K51512510: tcpdump vulnerability CVE-2018-14879

Security Advisory Description The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:getnextfile. CVE-2018-14879 Impact A local attacker may be able to corrupt data, run arbitrary code, or cause the program to terminate. Security Advisory Status F5 Product...

Ubuntu: Security Advisory (USN-9-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-64-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the UI Shelf component in Google Chrome allows a hacker to trigger an unexpected program termination.

The vulnerability of the UI Shelf component in Google Chrome browser relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause the program to terminate abnormally...

F5 Networks BIG-IP : Bash vulnerability (K05122252)

A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LCCTYPE environment variable, are printed through the echo built-in function. A local attacker, who can provide data to print through the 'echo -e' built-in function, ma...

CHECK-fail in `tf.raw_ops.IRFFT`

Impact An attacker can cause a denial of service by exploiting a CHECK-failure coming from the implementation of tf.rawops.IRFFT: python import tensorflow as tf values = -10.0 130 values0 = -9.999999999999995 inputs = tf.constantvalues, shape=10, 13, dtype=tf.float32 inputs = tf.castinputs,...

CVE-2021-29563

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a denial of service by exploiting a CHECK-failure coming from the implementation of tf.rawops.RFFT. Eigen code operating on an empty matrix can trigger on an assertion and will cause program termination...

PYSEC-2021-491

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a denial of service by exploiting a CHECK-failure coming from the implementation of tf.rawops.RFFT. Eigen code operating on an empty matrix can trigger on an assertion and will cause program termination...

CVE-2018-1000654

GNU Libtasn1-4.13 libtasn1-4.13 version libtasn1-4.13, libtasn1-4.12 contains a DoS, specifically CPU usage will reach 100% when running asn1Paser against the POC due to an issue in asn1expandobjectidptree, after a long time, the program will be killed. This attack appears to be exploitable via...

Denial of service

An exploitable denial of service vulnerability exists within the handling of security data in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the...

Denial of service

An exploitable denial of service vulnerability exists within the reading of proprietary server certificates in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or u...

Updated freerdp packages fix security vulnerabilities

An exploitable code execution vulnerability exists in the authentication functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromise the server or use a man in the middle...

Debian DLA-1162-1 : apr security update

It was discovered that there was an out-of-bounds memory vulnerability in apr, a support/portability library for various applications. When the aprexptime or aprosexptime functions were invoked with an invalid month field value, out of bounds memory may have been be accessed when converting this...

FreeBSD Denial of Service Vulnerability (CNVD-2017-06116)

FreeBSD is a set of Unix-like free operating systems in the FreeBSD project, headed by the Core Team team, and is an important branch of Unix-like systems that have evolved through BSD, 386BSD, and 4.4BSD. A denial of service vulnerability exists in FreeBSD. An attacker could exploit this...

Safari < 6.1 Multiple Security Vulnerabilities

Binary data 8048.prm...

QuickTime < 7.7.4 Multiple Vulnerabilities (Windows) (deprecated)

Binary data 6840.prm...

QuickTime < 7.7.3 Multiple Vulnerabilities (Windows)

Binary data 6620.prm...

QuickTime < 7.7.3 Multiple Vulnerabilities (Windows)

Binary data 801209.prm...

SuSE 11 / 11.1 Security Update : glibc (SAT Patch Numbers 3392 / 3393)

This update of glibc fixes various bugs and security issues : - Decoding of the $ORIGIN special value in various LD environment variables allowed local attackers to execute code in context of e.g. setuid root programs, elevating privileges. This issue does not affect SUSE as an assertion triggers...

SuSE 10 Security Update : OpenLDAP 2 (ZYPP Patch Number 5511)

This update fixes a security problem in the liblber client library of openldap that allowed remote attackers to cause a denial of service program termination via crafted ASN.1 BER datagrams, which triggers an assertion error. CVE-2008-2952 Additionally a bug was fixed in ldapfreeconnection which...