CVE-2021-46350

CVE-2021-46350 affects JerryScript 3.0.0, with a denial-of-service/soft crash condition caused by an assertion failure in jerry-core/ecma/base/ecma-helpers-value.c (ecma_is_value_object). Reports consistently identify the vulnerable component as JerryScript’s ECMA helpers for values. The NVD entr...

OSV-2022-36 Heap-buffer-overflow in void absl::BytesToHexStringInternal<std::__1::basic_string<char, std::__1::char_

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43553 Crash type: Heap-buffer-overflow READ 1 Crash state: void absl::BytesToHexStringInternalstd::1::basicstringchar, std::1::char absl::BytesToHexString...

A Software Bug Let Hackers Drain $31M From a Crypto Service

An attacker exploited a vulnerability in MonoX Finance's smart contract to inflate the price of its digital token and then cash out...

Information Disclosure

concrete5/core is vulnerable to information disclosure. Password protected files are exposed to any users using viewinline because it does not limit file types for viewinline to images only...

GHSA-C7V4-M269-4995 Exposure of Sensitive Information to an Unauthorized Actor in Moodle

The participants table download in Moodle always included user emails, but should have only done so when users' emails are not hidden. Versions affected: 3.9 to 3.9.2, 3.8 to 3.8.5 and 3.7 to 3.7.8. This is fixed in moodle 3.9.3, 3.8.6, 3.7.9, and 3.10...

OSV-2021-1417 Heap-buffer-overflow in openhtj2k::T1OpenHTJ2K::decompress

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=39632 Crash type: Heap-buffer-overflow WRITE 4 Crash state: openhtj2k::T1OpenHTJ2K::decompress std::1::packagedtaskfuncstd::1::bindgrk::T1DecompressScheduler::deco std::1::packagedtaskint...

OSV-2021-1228 Heap-buffer-overflow in backup_lpf

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=38369 Crash type: Heap-buffer-overflow READ Crash state: backuplpf dav1dlrcopylpf16bpc dav1dfiltersbrowdeblockrows16bpc...

Drop of uninitialized memory in stack_dst

Affected versions of stackdst used a pushinner function that increased the internal length of the array and then called val.clone. If the val.clone call panics, the stack could drop an already dropped element or drop uninitialized memory. This issue was fixed in 2a4d538 by increasing the length o...

GHSA-6WP2-FW3V-MFMC Memory corruption in array-tools

An issue was discovered in the array-tools crate before 0.3.2 for Rust. Affected versions of this crate don't guard against panics, so that partially uninitialized buffer is dropped when user-provided T::clone panics in FixedCapacityDequeLike::clone. This causes memory corruption...

Razer software bug lets anyone gain admin rights on Windows PC

By Deeba Ahmed A vulnerability in Razer Synapse software lets anyone possessing Razer peripherals obtain administration rights on a Windows PC. This is a post from HackRead.com Read the original post: Razer software bug lets anyone gain admin rights on Windows PC...

PYSEC-2021-551

TensorFlow is an end-to-end open source platform for machine learning. Sending invalid argument for rowpartitiontypes of tf.rawops.RaggedTensorToTensor API results in a null pointer dereference and undefined behavior. The implementation accesses the first element of a user supplied list of values...

CVE-2021-37605

In version 6.5 Microchip MiWi software and all previous versions including legacy products, the stack is validating only two out of four Message Integrity Check MIC bytes...

OSV-2021-1054 Heap-buffer-overflow in jxl::N_SCALAR::SingleFromSingle

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36490 Crash type: Heap-buffer-overflow WRITE 4 Crash state: jxl::NSCALAR::SingleFromSingle jxl::ThreadPool::SequentialRunnerStatic jxl::ModularFrameDecoder::ModularImageToDecodedRect...

Akamai Summarizes Service Disruption (RESOLVED)

At 15:45 UTC on July 22, 2021, a software configuration update triggered a bug in our Secure Edge Content Delivery Network impacting that network's domain name service DNS system the system that directs browsers to websites for that specific service. This caused a disruption impacting availabilit...

Akamai Summarizes Service Disruption (RESOLVED)

At 15:45 UTC on July 22, 2021, a software configuration update triggered a bug in our Secure Edge Content Delivery Network impacting that network's domain name service DNS system the system that directs browsers to websites for that specific service. This caused a disruption impacting availabilit...

CVE-2021-35041

The blockchain node in FISCO-BCOS V2.7.2 may have a bug when dealing with unformatted packet and lead to a crash. A malicious node can send a packet continuously. The packet is in an incorrect format and cannot be decoded by the node correctly. As a result, the node may consume the memory...

OSV-2021-875 Use-after-poison in AK::RefPtr<AK::StringImpl, AK::RefPtrTraits<AK::StringImpl> >::RefPtr

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35337 Crash type: Use-after-poison WRITE 8 Crash state: AK::RefPtr ::RefPtr AK::String::String JS::abstractrelation...

GHSA-38J9-7PP9-2HJW Invalid session token expiration

HashiCorp Vault and Vault Enterprise allowed the renewal of nearly-expired token leases and dynamic secret leases specifically, those within 1 second of their maximum TTL, which caused them to be incorrectly treated as non-expiring during subsequent use. Fixed in 1.5.9, 1.6.5, and 1.7.2...

UVI-2021-1000557 NFS: Don't corrupt the value of pg_bytes_written in nfs_do_recoalesce()

NFS: Don't corrupt the value of pgbyteswritten in nfsdorecoalesce This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.9 by commit...

ALBA-2021:1913 SDL and gstreamer bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...