Huawei EulerOS: Security Advisory for uboot-tools (EulerOS-SA-2022-2422)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.6.0 : cifs-utils (EulerOS-SA-2022-2547)

According to the versions of the cifs-utils packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to...

EulerOS Virtualization 3.0.6.0 : vim (EulerOS-SA-2022-2594)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - vim is vulnerable to Out-of-bounds Read CVE-2021-4166, CVE-2021-4193 - vim is vulnerable to Use After Free CVE-2021-4192 - vim is...

EulerOS Virtualization 3.0.6.6 : cifs-utils (EulerOS-SA-2022-2489)

According to the versions of the cifs-utils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to...

EulerOS 2.0 SP8 : vim (EulerOS-SA-2022-2483)

According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Buffer Over-read in function grabfilename in GitHub repository vim/vim prior to 8.2.4956. This vulnerability is capable of crashing the software,...

EulerOS 2.0 SP10 : uboot-tools (EulerOS-SA-2022-2422)

According to the versions of the uboot-tools packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Das U-Boot through 2022.07-rc5, an integer signedness error and resultant stack-based buffer overflow in the 'i2c md' command enables th...

EulerOS 2.0 SP10 : vim (EulerOS-SA-2022-2436)

According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Use After Free in GitHub repository vim/vim prior to 8.2. CVE-2022-1898, CVE-2022-2042 - Heap-based Buffer Overflow in GitHub repository vim/vim...

EulerOS 2.0 SP10 : vim (EulerOS-SA-2022-2423)

According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Use After Free in GitHub repository vim/vim prior to 8.2. CVE-2022-1898, CVE-2022-2042 - Heap-based Buffer Overflow in GitHub repository vim/vim...

EulerOS 2.0 SP10 : uboot-tools (EulerOS-SA-2022-2435)

According to the versions of the uboot-tools package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Das U-Boot through 2022.07-rc5, an integer signedness error and resultant stack-based buffer overflow in the 'i2c md' command enables the...

EulerOS 2.0 SP5 : vim (EulerOS-SA-2022-2451)

According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Buffer Over-read in GitHub repository vim/vim prior to 8.2. CVE-2022-2124 - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2...

CVE-2022-3324

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0598...

CVE-2022-3324 Stack-based Buffer Overflow in vim/vim

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0598...

SUSE SLED12 / SLES12 Security Update : podofo (SUSE-SU-2022:3385-1)

The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3385-1 advisory. - A stack-based buffer over-read in the PdfEncryptMD5Base::ComputeEncryptionKey function in PdfEncrypt.cpp in PoDoFo...

[slackware-security] vim

New vim packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.0594-i586-1slack15.0.txz: Upgraded. Fixed stack-based buffer overflow. Thanks to marav for the heads-up. In addition, Mig21...

Slackware Linux 15.0 / current vim Vulnerability (SSA:2022-269-02)

The version of vim installed on the remote host is prior to 9.0.0594. It is, therefore, affected by a vulnerability as referenced in the SSA:2022-269-02 advisory. - Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577. CVE-2022-3296 Note that Nessus has not tested for this...

CVE-2022-3296 Stack-based Buffer Overflow in vim/vim

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577...

CVE-2022-3296 Stack-based Buffer Overflow in vim/vim

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577...

CVE-2022-3296

CVE-2022-3296 is a stack-based buffer overflow in the vim/vim project, affecting vim prior to 9.0.0577. The underlying issue is a stack-based overflow in the affected code path. Impact and exploitability are described in the linked advisories as HIGH severity with local access and user interactio...

CVE-2022-2972 MZ Automation libIEC61850 Stack-Based Buffer Overflow

MZ Automation's libIEC61850 versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e is vulnerable to a stack-based buffer overflow, which could allow an attacker to crash the device or remotely execute arbitrary code...

EulerOS Virtualization 2.9.0 : vim (EulerOS-SA-2022-2405)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4428. CVE-2022-0696 - Use after free in utfptr2char in GitHub...