18095 matches found
Astra Linux – Vulnerability in avahi
In Avahi, including versions 0.6.32 and 0.7, avahi-daemon inadvertently responds to IPv6 unicast queries with source addresses that are not on-link. This allows remote attackers to cause a denial of service traffic amplification and may lead to information leakage by extracting potentially...
Astra Linux – Vulnerability in Wireshark
In Wireshark versions 3.0.0 to 3.0.2, 2.6.0 to 2.6.9, and 2.4.0 to 2.4.15, the ASN.1 BER dissector and related dissectors might crash. This issue was addressed in epan/asn1.c by properly restricting buffer increments...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Ring-Buffer: Fixed buffer locking in ringbuffersubbuforderset. Expanded the critical section in ringbuffersubbuforderset to ensure that error handling occurs with a per-buffer mutex held, thereby preventing list corruption and...
Astra Linux – Vulnerability in xwayland, xorg-server
A flaw was discovered in the RandR extension, where the RRChangeProviderProperty function does not properly validate inputs. This issue leads to an integer overflow when calculating the total size to allocate...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: dm: fixed dmblkreportzones If dmgetlivetable returned NULL, dmputlivetable was never called. It is also possible that md-zonerevalidatemap might change during the execution of this function. This value should only be read once, s...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: RDMA/cma: Fixed a hang that occurred when cmaneteventcallback failed to call queuework. The referenced commit addressed a crash that occurred when cmaneteventcallback was called for a cmaid, while work on that id from a previous...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: RDMA/mlx5: Fixed error handling when the firmware fails and the RQ is destroyed. When the RQ is destroyed, if the firmware command fails—which is the last resource to be destroyed—some SW resources are already cleaned,...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: Discarding stale CPU state when handling SME traps The logic for handling SME traps improperly manipulates the saved FPSIMD/SVE/SME state. A race condition can occur when the SME trap handler is preempted before and...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: net: drv: netdevsim: do not call napicomplete from netpoll netdevsim supports netpoll. Make sure we do not call npaiComplete from it, as it may not be scheduled. Breno reported encountering a warning in npaiCompleteDone: WARNING:...
Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: bpf: Avoid bpfprogret0warn when JIT fails Syzkaller reported an issue: WARNING: CPU: 3 PID: 217 at kernel/bpf/core.c:2357 bpfprogret0warn+0xa/0x20 kernel/bpf/core.c:2357 Linked modules: CPU: 3 UID: 0 PID: 217 Comm: kworker/u32:6...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Wifi: ath12k – Fix for node corruption in the “ar-arvifs” list In the current WLAN recovery code flow, the ath12kcorehalt function only reinitializes the “arvifs” list head. This causes the list node immediately following the lis...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: nvmem: zynqmpnvmem: The driver no longer crashes after cleanup. The commit 29be47fcd6a0 “nvmem: zynqmpnvmem: zynqmpnvmemprobe cleanup“ changed the driver so that it expects the device pointer to be passed as a “context” parameter...
Astra Linux – Vulnerability in Linux
A flaw was discovered in the way RTAS handled memory accesses in user space for kernel communication. In a guest system that is under lockdown usually due to Secure Boot, running on top of PowerVM or KVM hypervisors pseries platform, a root-like local user could exploit this flaw to further...
Astra Linux – Vulnerability in Ceph
A flaw was discovered in ceph-dashboard. The JSON Web Token JWT used for user authentication is stored by the frontend application in the browser’s localStorage, which is potentially vulnerable to attacks via XSS attacks. The most significant threat of this vulnerability is related to data...
Astra Linux – Vulnerability in openjpeg2
There is a flaw in openjpeg in versions prior to 2.4.0, located in src/lib/openjp2/pi.c. When an attacker can provide crafted input that is processed by the openjpeg encoder, it may lead to an out-of-bounds read. The most significant impact of this flaw is the application’s availability...
Astra Linux – Vulnerability in exim4
Exim 4 before 4.94.2 allows out-of-bounds write-ups, because the main function, while having setuid root, copies the current working directory pathname into a buffer that is too small on some common platforms...
