DEBIAN-CVE-2024-35925

In the Linux kernel, the following vulnerability has been resolved: block: prevent division by zero in blkrqstatsum The expression dst-nrsamples + src-nrsamples may have zero value on overflow. It is necessary to add a check to avoid division by zero. Found by Linux Verification Center...

CVE-2024-31810

TOTOLINK EX200 V4.0.3c.7646B20201211 was discovered to contain a hardcoded password for root at /etc/shadow.sample...

TOTOLINK CPE CP450 安全漏洞

TOTOLINK CPE CP450 is an outdoor wireless client terminal device from China Gion Electronics TOTOLINK, which is mainly used to provide wireless broadband access services, especially for wireless network coverage in rural or remote areas. A security vulnerability exists in the TOTOLINK CPE CP450...

PT-2024-25745 · Totolink · Totolink Cp450

Name of the Vulnerable Software and Affected Versions: TOTOLINK CP450 version 4.1.0cu.747 B20191224 Description: The issue is related to a hardcoded password vulnerability found in the /etc/shadow.sample file. This vulnerability allows attackers to log in as root. Recommendations: For TOTOLINK...

pixman: Integer overflow in pixman_sample_floor_y leading to heap out-of-bounds write

A flaw was found in pixman. This issue causes an out-of-bounds write in rasterizeedges8 due to an integer overflow in pixmansamplefloory. This can result in data corruption, a crash, or code execution...

kernel: bpf: Disable preemption in bpf_perf_event_output

A flaw was found in the Linux kernel's BPF subsystem. The bpfperfeventoutput function relies on disabled preemption for nesting protection, but when called from uprobes context via bpfprogrunarraysleepable, preemption remains enabled. This allows task preemption during protected sections, leading...

kernel: bpf: Disable preemption in bpf_event_output

A race condition was found in the BPF event output mechanism. When preemption is enabled during bpfeventoutput, two tasks can access the same perfsampledata buffer concurrently, leading to data corruption and kernel crashes...

kernel: Linux kernel: Denial of Service due to file descriptor leak in BPF sample code

A flaw was found in the Linux kernel. This vulnerability, a file descriptor leak, occurs in the samples/bpf component when the fout file pointer is opened but not properly closed in the hbm's runbpfprog function. A local attacker could exploit this by repeatedly triggering the flaw, leading to...

DEBIAN-CVE-2024-26702

In the Linux kernel, the following vulnerability has been resolved: iio: magnetometer: rm3100: add boundary check for the value read from RM3100REGTMRC Recently, we encounter kernel crash in function rm3100commonprobe caused by out of bound access of array rm3100samprates because of underlying...

Bento4 安全漏洞

Bento4 is an open source C++ library for reading and writing MP4 files. A security vulnerability exists in the Bento4 v1.6.0-641-2-g1529b83 release that stems from a denial of service issue in the AP4Sample::GetOffset method of the Ap4Sample.h file...

Reflectionless Templates With Spring

A few Java libraries have shown up recently that use text templates, but compile to Java classes at build time. They can thus claim to some extent to be "reflection free". Together with potential benefits of runtime performance, they promise to be easy to use and integrate with GraalVM native ima...

[SECURITY] Fedora 40 Update: will-crash-0.13.5-6.fc40

The main purpose of this project is to provide sample executables for testing crash/exception handling tools like ABRT...

OESA-2024-1218 OpenEXR security update

OpenEXR is a high dynamic-range HDR image file format originally developed by Industrial Light & Magic for use in computer imaging applications. Security Fixes: Due to a failure in validating the number of scanline samples of a OpenEXR file containing deep scanline data, Academy Software Foundati...

SUSE CVE-2021-46971

In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix unconditional securitylockeddown call Currently, the lockdown state is queried unconditionally, even though its result is used only if the PERFSAMPLEREGSINTR bit is set in attr.sampletype. While that doesn't matter...

Cannot Create Catalog from Azure VM with Trusted Launch Enabled

Error Attempting to create a catalog using an Azure Trusted Launch enabled image results in the following error: "CreateTerminatingError in operation PreparingMasterImage with message Error starting machine. Security type of VM is not compatible with the security type of attached OS Disk." Soluti...

Important: Red Hat Security Advisory: edk2 security update

An update for edk2 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as havi...

DEBIAN-CVE-2021-46971

In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix unconditional securitylockeddown call Currently, the lockdown state is queried unconditionally, even though its result is used only if the PERFSAMPLEREGSINTR bit is set in attr.sampletype. While that doesn't matter...

UBUNTU-CVE-2021-46971

In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix unconditional securitylockeddown call Currently, the lockdown state is queried unconditionally, even though its result is used only if the PERFSAMPLEREGSINTR bit is set in attr.sampletype. While that doesn't matter...

CKEditor 4.x < 4.24.0-lts Multitple XSS

The version of CKEditor included on the remote web host is 4.x prior to 4.24.0-lts. It may, therefore, be affected by multiple cross-site scripting XSS vulnerabilities. - A cross-site scripting vulnerability affecting editor instances that enabled full-page editing mode or enabled CDATA elements ...

CKEditor cross-site scripting vulnerability in AJAX sample

Affected packages The vulnerability has been discovered in the AJAX sample available at the samples/old/ajax.html file location. All integrators that use that sample in the production code can be affected. Impact A potential vulnerability has been discovered in one of CKEditor's 4 samples that ar...