UVI-2021-1000167 dm rq: fix double free of blk_mq_tag_set in dev remove after table load fails

dm rq: fix double free of blkmqtagset in dev remove after table load fails This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.118 by commit...

CVE-2020-18395

A NULL-pointer deference issue was discovered in GNUgama::set in ellipsoid.h in Gama 2.04 which can lead to a denial of service DOS via segment faults caused by crafted inputs...

CVE-2020-18395

A NULL-pointer deference issue was discovered in GNUgama::set in ellipsoid.h in Gama 2.04 which can lead to a denial of service DOS via segment faults caused by crafted inputs...

CVE-2020-18395

Consolidated details from NVD, Red Hat, CNVD, PRION, and CVE lists confirm CVE-2020-18395 affects Gama 2.04 . The vulnerability is a NULL-pointer dereference in GNU_gama::set() within ellipsoid.h, which can cause a denial of service via segmentation faults when processing crafted inputs. Public r...

Session Cookies Detected

The scanner collected the session cookies returned by the application during an authenticated scan. The list includes the following information for each cookie: - Name: name of the cookie - Value: value of the cookie - Domain: hosts to which the cookie will be sent - Path: URL path which must exi...

GHSA-WFWQ-XC57-FQ7V eivindfjeldstad-dot contains prototype pollution vulnerability

eivindfjeldstad-dot below 1.0.3 is vulnerable to Prototype Pollution.The function 'set' could be tricked into adding or modifying properties of 'Object.prototype' using a 'proto' payload...

Fuzzing iOS code on macOS at native speed

Or how iOS apps on macOS work under the hood Posted by Samuel Groß, Project Zero This short post explains how code compiled for iOS can be run natively on Apple Silicon Macs. With the introduction of Apple Silicon Macs, Apple also made it possible to run iOS apps natively on these Macs. This is...

CVE-2021-33204

In the pgpartman aka PG Partition Manager extension before 4.5.1 for PostgreSQL, arbitrary code execution can be achieved via SECURITY DEFINER functions because an explicit searchpath is not set...

netty: Information disclosure via the local system temporary directory

In Netty there is a vulnerability on Unix-like systems involving an insecure temp file. When netty's multipart decoders are used, a local information disclosure can occur via the local system temporary directory if temporary storing uploads on the disk is enabled. On unix-like systems, the...

bind: An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself

A flaw was found in bind. The way DNAME records are processed may trigger the same RRset to the ANSWER section to be added more than once which causes an assertion check to fail. The highest threat from this flaw is to system availability...

The vulnerability of the Redis database management system, related to writing beyond the buffer in memory, allows a attacker to perform arbitrary operations.

The vulnerability of the Redis database management system is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using the set-max-intset-entries configuration parameter...

The vulnerability of Firefox’s requestPointerLock() and setTimeout() methods allows a intruder to gain unauthorized access to protected information.

The vulnerabilities of the requestPointerLock and setTimeout methods in Firefox browsers stem from synchronization errors when using shared resources. Exploiting these vulnerabilities can allow an attacker to gain unauthorized access to protected information...

kernel: perf_event_parse_addr_filter memory

A memory leak flaw was found in the Linux kernel’s performance monitoring subsystem when using PERFEVENTIOCSETFILTER. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from this vulnerability is to system availability...

kernel: memory leak in sof_set_get_large_ctrl_data() function in sound/soc/sof/ipc.c

A flaw was found in the Linux kernel’s sofsetgetlargectrldata function, in the way it handled memory cleanup in a specific error path. A local attacker could use this flaw to crash the system...

Arbitrary Code Execution in json-ptr

npm json-ptr before 2.1.0 has an arbitrary code execution vulnerability. The issue occurs in the set operation when the force flag is set to true. The function recursively set the property in the target object, however it does not properly check the key being set, leading to a prototype pollution...

GHSA-X5R6-X823-9848 Arbitrary Code Execution in json-ptr

npm json-ptr before 2.1.0 has an arbitrary code execution vulnerability. The issue occurs in the set operation when the force flag is set to true. The function recursively set the property in the target object, however it does not properly check the key being set, leading to a prototype pollution...

Prototype Pollution in bmoor

The package bmoor before 0.8.12 are vulnerable to Prototype Pollution via the set function...

GHSA-H3RX-G5C9-8Q4X Prototype Pollution in bmoor

The package bmoor before 0.8.12 are vulnerable to Prototype Pollution via the set function...

GHSA-4Q97-FH3F-J294 Prototype Pollution in tiny-conf

All versions of package tiny-conf up to and including version 1.1.0 are vulnerable to Prototype Pollution via the set function...

Prototype Pollution in tiny-conf

All versions of package tiny-conf up to and including version 1.1.0 are vulnerable to Prototype Pollution via the set function...