6 matches found
SUSE-SU-2024:4106-1 Security update for tomcat
This update for tomcat fixes the following issues: - Update to Tomcat 9.0.97 Fixed CVEs: + CVE-2024-52316: If the Jakarta Authentication fails with an exception, set a 500 status bsc1233434 Catalina + Add: Add support for the new Servlet API method HttpServletResponse.sendEarlyHints. markt + Add:...
unbound: integer overflow in the regional allocator via the ALIGN_UP macro
A flaw was found in unbound. An integer overflow in the regional allocator via the ALIGNUP macro may lead to a buffer overflow if the size can be controlled by an attacker. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability...
DEBIAN-CVE-2021-44496
An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, an attacker can control the size variable and buffer that is passed to a call to memcpy. An attacker can use this to overwrite key data structures and gain control of the flow of execution...
kernel: xfs: raw block device data leak in XFS_IOC_ALLOCSP IOCTL
A data leak flaw was found in the way XFSIOCALLOCSP IOCTL in the XFS filesystem allowed for size increase of files with unaligned size. A local attacker could use this flaw to leak data on the XFS filesystem otherwise not accessible to them...
LocalTapiola: The parameter in the POST query allows to control size of returned page which in turn can lead to the potential DOS attack
NOTE! Thanks for submitting a report! Please replace all the square sections below with the pertinent details. Do not remove any subsections of this template. If the report is not complete, we will most likely close your report with no further action. QUALITY BEFORE QUANTITY. Remember, the more...
eCryptfs write_tag_3_packet Heap Buffer Overflow Vulnerability
eCryptfs in Linux kernel version 2.6.18 suffer from a writetag3packet heap buffer overflow vulnerability. +--------------------------------------------------------------------------------------------+ | XADV-2013003 Linux Kernel eCryptfs writetag3packet Heap Buffer Overflow Vulnerability |...