For NXP I. MX microprocessor HAB vulnerability analysis-vulnerability warning-the black bar safety net

One, Foreword NXP（NXP）semiconductor production company i. The MX Series application processor of the Secure Boot features in the presence of two vulnerabilities, two vulnerabilities by Quarkslab the two researchers Guillaume Delugré and Kévin Szkudłapski found this article on the two vulnerabilit...

Moderate: Red Hat Security Advisory: libreoffice security and bug fix update

An update for libreoffice is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

Cisco DPC3939 Firmware Arbitrary Command Execution Vulnerability

Cisco DPC3939 is a wireless voice gateway product from Cisco USA. A security vulnerability exists in the Cisco DPC3939 firmware. Allows an attacker to execute arbitrary commands on the Application Processor ARM Linux instance on the gateway...

Unspecified Vulnerability in Cisco DPC3939 Firmware

Cisco DPC3939 is a wireless voice gateway product from Cisco USA. A security vulnerability exists in the Cisco DPC3939 firmware. It allows an attacker to obtain the root shell of the gateway's Network Processor Atom Linux instance...

CVE-2017-11726

services/systemio/actionprocessor/System.rails in ConnectWise Manage 2017.5 is vulnerable to Cross-Site Request Forgery CSRF, as demonstrated by changing an e-mail address setting...

Code injection

The Comcast firmware on Cisco DPC3939 firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST devices allows remote attackers to obtain unintended access to the Network Processor NP 169.254/16 IP network by adding a routing-table entry that specifies the LAN IP address as the router for that...

CVE-2017-9481

The Comcast firmware on Cisco DPC3939 firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST devices allows remote attackers to obtain unintended access to the Network Processor NP 169.254/16 IP network by adding a routing-table entry that specifies the LAN IP address as the router for that...

CVE-2017-9483

The Comcast firmware on Cisco DPC3939 firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST devices allows Network Processor NP Linux users to obtain root access to the Application Processor AP Linux system via shell metacharacters in commands...

Command injection

The Comcast firmware on Cisco DPC3939 firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST devices allows Network Processor NP Linux users to obtain root access to the Application Processor AP Linux system via shell metacharacters in commands...

CVE-2017-9481

The CVE-2017-9481 entry describes a vulnerability in Cisco DPC3939 firmware (dpc3939-P20-18-v303r20421746-170221a-CMCST). An attacker can obtain unintended access to the Network Processor’s 169.254/16 IP network by adding a routing-table entry that designates the LAN IP as the router for that net...

CVE-2017-5691

CVE-2017-5691 covers an incorrect check in Intel processors (6th/7th Gen Core, Xeon E3-1500M v5/v6, E3-1200 v5/v6) that can allow a compromised system firmware to impact Intel SGX via an incorrect early system state. Public sources identify the affected hardware and provide remediation guidance. ...

[SECURITY] Fedora 25 Update: qemu-2.7.1-7.fc25

QEMU is a generic and open source processor emulator which achieves a good emulation speed by using dynamic translation. QEMU has two operating modes: Full system emulation. In this mode, QEMU emulates a full system for example a PC, including a processor and various peripherials. It can be used ...

tomcat: Incorrect handling of pipelined requests when send file was used

A vulnerability was discovered in Tomcat's handling of pipelined requests when "Sendfile" was used. If sendfile processing completed quickly, it was possible for the Processor to be added to the processor cache twice. This could lead to invalid responses or information disclosure...

tomcat: Incorrect handling of pipelined requests when send file was used

A vulnerability was discovered in Tomcat's handling of pipelined requests when "Sendfile" was used. If sendfile processing completed quickly, it was possible for the Processor to be added to the processor cache twice. This could lead to invalid responses or information disclosure...

SGX Update

Summary: Intel has released updates that improve the security of Intel® Software Guard Extensions Intel® SGX. Description: Intel has released updates that improve the security of Intel® Software Guard Extensions Intel® SGX. The improvement applies to 6th and 7th Generation Intel® Core™ Processor...

OpenJDK: reading of unprocessed image data in JPEGImageReader (2D, 8169209)

It was discovered that the JPEGImageReader implementation in the 2D component of OpenJDK would, in certain cases, read all image data even if it was not used later. A specially crafted image could cause a Java application to temporarily use an excessive amount of CPU and memory...

DEBIAN-CVE-2017-11446

The ReadPESImage function in coders\pes.c in ImageMagick 7.0.6-1 has an infinite loop vulnerability that can cause CPU exhaustion via a crafted PES file...

DEBIAN-CVE-2017-11188

The ReadDPXImage function in coders\dpx.c in ImageMagick 7.0.6-0 has a large loop vulnerability that can cause CPU exhaustion via a crafted DPX file, related to lack of an EOF check...

CVE-2017-10725

Winamp 5.666 Build 3516x86 allows attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Data from Faulting Address controls Code Flow starting at inflv!winampGetInModule2+0x00000000000009a8."...

UBUNTU-CVE-2017-10923

Xen through 4.8.x does not validate a vCPU array index upon the sending of an SGI, which allows guest OS users to cause a denial of service hypervisor crash, aka XSA-225...