13 matches found
HTSlib 缓冲区错误漏洞
HTSlib is a C-language library file developed by samtools. Versions of HTSlib prior to 1.23.1, 1.22.2, and 1.21.1 contain a buffer error vulnerability. This vulnerability stems from a single-bit error in the crambytearraystopdecodechar function, which may lead to a heap buffer overflow...
CANTXSec: a Deterministic Intrusion Detection and Prevention System for CAN Bus Monitoring ECU Activations
Despite being a legacy protocol with various known security issues, Controller Area Network CAN still represents the de-facto standard for communications within vehicles, ships, and industrial control systems. Many research works have designed Intrusion Detection Systems IDSs to identify attacks ...
The vulnerability of the ep93xx_div_recalc_rate() function in the arch/arm/mach-ep93xx/clock.c module of the Linux operating system allows a attacker to compromise the confidentiality and accessibility of the protected information.
The vulnerability of the ep93xxdivrecalcrate function in the arch/arm/mach-ep93xx/clock.c module of the Linux operating system is related to a single-bit offset error. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility of the protected...
EulerOS 2.0 SP12 : sudo (EulerOS-SA-2024-1755)
According to the versions of the sudo package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on n...
OpenBSD OpenSSH <= 9.6 Authentication Bypass Vulnerability
OpenBSD OpenSSH is prone to an authentication bypass vulnerability. Note: This VT has been deprecated and is therefore no longer functional. Please see the solution tag for more information. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced...
Sudo before 1.9.15 might allow row hammer attacks (for authentication bypass or privilege escalation) because application logic sometimes is based on not equaling an error value (instead of equaling a success value) and because the values do not resist flips of a single bit.
...
UBUNTU-CVE-2023-51767
OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks for authentication bypass because the integer value of authenticated in mmanswerauthpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim...
CVE-2023-42465
Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of equaling a success value, and because the values do not resist flips of a single bit...
CVE-2023-42465
Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of equaling a success value, and because the values do not resist flips of a single bit...
CVE-2023-42465
Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of equaling a success value, and because the values do not resist flips of a single bit...
CVE-2023-42465
Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of equaling a success value, and because the values do not resist flips of a single bit...
The vulnerability in the kernel/bpf/verifier.c file of the Linux operating system allows a hacker to gain unauthorized access to protected information.
The vulnerability in the kernel/bpf/verifier.c file of the Linux operating system is related to a single-bit offset error. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
UBUNTU-CVE-2014-3917
kernel/auditsc.c in the Linux kernel through 3.14.5, when CONFIGAUDITSYSCALL is enabled with certain syscall rules, allows local users to obtain potentially sensitive single-bit values from kernel memory or cause a denial of service OOPS via a large value of a syscall number...