OSV-2022-249 Heap-buffer-overflow in llvm::DataLayout::getIndexedOffsetInType

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=45591 Crash type: Heap-buffer-overflow READ 4 Crash state: llvm::DataLayout::getIndexedOffsetInType InterpreterStackFrame::ResolveConstantValue InterpreterStackFrame::EvaluateValue...

SUSE-SU-2022:0654-1 Security update for php74

This update for php74 fixes the following issues: - CVE-2021-21708: Fixed use after free due to phpfilterfloat failing for ints bsc1196252...

ELM : When we click on upgrade and try to browse we get the error : there was an error on processing web request : status code 400 (bad Request ) : Bad Request

Error : there was an error on processing web request : status code 400 bad Request : Bad Request...

GHSA-6978-VG2J-CC9Q Improper Privilege Management and Execution with Unnecessary Privileges in Kata Containers

Kata Containers doesn't restrict containers from accessing the guest's root filesystem device. Malicious containers can exploit this to gain code execution on the guest and masquerade as the kata-agent. This issue affects Kata Containers 1.11 versions earlier than 1.11.1; Kata Containers 1.10...

OSV-2022-152 UNKNOWN WRITE

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44641 Crash type: UNKNOWN WRITE Crash state: NULL...

CVE-2022-0351 Access of Memory Location Before Start of Buffer in vim/vim

Access of Memory Location Before Start of Buffer in GitHub repository vim/vim prior to 8.2...

Microsoft Intune NAC check in Citrix SSO app not working for newly enrolled Andorid devices

Intune NAC check in Citrix SSO app is not working with Citrix Gateway on Android 9.0+ devices...

OSV-2022-64 Heap-buffer-overflow in repeat

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43870 Crash type: Heap-buffer-overflow WRITE Crash state: repeat pere cliregcompreal...

CVE-2021-46350

There is an Assertion 'ecmaisvalueobject value' failed at jerryscript/jerry-core/ecma/base/ecma-helpers-value.c in JerryScript 3.0.0...

CVE-2021-46338

There is an Assertion 'ecmaislexicalenvironment objectp' failed at /base/ecma-helpers.cecmagetlexenvtype in JerryScript 3.0.0...

SUSE-SU-2022:0110-1 Security update for virglrenderer

This update for virglrenderer fixes the following issues: - CVE-2022-0175: Fixed missing initialization of res-ptr bsc1194601...

Out-of-bounds Write in actix-web

An issue was discovered in the actix-web crate before 0.7.19 for Rust. It can unsoundly coerce an immutable reference into a mutable reference, leading to memory corruption...

GHSA-X76R-966H-5QV9 Out-of-bounds Write in vec-const

An issue was discovered in the vec-const crate before 2.0.0 for Rust. It tries to construct a Vec from a pointer to a const slice, leading to memory corruption...

A specified parameter was not correct: spec.vmProfile

Challenge Scenario 1: A Replication job fails with the following error: Failed to set storage profile VM Encryption Policy to vm. Copy Scenario 2: An Entire VM Restore or Instant Recovery fails with the following error: Error: A specified parameter was not correct: spec.vmProfile Copy Cause This...

OSV-2021-1785 Heap-use-after-free in ut_allocator<os_event>::allocate

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43059 Crash type: Heap-use-after-free READ 8 Crash state: utallocator::allocate oseventcreate rwlockcreatefunc...

CVE-2021-45907

An issue was discovered in gif2apng 1.9. There is a stack-based buffer overflow involving a for loop. An attacker has little influence over the data written to the stack, making it unlikely that the flow of control can be subverted...

GSD-2021-1002612 igbvf: fix double free in `igbvf_probe`

igbvf: fix double free in igbvfprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.296 by commit ffe1695b678729edec04037e691007900a2b2beb...

CVE-2021-45480

An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the rdsconncreate function in net/rds/connection.c in a certain combination of circumstances...

SUSE-RU-2021:4127-1 Recommended update for samba

This update for samba fixes the following issues: The username map advice from the CVE-2020-25717 advisory note has undesired side effects for the local nt token. Fallback to a SID/UID based mapping if the name based lookup fails bsc1192849...

GSD-2021-1002414 net: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound

net: tulip: de4x5: fix the problem that the array 'lp-phy8' may be out of bound This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.220 by...