ROS-20240408-04

Vulnerability of cttsboxread function of Golang programming language is related to resource release errors. resources. Exploitation of the vulnerability may allow an attacker to cause a denial of service A vulnerability in the file src/mediatools/avilib.c of the GPAC multimedia platform, is relat...

The vulnerability of the Windows Hyper-V hardware virtualization system allows a attacker to trigger a service failure.

The vulnerability of the Windows Hyper-V hardware virtualization system is related to resource release errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the drm_bridge_get_edid function in the Meson kernel of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the drmbridgegetedid function in the Meson component of the Linux operating system is related to memory release errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the `of_node_put` function in the rk817 component of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ofnodeput function in the rk817 component of the Linux operating system is related to memory release errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the regmapdebugfs_exit() function in Linux operating systems allows a hacker to disclose sensitive information or cause system failures.

The vulnerability of the regmapdebugfsexit function in Linux operating systems is related to memory release errors. Exploiting this vulnerability can allow attackers to disclose sensitive information or cause service failures...

The vulnerability of the dcn_create_resource_pool function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the dcncreateresourcepool function in the Linux operating system is related to memory release errors. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

The vulnerability of the Windows Hyper-V hardware virtualization system allows a attacker to trigger a service failure.

The vulnerability of the Windows Hyper-V hardware virtualization system is related to resource release errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the OpenSSL processor in real-time operating systems like Wind River VxWorks allows attackers to trigger a service failure.

The vulnerability of the OpenSSL processor in real-time operating systems from Wind River and VxWorks is related to memory release errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

PT-2024-1766 · Microsoft · Windows Hyper-V +1

Name of the Vulnerable Software and Affected Versions: Windows Hyper-V affected versions not specified Description: The issue is related to errors in resource release in the Windows Hyper-V hardware virtualization system, which can be exploited to cause a denial of service. This allows attackers ...

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause a service failure.

The vulnerability of the Demon Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to memory release errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

Advisory ROSA-SA-2023-2312

Software: java-1.8.0-openjdk 1.8.0.392.b08 OS: rosa-server79 packageevrstring: java-1.8.0-openjdk-1.8.0.392.b08-2.res7 CVE-ID: CVE-2023-22045 BDU-ID: 2023-04350 CVE-Crit: LOW CVE-DESC.: A vulnerability in the Hotspot component of the Java SE software platform and Oracle GraalVM Enterprise Edition...

Vulnerability of the MySQL Server component of the database management system: This component allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component of the database management system involves errors in resource release. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

PT-2023-9584 · Oracle · Virtualbox

Name of the Vulnerable Software and Affected Versions: Oracle VM VirtualBox versions prior to 7.0.22 Description: The issue is related to errors in resource release due to insufficient input validation in the Core component of Oracle VM VirtualBox. Exploitation of this issue can allow an attacker...

Advisory ROSA-SA-2023-2285

software: clamav 0.103.8 WASP: ROSA-CHROME packageevrstring: clamav-0.103.8-1.src.rpm CVE-ID: CVE-2022-20698 BDU-ID: 2022-00587 CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability in the Clam AntiVirus software package is related to insufficient input validation. Exploitation of the vulnerability could...

The vulnerability of the Packet Forwarding Engine (PFE) module in Junos OS routers of the MX Series allows a hacker to cause a service failure.

The vulnerability of the Packet Forwarding Engine PFE module in Junos OS routers of the MX Series is related to memory release errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Packet Forwarding Engine (PFE) module in Juniper Networks’ Junos OS-based routers of the QFX5000 Series allows a attacker to induce a service failure.

The vulnerability of the Packet Forwarding Engine PFE module in Juniper Networks’ Junos OS-based QFX5000 Series routers is related to memory release errors. Exploiting this vulnerability can allow a malicious actor to trigger service interruptions...

The vulnerability of the `make_tempdir` and `make_tempname` functions in the GNU Binutils development tool allows a attacker to cause a service failure.

The vulnerability of the maketempdir and maketempname functions in the GNU Binutils development tool set is related to memory release errors. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the pr_function_type function in the GNU Binutils development environment, which allows a hacker to trigger a service failure.

The vulnerability of the prfunctiontype function in the GNU Binutils development environment is related to memory release errors. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the SslConnections component in Eclipse Jetty servers allows a attacker to cause a service failure.

The vulnerability of the SslConnections component in Eclipse Jetty servers is related to resource release errors. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

ROS-20230907-02

Vulnerability in the Core component of Oracle VM VirtualBox virtual machine is related to resource release errors resources. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code or gain full control of an application using the RDP protocol. arbitrary code or...