1230 matches found
Medium: containerd
Issue Overview: A flaw was found in Moby Docker Engine, where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to programs with inheritable file capabilities to elevate those capabilities to the permitted set when...
The vulnerability in the implementation of the “execute restore src-vis” command in FortiOS operating systems allows a hacker to write arbitrary files.
The vulnerability in the execution of the “execute restore src-vis” command in FortiOS operating systems lies in the loading of code without checking its integrity. Exploiting this vulnerability allows an attacker to write arbitrary files using specially crafted update packages...
CVE-2022-1341
An issue was discovered in in bwm-ng v0.6.2. An arbitrary null write exists in getcmdlnoptions function in src/options.c...
Design/Logic Flaw
An issue was discovered in in bwm-ng v0.6.2. An arbitrary null write exists in getcmdlnoptions function in src/options.c...
CVE-2022-1341
An issue was discovered in in bwm-ng v0.6.2. An arbitrary null write exists in getcmdlnoptions function in src/options.c...
CVE-2022-1341
An issue was discovered in in bwm-ng v0.6.2. An arbitrary null write exists in getcmdlnoptions function in src/options.c...
CVE-2022-28049
NGINX NJS 0.7.2 was discovered to contain a NULL pointer dereference via the component njsvmcodearray at /src/njsvmcode.c...
CVE-2021-43521
A Buffer Overflow vulnerability exists in zlog 1.2.15 via zlogconfbuildwithfile in src/zlog/src/conf.c...
CVE-2021-43521
A Buffer Overflow vulnerability exists in zlog 1.2.15 via zlogconfbuildwithfile in src/zlog/src/conf.c...
CVE-2021-41715
libsixel 1.10.0 is vulnerable to Use after free in libsixel/src/dither.c:379...
CVE-2022-1154
A heap use-after-free vulnerability was found in Vim's utfptr2char function of the src/mbyte.c file. This flaw occurs because vim is using a buffer line after it has been freed in the old regexp engine. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering...
CVE-2022-23901
A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...
CVE-2022-23901
CVE-2022-23901 describes a stack overflow in re2c 2.2 due to infinite recursion in src/dfa/dead_rules.cc. Connected advisories show affected environments (e.g., Amazon Linux 2/ALAS2023-2344 and ALAS2023-438; Azure Linux security update) and fixes upgrading to re2c 3.1.x (e.g., 3.1-2) or later. Th...
CVE-2022-23901
A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...
openssl-sys (>=0.9.35 <=0.9.37) potentially affected by CVE-2022-0778 via openssl-src (=110.0.7+1.1.0i)
openssl-src CARGO version =110.0.7+1.1.0i is affected by a known vulnerability. The following packages have a transitive dependency on openssl-src and may be impacted: - openssl-sys =0.9.35, =0.9.37 Source cves: CVE-2022-0778 Source advisory: OSV:GHSA-X3MH-JVJW-3XWX...
roaring-landmask (=0.4.0) potentially affected by CVE-2022-0778 via openssl-src (=300.0.0+3.0.0)
openssl-src CARGO version =300.0.0+3.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on openssl-src and may be impacted: - roaring-landmask =0.4.0 Source cves: CVE-2022-0778 Source advisory: OSV:RUSTSEC-2022-0014...
openssl-sys (>=0.9.35 <=0.9.37) potentially affected by CVE-2022-0778 via openssl-src (=110.0.7+1.1.0i)
openssl-src CARGO version =110.0.7+1.1.0i is affected by a known vulnerability. The following packages have a transitive dependency on openssl-src and may be impacted: - openssl-sys =0.9.35, =0.9.37 Source cves: CVE-2022-0778 Source advisory: OSV:RUSTSEC-2022-0014...
CVE-2022-0943
Heap-based Buffer Overflow occurs in vim in GitHub repository vim/vim prior to 8.2.4563...
CVE-2022-25465
Espruino 2v11 release was discovered to contain a stack buffer overflow via src/jsvar.c in jsvGetNextSibling...
CVE-2022-25465
Espruino 2v11 release was discovered to contain a stack buffer overflow via src/jsvar.c in jsvGetNextSibling...