SUSE-SU-2024:0589-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2021-3638: hw/display/ati2d: Fix buffer overflow in ati2dblt bsc1188609 - CVE-2023-3180: virtio-crypto: verify src and dst buffer length for sym request bsc1213925 - CVE-2023-3354: io: remove io watch if TLS channel is closed during handshake...

The vulnerability of the tftp_input() function in the src/tftp.c component of the TCP-IP Libslirp emulator allows a hacker to gain access to confidential data.

The vulnerability of the tftpinput function in the src/tftp.c component of the TCP-IP Libslirp emulator relates to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to gain access to confidential data...

Cross-site Scripting (XSS)

Overview markdown-to-jsx is a lightweight, customizable React markdown component. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the src property due to improper input sanitization. An attacker can execute arbitrary code by injecting a malicious iframe element in...

Medium: jtidy

Issue Overview: An issue was discovered jtidy thru r938 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies. CVE-2023-34623 Affected Packages: jtidy Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Vis...

CVE-2024-25201

Espruino 2v20 commit fcc9ba4 was discovered to contain an Out-of-bounds Read via jsvStringIteratorPrintfCallback at src/jsvar.c...

Heap overflow

Jsish v3.5.0 was discovered to contain a heap-buffer-overflow in ./src/jsiUtils.c...

Stack overflow

Espruino 2v20 commit fcc9ba4 was discovered to contain a Stack Overflow via the jspeFactorFunctionCall at src/jsparse.c...

Out-of-bounds

Espruino 2v20 commit fcc9ba4 was discovered to contain an Out-of-bounds Read via jsvStringIteratorPrintfCallback at src/jsvar.c...

CVE-2024-25200

CVE-2024-25200 affects Espruino 2v20 (commit fcc9ba4). The vulnerability is a Stack Overflow via the jspeFactorFunctionCall in src/jsparse.c. Documented impact is high (availability), with network attack vector and no privileges required. No remediation details are provided in the supplied source...

CVE-2024-25201

The CVE-2024-25201 entry concerns Espruino 2v20 (commit fcc9ba4) with an Out-of-bounds Read in the jsvStringIteratorPrintfCallback function located at src/jsvar.c. Public sources in the dataset (NVD, Red Hat, CVE lists, CNNVD, etc.) consistently describe a read past array bounds in this component...

CVE-2024-25200

Espruino 2v20 commit fcc9ba4 was discovered to contain a Stack Overflow via the jspeFactorFunctionCall at src/jsparse.c...

Low: sudo

Issue Overview: No CVE associated with this advisory Affected Packages: sudo Issue Correction: Run yum update sudo or yum update --advisory ALAS-2024-1917 to update your system. New Packages: i686: sudo-debuginfo-1.8.23-10.58.amzn1.i686 sudo-devel-1.8.23-10.58.amzn1.i686 ...

Important: nss

Issue Overview: A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classified as critical. This issue affects the function sessionReadRecord of the file ext/session/sqlite3session.c of the component make alltest Handler. The manipulation leads to heap-based buffer overflow. It is...

GO-2024-2466 Denial of service in github.com/go-git/go-git/v5 and gopkg.in/src-d/go-git.v4

Denial of service in github.com/go-git/go-git/v5 and gopkg.in/src-d/go-git.v4...

whoogle-search Cross-Site Scripting Vulnerability

whoogle-search is a software application. Self-hosted, ad-free, privacy-respecting meta-search engine A cross-site scripting vulnerability exists in whoogle-search versions prior to 0.8.4, which stems from the element method in app/routes.py that does not validate user-controlled srctype and...

Important: apache-ivy

Issue Overview: When Apache Ivy downloads artifacts from a repository it stores them in the local file system based on a user-supplied "pattern" that may include placeholders for artifacts coordinates like the organisation, module or version. If said coordinates contain "../" sequences - which ar...

CVE-2024-22911

A stack-buffer-underflow vulnerability was found in SWFTools v0.9.2, in the function parseExpression at src/swfc.c:2602...

Stack overflow

swftools 0.9.2 was discovered to contain a stack-buffer-underflow vulnerability via the function parseExpression at swftools/src/swfc.c:2576...

Cross site scripting

The Qyrr WordPress plugin before 0.7 does not escape the data-uri of the QR Code when outputting it in a src attribute, allowing for Cross-Site Scripting attacks. Furthermore, the datauritometa AJAX action, available to all authenticated users, only had a CSRF check in place, with the nonce...

CVE-2023-49569 vulnerabilities

Vulnerabilities for packages: nuclei, src-fingerprint, pulumi-kubernetes-operator, scorecard, bom, go-licenses, gitsign, gitness, goreleaser...