AZL-31853 CVE-2023-1192 affecting package kernel for versions less than 5.15.137.1-1

A use-after-free flaw was found in smb2isstatusiotimeout in CIFS in the Linux Kernel. After CIFS transfers response data to a system call, there are still local variable points to the memory region, and if the system call frees it faster than CIFS uses it, CIFS will access a free memory region,...

Oracle timeout at rebalance will result in a sell-off of all RSRs at 0 price

Lines of code Vulnerability details When creating the trade for rebalance, the RecollateralizationLibP1.nextTradePair uses uint192 low, uint192 high = rsrAsset.price; // UoA/tok to get the rsr sell price. And the rsr assert is a pure Assert contract, which price function will just return 0, FIXMA...

GitLab 安全漏洞

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery, and other features. A security vulnerability exists in GitLab that stems from the diff formatter...

CVE-2018-15472

An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. The diff formatter using rouge can block for a long time in Sidekiq jobs without any timeout...

AZL-34932 CVE-2023-27478 affecting package libmemcached-awesome for versions less than 1.1.4-1

libmemcached-awesome is an open source C/C++ client library and tools for the memcached server. libmemcached could return data for a previously requested key, if that previous request timed out due to a low POLLTIMEOUT. This issue has been addressed in version 1.1.4. Users are advised to upgrade...

SUSE CVE-2018-8037

If an async request was completed by the application at the same time as the container triggered the async timeout, a race condition existed that could result in a user seeing a response intended for a different user. An additional issue was present in the NIO and NIO2 connectors that did not...

November 8, 2022-Security Only Update for .NET Framework 4.6.2 for Windows Server 2008 SP2 (KB5020681)

November 8, 2022-Security Only Update for .NET Framework 4.6.2 for Windows Server 2008 SP2 KB5020681 Applies to: Microsoft .NET Framework 4.6.2 REMINDER Windows 7, Windows Server 2008 R2, Windows Embedded Standard 7, and Windows Embedded POS Ready 7 have reached the end of mainstream support and...

CVE-2021-32658

Nextcloud Android is the Android client for the Nextcloud open source home cloud system. Due to a timeout issue the Android client may not properly clean all sensitive data on account removal. This could include sensitive key material such as the End-to-End encryption keys. It is recommended that...

Sensitive data may not be removed from storage on account removal

None...

Nextcloud Android 信息泄露漏洞

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. Nextcloud Android suffers from an information disclosure vulnerability that stems from the fact that due to a timeout issue, the Android client may fail to...

PT-2021-19836 · Nextcloud · Nextcloud Android App

Name of the Vulnerable Software and Affected Versions: Nextcloud Android versions prior to 3.16.1 Description: The Nextcloud Android client has a timeout issue that may prevent it from properly cleaning sensitive data when an account is removed. This could include sensitive key material, such as...

Radius Challenge Response Timeout Between NetScaler Gateway and Radius Server

When using two-factor challenge/response authentication through RADIUS, the NetScaler Gateway imposes a session timeout for the RADIUS challenge/response dialogue. In case of SMS token code delivery, there might be long delays between the challenge displayed to the user and the actual submission ...

Description of the Office Web Apps Server update: March 12, 2013

Description of the Office Web Apps Server update: March 12, 2013 INTRODUCTION Microsoft has released an update for Microsoft Office Web Apps Server. This update provides the latest fixes for Office Web Apps Server. Additionally, this update contains stability and performance improvements. Known...

Unable to map printers using Citrix policies from the cloud hosted Citrix Studio

Steps to reproduce the error: 1. Login to Citrix cloud portal and launch the Studio. 2. Select the Policies Tab in the cloud hosted Studio. 3. Navigate to Session printers and add new printer. 4. Browse the Print server using the UNC path and click browse. 5. It times out 6. If the server and the...

DEBIAN-CVE-2019-3883

In 389-ds-base up to version 1.4.1.2, requests are handled by workers threads. Each sockets will be waited by the worker for at most 'ioblocktimeout' seconds. However this timeout applies only for un-encrypted requests. Connections using SSL/TLS are not taking this timeout into account during...

UBUNTU-CVE-2018-6169

Lack of timeout on extension install prompt in Extensions in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to trigger installation of an unwanted extension via a crafted HTML page...

CVE-2018-6169

Removed by vendor...

Event 7011:Service Control Manager NLASVC Service Timings Out

PVS server becomes unresponsive with numerous event 7011 - A timeout 30000 milliseconds was reached while waiting for a transaction response from the Nlasvc service...

NetScaler Gateway : Radius Authentication Fails Intermittently Despite RADIUS Server Accept

NetScaler Gateway Authentication Scenario 1: Gateway Page would present the authentication to be done in 2 factor. First the user enters the LDAP username and password. Now there would be 2 options either user can do the touch authentication present in the MFA Application or else can wait for the...

App Layering: System -> Settings and Configuration Page Hangs at "In Progress", Management Console Page Timesout 5 Minutes Later

When browsing in the App Layering Management Console web page to the System - Settings and Configuration page, a box saying "In Progress..." pops up in the middle of the HTTP Certificate Settings section, and the page never finishes populating. 5 minutes later, the entire management console web...