CVE-2022-50542 media: si470x: Fix use-after-free in si470x_int_in_callback()

In the Linux kernel, the following vulnerability has been resolved: media: si470x: Fix use-after-free in si470xintincallback syzbot reported use-after-free in si470xintincallback 1. This indicates that urb-context, which contains struct si470xdevice object, is freed when si470xintincallback is...

Start-up Security 101: How to Protect Your Venture from Cybersecurity Risk

Did you know that 43% of cyberattacks target small businesses, yet only 14% are prepared to defend themselves?…...

Mozilla: Use-after-free in <code>nsDNSService</code>

The Mozilla Foundation Security Advisory describes this flaw as: A use-after-free was identified in the nsDNSService::Init. This issue appears to manifest rarely during start-up...

Mozilla: Use-after-free in <code>nsDNSService</code>

The Mozilla Foundation Security Advisory describes this flaw as: A use-after-free was identified in the nsDNSService::Init. This issue appears to manifest rarely during start-up...

CVE-2023-6862

The Mozilla Foundation Security Advisory describes this flaw as: A use-after-free was identified in the nsDNSService::Init. This issue appears to manifest rarely during start-up...

CVE-2023-6862

A use-after-free was identified in the nsDNSService::Init. This issue appears to manifest rarely during start-up. This vulnerability affects Firefox ESR 115.6 and Thunderbird 115.6...

CVE-2023-6862

A use-after-free was identified in the nsDNSService::Init. This issue appears to manifest rarely during start-up. This vulnerability affects Firefox ESR 115.6 and Thunderbird 115.6...

tang security update

14-2 - Fix service start up 14-1 - New upstream release - v14. Resolves: rhbz2182411 Resolves: CVE-2023-1672...

CVE-2023-30744 Improper access control during application start-up in SAP AS NetWeaver JAVA.

In SAP AS NetWeaver JAVA - versions SERVERCORE 7.50, J2EE-FRMW 7.50, CORE-TOOLS 7.50, an unauthenticated attacker can attach to an open interface and make use of an open naming and directory API to instantiate an object which has methods which can be called without further authorization and...

SUSE CVE-2018-5163

If a malicious attacker has used another vulnerability to gain full control over a content process, they may be able to replace the alternate data resources stored in the JavaScript Start-up Bytecode Cache JSBC for other JavaScript code. If the parent process then runs this replaced code, the...

CVE-2022-25218

The use of the RSA algorithm without OAEP, or any other padding scheme, in telnetdstartup, allows an unauthenticated attacker on the local area network to achieve a significant degree of control over the "plaintext" to which an arbitrary blob of ciphertext will be decrypted by OpenSSL's...

CVE-2020-1506 Windows Start-Up Application Elevation of Privilege Vulnerability

...

CVE-2020-1506

Technical details about CVE-2020-1506 are not publicly provided in the connected documents. Monitor for updates.

KLA11954 Multiple vulnerabilities in Microsoft Browsers

Multiple vulnerabilities were found in Microsoft browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Scripting Engine can be exploited remotely to execute...

August 13, 2019—KB4512486 (Security-only update)

August 13, 2019—KB4512486 Security-only update IMPORTANT Verify that you have installed the required updates listed in the How to get this update section before installing this update. Improvements and fixes This security update includes quality improvements. Key changes include: Security updates...

openSUSE Security Update : MozillaThunderbird (openSUSE-2019-680)

This update for Mozilla Thunderbird to version 60.2.1 fixes multiple issues. Multiple security issues were fixed in the Mozilla platform as advised in MFSA 2018-25. In general, these flaws cannot be exploited through email in Thunderbird because scripting is disabled when reading mail, but are...

India's Startup Story - The Future of India's Digital Economy

India's goal of reaching a $1 trillion digital economy by 20221 is said to be fuelled, in part, by the spurt in the growth of startups across the country. The number of Internet users in India is growing at an enormous rate with close to 500 million internet users today2. Indians are at the...

Authentication flaw

Some Huawei smartphones ALP-AL00B 8.0.0.118DC00, ALP-TL00B 8.0.0.118DC01, BLA-AL00B 8.0.0.118DC00, BLA-L09C 8.0.0.127C432, 8.0.0.128C432, 8.0.0.137C432, BLA-L29C 8.0.0.129C432, 8.0.0.137C432 have an authentication bypass vulnerability. When the attacker obtains the user's smartphone, the...

CVE-2018-7910

Some Huawei smartphones ALP-AL00B 8.0.0.118DC00, ALP-TL00B 8.0.0.118DC01, BLA-AL00B 8.0.0.118DC00, BLA-L09C 8.0.0.127C432, 8.0.0.128C432, 8.0.0.137C432, BLA-L29C 8.0.0.129C432, 8.0.0.137C432 have an authentication bypass vulnerability. When the attacker obtains the user's smartphone, the...

CVE-2018-7910

Some Huawei smartphones ALP-AL00B 8.0.0.118DC00, ALP-TL00B 8.0.0.118DC01, BLA-AL00B 8.0.0.118DC00, BLA-L09C 8.0.0.127C432, 8.0.0.128C432, 8.0.0.137C432, BLA-L29C 8.0.0.129C432, 8.0.0.137C432 have an authentication bypass vulnerability. When the attacker obtains the user's smartphone, the...