EUVD-2021-0946

Malware in sbrugna...

Incomplete Cleanup

Overview Affected versions of this package are vulnerable to Incomplete Cleanup via the handleexit function due to being interrupted by a SIGTERM signal, the program terminates immediately using os.exit1, bypassing cleanup code. Remediation Upgrade codecarbon to version 2.8.4 or higher. Reference...

kernel: pps: Fix a use-after-free

In the Linux kernel, the following vulnerability has been resolved: pps: Fix a use-after-free On a board running ntpd and gpsd, I'm seeing a consistent use-after-free in sysexit from gpsd when rebooting: pps pps1: removed ------------ cut here ------------ kobject: 'null' 00000000db4bec24: is not...

CVE-2024-47707 ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev()

In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid possible NULL deref in rt6uncachedlistflushdev Blamed commit accidentally removed a check for rt-rt6iidev being NULL, as spotted by syzbot: Oops: general protection fault, probably for non-canonical address...

SUSE CVE-2020-9489

A carefully crafted or corrupt file may trigger a System.exit in Tika's OneNote Parser. Crafted or corrupted files can also cause out of memory errors and/or infinite loops in Tika's ICNSParser, MP3Parser, MP4Parser, SAS7BDATParser, OneNoteParser and ImageParser. Apache Tika users should upgrade ...

CREAR ALMail32 1.10 Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/574/info The ALMail32 POP3 client conatins unchecked buffers in the header parsing code. An abnormally long FROM: or TO: field in the header of an incoming email will overwrite the buffer and allow arbitrary code to be...

mail.local.diff

688a689,698 define MAXMSGLEN 65536 / Make sure message is less than MAXMSGLEN / if ftellfp MAXMSGLEN syslogLOGDEBUG,"Message too long - %i bytes limit is %i\n", ftellfp,MAXMSGLEN; exit1;...