GSD-2021-1001953 nvmem: Fix shift-out-of-bound (UBSAN) with byte size cells

nvmem: Fix shift-out-of-bound UBSAN with byte size cells This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.252 by commit...

UVI-2021-1001914 nvmem: Fix shift-out-of-bound (UBSAN) with byte size cells

nvmem: Fix shift-out-of-bound UBSAN with byte size cells This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.290 by commit...

kernel: Overlayfs in the Linux kernel and shiftfs not restoring original value on error leading to a refcount underflow

A flaw was found in the Linux kernel. In Overlayfs, vma-vmfile was replaced in the mmap handlers and, on errors, the original value is not restored. A local attacker with special user privilege or root can cause a kernel internal information leak. The highest threat from this vulnerability is to...

EulerOS 2.0 SP3 : OpenEXR (EulerOS-SA-2021-2600)

According to the versions of the OpenEXR package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw found in function dataWindowForTile of IlmImf/ImfTiledMisc.cpp. An attacker who is able to submit a crafted file to be processed by OpenE...

EulerOS 2.0 SP5 : OpenEXR (EulerOS-SA-2021-2514)

According to the versions of the OpenEXR package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw found in function dataWindowForTile of IlmImf/ImfTiledMisc.cpp. An attacker who is able to submit a crafted file to be processed by OpenE...

Huawei EulerOS: Security Advisory for OpenEXR (EulerOS-SA-2021-2477)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Red Hat OpenShift 安全漏洞

Red Hat OpenShift is a Platform-as-a-Service PaaS cloud computing platform from Red Hat, Inc. that supports building, testing, deploying and running applications. A security vulnerability exists in Red Hat OpenShift Serverless, which is due to an incomplete fix for other Red Hat vulnerabilities...

Security at Scale in the Open-Source Supply Chain

“We’ve all heard of paying it forward, but this is ridiculous!” That’s probably what most of us think when one of our partners or vendors inadvertently leaves an open door into our shared supply-chain network; an attacker can enter at any time. Well, we probably think in slightly more...

ROS-2-2240

2.2240 Multiple vulnerabilities in libwebp 1. Vulnerability description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...

OESA-2021-1327 leptonica security update

The library supports many operations that are useful on Document images Natural images Fundamental image processing and image analysis operations Rasterop aka bitblt Affine transforms scaling, translation, rotation, shear on images of arbitrary pixel depth Projective and bi-linear transforms Bina...

openSUSE 15 Security Update : openexr (openSUSE-SU-2021:1198-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1198-1 advisory. - A flaw found in function dataWindowForTile of IlmImf/ImfTiledMisc.cpp. An attacker who is able to submit a crafted file to be processed b...

openSUSE: Security Advisory for openexr (openSUSE-SU-2021:1198-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2021:1198-1 Security update for openexr

This update for openexr fixes the following issues: - CVE-2021-20298 bsc1188460: Fixed Out-of-memory in B44Compressor - CVE-2021-20299 bsc1188459: Fixed Null-dereference READ in Imf25:Header:operator - CVE-2021-20300 bsc1188458: Fixed Integer-overflow in Imf25:hufUncompress - CVE-2021-20302...

openSUSE 15 Security Update : openexr (openSUSE-SU-2021:2793-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:2793-1 advisory. - A flaw found in function dataWindowForTile of IlmImf/ImfTiledMisc.cpp. An attacker who is able to submit a crafted file to be processed b...

SUSE-SU-2021:2793-1 Security update for openexr

This update for openexr fixes the following issues: - CVE-2021-20298 bsc1188460: Fixed Out-of-memory in B44Compressor - CVE-2021-20299 bsc1188459: Fixed Null-dereference READ in Imf25:Header:operator - CVE-2021-20300 bsc1188458: Fixed Integer-overflow in Imf25:hufUncompress - CVE-2021-20302...

PT-2022-9180 · Openexr +1 · Openexr +1

Name of the Vulnerable Software and Affected Versions: OpenEXR affected versions not specified Description: A flaw in OpenEXR's hufDecode functionality allows an attacker to trigger an undefined right shift error by passing a crafted file to be processed by OpenEXR. The highest threat from this...

Wake up! Identify API Vulnerabilities Proactively, From Production Back to Code

After more than 20 years in the making, now it's official: APIs are everywhere. In a 2021 survey, 73% of enterprises reported that they already publish more than 50 APIs, and this number is constantly growing. APIs have crucial roles to play in virtually every industry today, and their importance...

CVE-2021-20304

A flaw was found in OpenEXR's hufDecode functionality. This flaw allows an attacker who can pass a crafted file to be processed by OpenEXR, to trigger an undefined right shift error. The highest threat from this vulnerability is to system availability...

Upcoming Speaking Engagements

This is a current list of where and when I am scheduled to speak: I’m speaking at Norbert Wiener in the 21st Century, a virtual conference hosted by The IEEE Society on Social Implications of Technology SSIT, July 23-25, 2021. I’m speaking at DEFCON 29, August 5-8, 2021. Im speaking via Internet ...

Debian DLA-2701-1 : openexr - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2701 advisory. - A heap-based buffer overflow vulnerability exists in Academy Software Foundation OpenEXR 2.3.0 in chunkOffsetReconstruction in ImfMultiPartInputFile.cpp that can...