310 matches found
CVE-2009-1143
CVE-2009-1143 : Open-vm-tools 2009.03.18-154848 contains a realpath race condition in mount.vmhgfs (hgfsmounter) that allows local users to bypass mounting-share access restrictions via a symlink attack. The context indicates a local-privilege-like risk with high impact to confidentiality, integr...
A flaw was found in glibc. The realpath() function can mistakenly return an unexpected value potentially leading to information leakage and disclosure of sensitive data.
...
CVE-2021-3998
A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...
CVE-2021-3998
A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...
DEBIAN-CVE-2021-3998
A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...
AZL-10675 CVE-2021-3998 affecting package glibc for versions less than 2.35-7
A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...
Design/Logic Flaw
A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...
CVE-2021-3998
A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...
CVE-2021-3998
CVE-2021-3998 is a glibc flaw where the realpath() function may return an unexpected value, potentially leaking sensitive information. The connected IBM/enterprise bulletins summarize the vulnerability as an information disclosure issue tied to the realpath() implementation, indicating a local-au...
CVE-2021-3998
A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...
CVE-2021-3998
A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...
The vulnerability of the realpath() function in the glibc system library, which allows a hacker to access confidential information
The vulnerability of the realpath function in the glibc system library is related to memory release errors. Exploiting this vulnerability can allow a remote attacker to gain access to confidential information...
USN-5310-1 glibc vulnerabilities
Jan Engelhardt, Tavis Ormandy, and others discovered that the GNU C Library iconv feature incorrectly handled certain input sequences. An attacker could possibly use this issue to cause the GNU C Library to hang or crash, resulting in a denial of service. This issue only affected Ubuntu 18.04 LTS...
CVE-2021-3998
A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...
UBUNTU-CVE-2021-3998
A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...
VulnCheck KEV: CVE-2018-1000001
In glibc 2.26 and earlier there is confusion in the usage of getcwd by realpath which can be used to write before the destination buffer leading to a buffer underflow and potential code execution...
CVE-2021-3998
A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product...
Exploit for Out-of-bounds Write in Gnu Glibc
PoC exploit for CVE-2018-1000001, a buffer underflow in glibc realpath that allows local privilege escalation. The target product/service is glibc, a dependency of various Linux distributions including Debian and Ubuntu. The vulnerability class/vector is LPE Local Privilege Escalation. The probab...
libuv: buffer overflow in realpath
A flaw has been found in libuv. The realpath implementation performs an incorrect calculation when allocating a buffer, leading to a potential buffer overflow. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...
libuv: buffer overflow in realpath
A flaw has been found in libuv. The realpath implementation performs an incorrect calculation when allocating a buffer, leading to a potential buffer overflow. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...