A Bayesian Network Approach for Enhancing Security-Focused Decision Support Systems

The adoption and integration of heterogeneous stacks in most of today's open-source based networks brings clear benefits like interoperability and availability of advanced features. Yet, on the other hand the increasing number of interconnecting components and moving parts requires maintaining an...

The vulnerability of the File Name Handler component in the Vim text editor allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the File Name Handler component in the Vim text editor exists due to a mistake in the use of pointers after memory release in the dialogchanged function. Exploiting this vulnerability can allow an attacker to trigger a pointer use-after-free error, resulting in a malfunction ...

The vulnerability of the `get_scaler_data_for_plane()` function in the `drivers/gpu/drm/amd/display/dc/dml2/dml2_translation_helper.c` file, a video driver for AMD cores in the Linux operating system, allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the getscalerdataforplane function in the drivers/gpu/drm/amd/display/dc/dml2/dml2translationhelper.c file, a video driver for AMD cores in the Linux operating system, is related to a numerical overflow vulnerability. Exploiting this vulnerability could allow an attacker to...

redis: Integer overflow issue with intsets

An integer overflow issue was found in redis. The vulnerability involves changing the default "set-max-intset-entries" configuration parameter to a very large value and constructing specially crafted commands to manipulate sets. This flaw allows a remote attacker to leak arbitrary contents of the...

kernel: Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks

A flaw was found in the Linux kernel’s KVM implementation, where improper handing of the VMIO|VMPFNMAP VMAs in KVM bypasses RO checks and leads to pages being freed while still accessible by the VMM and guest. This flaw allows users who can start and control a VM to read/write random pages of...

The vulnerability of the ZlibDecoders class implementation in the Netty network programming framework allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ZlibDecoders class implementation in the Netty network programming framework is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...

JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)

Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5902, CVE-2014-0410, CVE-2014-0415, CVE-2014-0418, and CVE-2014-0424...