processor Diagnostic Tool before version 4.1.2.24 may allow an authenticated user to potentially enable escalation of privilege, information disclosure or denial of service via local access...

CVE-2019-11133

CVE-2019-11133 concerns the Intel Processor Diagnostic Tool prior to version 4.1.3.35, where improper access control may allow an authenticated user to escalate privileges, disclose information, or cause denial of service via local access. The Red Hat intel advisory and Intel security advisory co...

CVE-2019-0052

The srxpfe process may crash on SRX Series services gateways when the UTM module processes a specific fragmented HTTP packet. The packet is misinterpreted as a regular TCP packet which causes the processor to crash. This issue affects all SRX Series platforms that support URL-Filtering and have...

Design/Logic Flaw

The srxpfe process may crash on SRX Series services gateways when the UTM module processes a specific fragmented HTTP packet. The packet is misinterpreted as a regular TCP packet which causes the processor to crash. This issue affects all SRX Series platforms that support URL-Filtering and have...

CVE-2019-0052 SRX Series: srxpfe process crash while JSF/UTM module parses specific HTTP packets

The srxpfe process may crash on SRX Series services gateways when the UTM module processes a specific fragmented HTTP packet. The packet is misinterpreted as a regular TCP packet which causes the processor to crash. This issue affects all SRX Series platforms that support URL-Filtering and have...

CVE-2019-0052

The CVE-2019-0052 issue affects Juniper Networks Junos OS on SRX Series gateways, where the srxpfe process crashes when the UTM/JSF module processes a specific fragmented HTTP packet. The packet is misinterpreted as a normal TCP packet, causing a processor crash. Affected releases cover multiple ...

Intel Processor Diagnostic Tool elevation of privilege vulnerability (CNVD-2019-22204)

Intel Processor Diagnostic Tool IPDT is a processor function diagnostic tool from Intel USA. An elevation of privilege vulnerability exists in Intel IPDT versions prior to 4.1.2.24. An attacker can exploit this vulnerability to elevate privileges, disclose information, or cause a denial of servic...

MGASA-2019-0207 Updated microcode package fixes security vulnerability

Secure Encrypted Virtualization SEV on Advanced Micro DevicesAMD Platform Security Processor PSP; aka AMD Secure Processor or AMD-SP 0.17 build 11 and earlier has an insecure cryptographic implementation. This update provides Amd SEV Firmware to 0.17 build 22 CVE-2019-9836. It also updates the...

Updated microcode package fixes security vulnerability

Secure Encrypted Virtualization SEV on Advanced Micro DevicesAMD Platform Security Processor PSP; aka AMD Secure Processor or AMD-SP 0.17 build 11 and earlier has an insecure cryptographic implementation. This update provides Amd SEV Firmware to 0.17 build 22 CVE-2019-9836. It also updates the...

Denial of Service Vulnerability in Omron CJ2M-CPU31

CJ2M-CPU31 is a programmable logic controller PLC A denial of service vulnerability exists in the Omron CJ2M-CPU31, which can be exploited by an attacker to cause CPU resource exhaustion by sending specific packets to the target PLC on a continuous basis...

PT-2019-4893 · Xen +1 · Xen +1

Name of the Vulnerable Software and Affected Versions: Xen versions prior to 4.12 Description: The issue is related to an incompatibility between Process Context Identifiers PCID and TLB flushes, allowing x86 PV guest OS users to cause a denial of service or gain privileges. This is due to...

Intel Patches High-Severity Flaw in Processor Diagnostic Tool

Intel has patched a high-severity vulnerability in its processor diagnostic tool, which could allow local attackers to launch several malicious attacks on affected devices, such as escalation of privilege or denial of service. The Intel Processor Diagnostic tool is a free product that allows user...

CVE-2019-11991

HPE has identified a vulnerability in HPE 3PAR Service Processor SP version 4.1 through 4.4. HPE 3PAR Service Processor SP version 4.1 through 4.4 has a remote information disclosure vulnerability which can allow for the disruption of the confidentiality, integrity and availability of the Service...

CVE-2019-11991

HPE has identified a vulnerability in HPE 3PAR Service Processor SP version 4.1 through 4.4. HPE 3PAR Service Processor SP version 4.1 through 4.4 has a remote information disclosure vulnerability which can allow for the disruption of the confidentiality, integrity and availability of the Service...