18102 matches found
Astra Linux – Vulnerability in Linux 5.10, Linux
When sending malicious data to the kernel using the ioctl cmd FBIOPUTVSCREENINFO, the kernel will write data beyond the allocated memory boundaries...
Astra Linux – Vulnerability in Linux 5.10, Linux
When setting a font using malicious data via the ioctl command PIOFONT, the kernel will write memory beyond its bounds...
Astra Linux – Vulnerability in Squid
In versions 4.14 and 5.x through 5.0.5, in some configurations, the Squid vulnerability allows information disclosure due to an out-of-bounds read in the WCCP protocol data. This vulnerability can be exploited as part of a chain for remote code execution, as there is no one to protect it...
Astra Linux – Vulnerability in unbound
Unbound from NLnet Labs, including versions up to and including 1.12.0, and NSD from NLnet Labs, including versions up to and including 4.3.3, contain a local vulnerability that allows for a local symlink attack. When creating the PID file, Unbound and NSD either create the file if it does not...
Astra Linux – Vulnerability in libxslt
Type confusion in xsltNumberFormatGetMultipleLevel prior to libxslt 1.1.33 could allow attackers to potentially exploit heap corruption via crafted XML data...
Astra Linux – Vulnerability in unbound
Before version 1.9.5, Unbound allowed an out-of-bounds write operation through a compressed name in rdatacopy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, an ongoing Unbound installation cannot be remotely or locally exploited...
Astra Linux – Vulnerability in unbound
Unbound before version 1.9.5 allows for an integer overflow in the size calculation in dnscrypt/dnscrypt.c. NOTE: The vendor denies that this is a vulnerability. Although the code may be vulnerable, an active Unbound installation cannot be exploited remotely or locally...
Astra Linux – Vulnerability in unbound
Unbound before version 1.9.5 allows assertion failures and denial of service in dnamepktcopy due to an invalid packet. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, an ongoing Unbound installation cannot be remotely or locally exploited...
Astra Linux – Vulnerability in Firefox and Thunderbird
An iframe from a cross-origin origin that references an XSLT document would inherit the permissions of the parent domain such as access to microphones or cameras. This vulnerability affects Thunderbird 102.2, Thunderbird 91.13, Firefox ESR 91.13, Firefox ESR 102.2, and Firefox 104...
Astra Linux – Vulnerability in Vim
Heap-based Buffer Overflow in the GitHub repository vim/vim before version 9.0.0220...
Astra Linux – Vulnerability in Vim
Improper validation of specified quantities in the input in the GitHub repository’s Vim/Vim version prior to 9.0.0218...
Astra Linux – Vulnerability in PostgresSQL 11
A vulnerability was discovered in PostgreSQL. This attack requires permission to create non-temporary objects in at least one schema, the ability to lure or wait for an administrator to create or update an affected extension in that schema, and the ability to lure or wait for a victim to use the...
Astra Linux – Vulnerability in Vim
Heap-based Buffer Overflow in the GitHub repository for vim/vim before version 9.0.0061...
Astra Linux – Vulnerability in Vim
Out-of-bounds read in the GitHub repository for Vim before version 9.0.0104...
Astra Linux – Vulnerability in Vim
Use After Free in the GitHub repository vim/vim before version 9.0.0046...
Astra Linux – Vulnerability in Vim
Heap-based Buffer Overflow in the GitHub repository for vim/vim before version 9.0.0045...
Astra Linux – Vulnerability in Vim
Stack-based Buffer Overflow in the GitHub repository for vim/vim before version 9.0...
Astra Linux – Vulnerability in Vim
Use After Free in the GitHub repository vim/vim before version 9.0...
Astra Linux – Vulnerability in Vim
Out-of-bounds read in the GitHub repository for Vim before version 9.0...
Astra Linux – Vulnerability in Vim
Out-of-bounds write in the GitHub repository for Vim/Vim before version 9.0...
Astra Linux – Vulnerability in Vim
Out-of-bounds read in the GitHub repository for Vim before version 9.0...
Astra Linux – Vulnerability in Vim
Heap-based Buffer Overflow in the GitHub repository for vim/vim before version 9.0...
Astra Linux – Vulnerability in Vim
Integer overflow or wrap-around in the GitHub repository for vim/vim before version 9.0...
Astra Linux – Vulnerability in Vim
Heap-based Buffer Overflow in the GitHub repository for vim/vim before version 9.0...
Astra Linux – Vulnerability in Vim
Out-of-bounds read in the GitHub repository for Vim before version 9.0...
Astra Linux – Vulnerability in Vim
Out-of-bounds read in the GitHub repository for Vim before version 8.2...
