The vulnerability of the xbean-reflect/JNDI library component from Jackson-databind allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the xbean-reflect/JNDI library component related to Jackson-databind involves the restoration of unreliable data structures in memory. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the BlockLogFormatter.php component of the MediaWiki software environment, related to the shortcomings in the security measures for handling web page structures, allows attackers to compromise the integrity of data.

The vulnerability of the BlockLogFormatter.php component of the MediaWiki software, which is used to implement the hypertext environment, is related to deficiencies in the security measures used to protect web page structures. Exploiting this vulnerability could allow a malicious actor to...

The vulnerability of the WordPress website content management system, related to deficiencies in the security measures used to protect web page structures, allows attackers to compromise data integrity.

The vulnerability of the WordPress website content management system is related to deficiencies in the security measures used to protect web page structures. Exploiting this vulnerability allows a malicious actor to compromise the integrity of data...

CVE-2020-25578

In FreeBSD 12.2-STABLE before r368969, 11.4-STABLE before r369047, 12.2-RELEASE before p3, 12.1-RELEASE before p13 and 11.4-RELEASE before p7 several file systems were not properly initializing the doff field of the dirent structures returned by VOPREADDIR. In particular, tmpfs5, smbfs5, autofs5...

CVE-2020-25578

Removed by vendor...

The vulnerability of the RabbitMQ messaging broker, related to deficiencies in the security measures used for protecting web page structures, allows attackers to compromise data integrity.

The vulnerability of the RabbitMQ messaging broker is related to deficiencies in the security measures used to protect web page structures. Exploiting this vulnerability allows a malicious actor to compromise data integrity remotely...

The vulnerability of the RabbitMQ messaging broker, related to deficiencies in the security measures used for protecting web page structures, allows attackers to compromise data integrity.

The vulnerability of the RabbitMQ messaging broker is related to deficiencies in the security measures used to protect web page structures. Exploiting this vulnerability allows a malicious actor to compromise data integrity remotely...

[SECURITY] Fedora 33 Update: kernel-headers-5.11.7-200.fc33

Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package...

[SECURITY] Fedora 34 Update: kernel-headers-5.11.7-300.fc34

Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package...

OracleVM 3.4 : kernel-uek (OVMSA-2021-0008)

The remote OracleVM system is missing necessary patches to address security updates: - An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsitransport structure. When an iSCSI transport is registered with the iSCSI...

The vulnerability of the `escape_javascript` function in the `javascript_helper.rb` component of the ActionView programming platform for Ruby on Rails allows attackers to compromise data integrity.

The vulnerability of the escapejavascript function in the javascripthelper.rb component of the ActionView programming platform for the Ruby on Rails framework is related to deficiencies in the security measures used to protect web page structures. Exploiting this vulnerability could allow an...

Linux kernel buffer overflow vulnerability (CNVD-2021-19422)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel versions 5.11.3 and earlier, which stems from certain iSCSI data structures not having proper length constraints or checks. No...

CVE-2021-27365

An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length constraints or checks, and can exceed the PAGESIZE value. An unprivileged user can send a Netlink message that is associated with iSCSI, and has a length up to the maximum leng...

CVE-2021-27365

An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length constraints or checks, and can exceed the PAGESIZE value. An unprivileged user can send a Netlink message that is associated with iSCSI, and has a length up to the maximum leng...

CVE-2021-27365

An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length constraints or checks, and can exceed the PAGESIZE value. An unprivileged user can send a Netlink message that is associated with iSCSI, and has a length up to the maximum leng...

CVE-2021-27365

CVE-2021-27365 affects the Linux kernel iSCSI subsystem. The issue is a heap overflow in iSCSI data handling where certain iSCSI data structures lack proper length checks and can exceed PAGE_SIZE; an unprivileged, local user can send a Netlink message (up to the maximum Netlink message length) an...

Design/Logic Flaw

An issue was discovered in the quinn crate before 0.7.0 for Rust. It may have invalid memory access for certain versions of the standard library because it relies on a direct cast of std::net::SocketAddrV4 and std::net::SocketAddrV6 data structures...

Linux kernel 缓冲区错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel versions 5.11.3 and earlier, which stems from certain iSCSI data structures not having proper length constraints or checks. No...

CVE-2020-35512

A use-after-free flaw was found in D-Bus Development branch = 1.13.16, dbus-1.12.x stable branch = 1.12.18, and dbus-1.10.x and older branches = 1.10.30 when a system has multiple usernames sharing the same UID. When a set of policy rules references these usernames, D-Bus may free some memory in...

Arbitrary Code Execution

kernel is vulnerable to arbitrary code execution. The vulnerability exists through a use-after-free in the sound subsystem as card disconnection causes certain data structures to be deleted too early...