AZL-44658 CVE-2021-23210 affecting package sox 14.4.2.0-34

A floating point exception divide-by-zero issue was discovered in SoX in functon readsamples of voc.c file. An attacker with a crafted file, could cause an application to crash...

AZL-43450 CVE-2021-23210 affecting package sox 14.4.2.0-34

A floating point exception divide-by-zero issue was discovered in SoX in functon readsamples of voc.c file. An attacker with a crafted file, could cause an application to crash...

DEBIAN-CVE-2021-23210

A floating point exception divide-by-zero issue was discovered in SoX in functon readsamples of voc.c file. An attacker with a crafted file, could cause an application to crash...

UBUNTU-CVE-2021-23210

A floating point exception divide-by-zero issue was discovered in SoX in functon readsamples of voc.c file. An attacker with a crafted file, could cause an application to crash...

SoX 数字错误漏洞

SoX is a set of open source audio processing tools. It supports playing, converting and recording audio in multiple formats. SoX suffers from a security vulnerability that stems from a floating-point exception division by zero in the readsamples function of its voc.c component that crashes the...

libtiff's tiffcrop tool has a uint32_t underflow which leads to out of bounds read and write in the extractContigSamples8bits routine. An attacker who supplies a crafted file to tiffcrop could trigger this flaw most likely by tricking a user into opening the crafted file with tiffcrop. Triggering this flaw could cause a crash or potentially further exploitation.

...

AZL-10593 CVE-2022-2869 affecting package libtiff for versions less than 4.5.0-1

libtiff's tiffcrop tool has a uint32t underflow which leads to out of bounds read and write in the extractContigSamples8bits routine. An attacker who supplies a crafted file to tiffcrop could trigger this flaw, most likely by tricking a user into opening the crafted file with tiffcrop. Triggering...

RedGuard - C2 Front Flow Control Tool, Can Avoid Blue Teams, AVs, EDRs Check

0x00 Introduction Tool introduction RedGuard is a derivative work of the C2 facility pre-flow control technology. It has a lighter design, efficient flow interaction, and reliable compatibility with go language development. The core problem it solves is also in the face of increasingly complex re...

Can Business Cybersecurity Protection Outlay Offset Cybercrime Insurance?

What is cybercrime insurance? Business cybersecurity protection cybercrime insurance safeguards organizations from any financial losses relating to damage to or loss of information from, networks and IT systems. This may include reputation loss, the cost of business interruption, infringement of...

MAL-2022-5922 Malicious code in samples-bootstrap-theme (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 03a7a684dc17823d5e5581fe85fe43261a947901f2f2afb4820f5815198cb572 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in samples-bootstrap-theme (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 03a7a684dc17823d5e5581fe85fe43261a947901f2f2afb4820f5815198cb572 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in stripe-samples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eed5067e542e3a2fdea5c5b545e9cae51b61ab515bc883d8e743c28d6b31038f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-6335 Malicious code in stripe-samples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eed5067e542e3a2fdea5c5b545e9cae51b61ab515bc883d8e743c28d6b31038f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in blockly-samples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2113195c9b0e983c65e83e792b256354bbbebb00c39ce09f5e073cfdaa950365 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-1621 Malicious code in blockly-samples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2113195c9b0e983c65e83e792b256354bbbebb00c39ce09f5e073cfdaa950365 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-5798 Malicious code in ringcentral-api-samples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c15d2a1d432e4b8d21c8bed96e8207d740e8ddf8fc913fcf6821c6bcdc6eeee5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in samples-cors-typescript-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a45fb841d2060f96b15f2d22ccd2a535857ffa20b20a1e254c371aba3c9ad434 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-5924 Malicious code in samples-cors-typescript-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 920b95491f91c6ba4893d79f30b6359326fc64b33db0a4b7d3694eddf3fc6b4e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in azure-container-registry-samples-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c820a88f96c37f80c1cd31ff7a8e16c0569322dff2c335469633c7614fcad195 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in azure-container-registry-samples-ts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bef553c368f9ac9f7c664a2c978dce89988d424608b5f5b47010261ee7a9ee9e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...