Astra Linux – Vulnerability in Vim
Heap-based Buffer Overflow in the GitHub repository for vim/vim before version 8.2...
Astra Linux – Vulnerability in Vim
Buffer over-reading in the GitHub repository vim/vim before version 8.2...
Astra Linux – Vulnerability in Vim
Heap-based Buffer Overflow in the GitHub repository for vim/vim before version 8.2...
Astra Linux – Vulnerability in Vim
Use After Free in the GitHub repository vim/vim before version 8.2.4979...
Astra Linux – Vulnerability in Vim
Out-of-bounds write-up in the GitHub repository’s Vim/Vim version prior to 8.2.4977...
Astra Linux – Vulnerability in Vim
A classic buffer overflow vulnerability in the GitHub repository for vim/vim, prior to version 8.2.4969...
Astra Linux – Vulnerability in Vim
Buffer over-reading in the GitHub repository vim/vim before version 8.2.4974...
Astra Linux – Vulnerability in Vim
Heap-based Buffer Overflow in the GitHub repository vim/vim before version 8.2.4968...
Astra Linux – Vulnerability in Vim
A heap buffer overflow occurred in the vimstrncpy findword function in the GitHub repository vim/vim, prior to version 8.2.4919. This vulnerability could potentially cause software to crash, enable bypassing the protection mechanism, modify memory, and even allow remote execution...
Astra Linux – Vulnerability in Vim
NULL pointer dereferencing in the function vimregexecstring at regexp.c:2733 in the GitHub repository vim/vim, prior to version 8.2.4938. NULL pointer dereferencing in function vimregexecstring at regexp.c:2733 allows attackers to cause a denial of service application crash through crafted inputs...
Astra Linux – Vulnerability in Vim
Buffer over-reading in the findnextquote function in the GitHub repository’s Vim/Vim version prior to 8.2.4925. These vulnerabilities can cause software to crash, modify memory, and may lead to remote execution...
Astra Linux – Vulnerability in Vim
NULL pointer dereferencing in the function vimregexecstring at regexp.c:2729 in the GitHub repository vim/vim, prior to version 8.2.4901. NULL pointer dereferencing in function vimregexecstring at regexp.c:2729 allows attackers to cause a denial of service application crash through crafted inputs...
Astra Linux – Vulnerability in Vim
This issue was used after the “free” keyword in the appendcommand function in the GitHub repository’s Vim/Vim version prior to 8.2.4895. This vulnerability can cause software to crash, as it involves bypassing the protection mechanism, modifying memory, and potentially enabling remote execution...
Astra Linux – Vulnerability in Vim
Heap-based Buffer Overflow; GitHub repository for Vim/Vim before version 8.2...
Astra Linux – Vulnerability in Vim
Heap-based Buffer Overflow in the GitHub repository for vim/vim before version 8.2...
Astra Linux – Vulnerability in Vim
Vim is vulnerable to Heap-based Buffer Overflow attacks...
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: usb: ffs: Fix use-after-free for epfile Consider a case where ffsfuncepsdisable is called from ffsfuncdisable as part of the composition switch. At the same time, ffsepfilerelease is called from the user space. ffsepfilerelease...
Astra Linux – Vulnerability in Linux, Linux 5.10
A vulnerability has been discovered in the Linux kernel and is classified as critical. The affected part of the code is the function areacacheget in the file drivers/net/ethernet/netronome/nfp/nfpcore/nfpcppcore.c, belonging to the IPsec component. This vulnerability occurs due to improper memory...
Astra Linux – Vulnerability in libxml2
In libxml2 versions prior to 2.9.14, several buffer handling functions in buf.c xmlBuf and tree.c xmlBuffer do not check for integer overflows. This can lead to out-of-bounds memory writes. Exploitation requires a victim to open a crafted, multi-gigabyte XML file. Other software that uses libxml2...
Astra Linux – Vulnerabilities in Firefox, Thunderbird, Expat, LibXMLTok
In xmlparse.c within Expat also known as libexpat, prior to version 2.4.5, attackers could insert namespace-separator characters into namespace URIs...
Astra Linux – Vulnerability in cyrus-sasl2
In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, the plugins/sql.c file does not escape the password used in SQL INSERT or UPDATE statements...
Astra Linux – Vulnerabilities in Firefox, Thunderbird, and Expat
Expat also known as libexpat before version 2.4.4 has an integer overflow in the doProlog function...
Astra Linux – Vulnerability in libxml2
In libxml2 version 2.9.13, the valid.c file contains a use-after-free issue with the ID and IDREF attributes...
Astra Linux – Vulnerabilities in Firefox, Thunderbird, and Expat
The nextScaffoldPart function in xmlparse.c of Expat also known as libexpat, prior to version 2.4.3, has an integer overflow issue...