33 matches found
DEBIAN-CVE-2022-22719
A carefully crafted request body can cause a read to a random memory area which could cause the process to crash. This issue affects Apache HTTP Server 2.4.52 and earlier...
Apache HTTP Server 输入验证错误漏洞
Apache HTTP Server is an open source web server from the Apache Foundation. A denial-of-service vulnerability exists in Apache HTTP Server 2.4.52 and earlier versions, which stems from a well-designed request body that reads random memory regions and can be exploited by attackers to crash process...
Important: kernel
Issue Overview: Amazon Linux has been made aware of a potential Branch Target Injection BTI issue sometimes referred to as Spectre variant 2. This is a known cross-domain transient execution attack where a third party may seek to cause a disclosure gadget to be speculatively executed after an...
Ubuntu 20.04 LTS : Linux kernel (HWE) vulnerabilities (USN-5295-1)
The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5295-1 advisory. It was discovered that the Packet network protocol implementation in the Linux kernel contained a double- free vulnerability. A local attacker could use...
SUSE SLES12 Security Update : kernel (SUSE-SU-2022:0372-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0372-1 advisory. - The vgacon subsystem in the Linux kernel before 5.8.10 mishandles software scrollback. There is a vgaconscrolldelta out-of-bounds...
DEBIAN-CVE-2020-6793
When processing an email message with an ill-formed envelope, Thunderbird could read data from a random memory location. This vulnerability affects Thunderbird 68.5...
Mozilla: Out-of-bounds read when processing certain email messages
When processing an email message with an ill-formed envelope, Thunderbird could read data from a random memory location. This vulnerability affects Thunderbird 68.5...
Out-of-bounds read in Web Audio audio timeline — Mozilla
Security researcher Holger Fuhrmannek discovered an out-of-bounds read during the creation of an audio timeline in Web Audio. This results in a crash and could allow for the reading of random memory values...
FreeBSD-SA-05:02.sendfile
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-05:02.sendfile Security Advisory The FreeBSD Project Topic: sendfile kernel memory disclosure Category: core Module: syskern Announced: 2005-04-04 Credits: Sven...
Fedora Core 2 : kernel-2.6.10-1.9_FC2 (2005-026)
CVE-2005-0001 Paul Starzetz from isec.pl found an exploitable hole in the x86 SMP page fault handler which could lead to privilege escalation. http://www.isec.pl/vulnerabilities/isec-0022-pagefault.t xt This update additionally fixes a random memory corruption issue present in the previous...
Mandrake Linux Security Advisory : kernel (MDKSA-2002:041)
A problem was discovered in the CIPE VPN tunnel implementation in the Linux kernel where a malformed packet could cause a crash. Andrew Griffiths discovered a vulnerability that allows remote machines to read random memory by utilizing a bug in the ICMP implementation of Linux kernels. This only...
Multiple linux kernel bugs
chown: users can change the group affiliation of arbitrary files to the group they belong to, missing DAC check in chown2: local privilege escalation, overflow with signals: local denial-of-service, pss, mpu401 sound driver: read/write to complete memory, airo driver: read/write to complete memor...
Linksys BEFSR41 information leak
DHCP reply contains random information from memory...