29 matches found
CVE-2021-0009
Out-of-bounds read in the firmware for IntelR Ethernet Adapters 800 Series Controllers and associated adapters before version 1.5.3.0 may allow an unauthenticated user to potentially enable denial of service via adjacent access...
EUVD-2006-2449
Malware in sbrugna...
EUVD-2020-4350
Malware in sbrugna...
EUVD-2016-2176
Malware in sbrugna...
Amazon Linux 2023 : tigervnc, tigervnc-icons, tigervnc-license (ALAS2023-2025-1060)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1060 advisory. A flaw was found in the X Rendering extension's handling of animated cursors. If a client provides no cursors, the server assumes at least one is present, leading to an out-of-bounds read and...
CVE-2021-34376
Trusty contains a vulnerability in the HDCP service TA where bounds checking in command 5 is missing. Improper restriction of operations within the bounds of a memory buffer might lead to denial of service, escalation of privileges, and information disclosure...
Alibaba Cloud Linux 3 : 0076: libyang (ALINUX3-SA-2022:0076)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0076 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-19333: In all versions of libyang...
Researchers Demonstrate How MCP Prompt Injection Can Be Used for Both Attack and Defense
As the field of artificial intelligence AI continues to evolve at a rapid pace, fresh research has found how techniques that render the Model Context Protocol MCP susceptible to prompt injection attacks could be used to develop security tooling or identify malicious tools, according to a new repo...
[SECURITY] [DSA 5896-1] trafficserver security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5896-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 05, 2025 https://www.debian.org/security/faq -...
USN-7413-1: Linux kernel (IoT) vulnerabilities
Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. CVE-2022-38096 Ye Zhang and Nicolas Wu discovered th...
SUSE-SU-2025:20158-1 Security update for ucode-intel
This update for ucode-intel fixes the following issues: - Intel CPU Microcode was updated to the 20250211 release bsc1237096 - Security updates for INTEL-SA-01166 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01166.html CVE-2024-31068: Improper Finite State Machines FS...
Ubuntu 22.04 LTS / 24.04 LTS / 24.10 : elfutils vulnerabilities (USN-7369-1)
The remote Ubuntu 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7369-1 advisory. It was discovered that readelf from elfutils could be made to read out of bounds. If a user or automated system were tricked into...
CVE-2024-10838
An integer underflow during deserialization may allow any unauthenticated user to read out of bounds heap memory. This may result into secret data or pointers revealing the layout of the address space to be included into a deserialized data structure, which may potentially lead to thread crashes ...
Linux Distros Unpatched Vulnerability : CVE-2016-2546
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sound/core/timer.c in the Linux kernel before 4.4.1 uses an incorrect type of mutex, which allows local users to cause a denial of service race condition,...
Linux Distros Unpatched Vulnerability : CVE-2017-7544
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libexif through 0.6.21 is vulnerable to out-of-bounds heap read vulnerability in exifdatasavedataentry function in libexif/exif-data.c caused by improper length...
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-7186-2)
"The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7186-2 advisory. Andy Nguyen discovered that the Bluetooth L2CAP implementation in the Linux kernel contained a type- confusion error. A physically proximate...
EulerOS 2.0 SP11 : unbound (EulerOS-SA-2024-2973)
According to the versions of the unbound packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : DISPUTE NOTE: this issue does not pose a security risk as it according to analysis by the original software developer, NLnet Labs falls within th...
ISC Releases Security Advisories for BIND 9
The Internet Systems Consortium ISC released security advisories to address vulnerabilities affecting multiple versions of ISC’s Berkeley Internet Name Domain BIND 9. A cyber threat actor could exploit one of these vulnerabilities to cause a denial-of-service condition. CISA encourages users and...
The vulnerability of the library for working with the DICOM format in DCMT allows attackers to access confidential data, compromise its integrity, and cause service failures. This vulnerability is related to deficiencies in pathname restrictions for the catalog, which enable attackers to gain access to sensitive information.
The vulnerability of the library for working with the DICOM format in DCMT is related to deficiencies in pathname restrictions for accessing the catalog. Exploiting this vulnerability allows a malicious actor to gain access to confidential data, compromise its integrity, and cause service failure...
PT-2023-7044 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a buffer overflow in the seq buf putmem hex function of the Linux kernel. This could potentially allow an attacker to cause a denial of service. Recommendations...