Astra Linux – Vulnerability in exim4
Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow, because getstdinput allows unbounded reads that are accompanied by unbounded increases in a certain size variable. NOTE: Exploitation may be impractical due to the execution time required to cause an overflow multiple days...
Astra Linux – Vulnerability in exim4
Exim 4 before 4.94.2 allowed a heap-based buffer overflow in queuerun, through two sender options: -R and -S. This could lead to privilege escalation from exim to root...
Astra Linux – Vulnerability in Wireshark
In Wireshark versions 3.2.0 to 3.2.7, the GQUIC dissector could crash. This issue was addressed in the epan/dissectors/packet-gquic.c file by correcting the implementation of offset advancement...
Astra Linux – Vulnerability in Linux
The vgacon subsystem in the Linux kernel before version 5.8.10 mishandles software scrollback operations. There is an out-of-bounds read in vgaconscrolldelta, also known as CID-973c096f6a85...
Astra Linux – Vulnerability in Chromium
Before version 87.0.4280.88, using extensions in Google Chrome allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page...
Astra Linux – Vulnerability in Chromium
Insufficient data validation in V8 in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Astra Linux – Vulnerability in Ansible
A flaw was discovered in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new path, and then select a new destination path on the controller node. All versions under 2.7.x, 2.8.x, and 2.9.x branches are believed to be vulnerable...
Astra Linux – Vulnerability in Ansible
A flaw was discovered in Ansible Engine, affecting versions 2.7.x before 2.7.17, 2.8.x before 2.8.11, and 2.9.x before 2.9.7. It also affects Ansible Tower in versions 3.4.5 and 3.5.5, as well as 3.6.3, when the ldapattr and ldapentry community modules are used. This issue exposes the LDAP bind...
Astra Linux – Vulnerability in ffmpeg
A buffer overflow vulnerability exists in FFmpeg 4.1 through apngdoinverseblend in libavcodec/pngenc.c, which could allow a remote malicious user to cause a Denial of Service attack...
Astra Linux – Vulnerability in ffmpeg
A buffer overflow vulnerability exists in FFmpeg 4.2, specifically in the builddiffmap function within libavfilter/vffieldmatch.c. This vulnerability could allow a remote malicious user to cause a Denial of Service attack...
Astra Linux – Vulnerability in Linux
A vulnerability was discovered in the Linux kernel, where a reference count leak in the llcpsockconnect function causes a use-after-free condition, which may lead to privilege escalation...
Astra Linux – Vulnerability in Ceph
A flaw was discovered in Ceph versions prior to 16.y.z, where Ceph stores mgr module passwords in plain text. This can be identified by searching the mgr logs using Grafana and the dashboard, as the passwords are visible...
Astra Linux – Vulnerability in Wireshark
A crash occurred in the USB HID protocol dissector, and possibly in other dissectors in Wireshark versions 3.4.0, 3.2.0 to 3.2.8. This issue allows for denial of service through packet injection or with crafted capture files...
Astra Linux – Vulnerability in opensc
The Oberthur smart card software driver in OpenSC before version 0.21.0-rc1 has a heap-based buffer overflow in the scoberthurreadfile function...
Astra Linux – Vulnerability in ffmpeg
There is a heap-based Buffer Overflow vulnerability in FFmpeg 4.2, located in libavfilter/vfcolorconstancy.c, specifically in the slicegetderivative function within fadegetderivative. This vulnerability may lead to memory corruption and other potential issues...
Astra Linux – Vulnerability in ffmpeg
There is a heap-based buffer overflow vulnerability in FFmpeg 4.2, located in the file libavfilter/vfw3fdif.c, within the filter16complexlow module. This vulnerability may lead to memory corruption and other potential issues...
Astra Linux – Vulnerability in ffmpeg
There is a heap-based Buffer Overflow vulnerability in FFmpeg 4.2, located in the file libavfilter/afafade.c within crossfadesamplesfltp. This vulnerability may lead to memory corruption and other potential issues...
Astra Linux – Vulnerability in Intel Microcode
Incomplete cleanup in some IntelR VT-d products may allow an authenticated user to potentially enable escalation of privileges via local access...
Astra Linux – Vulnerability in Intel Microcode
Observable timing discrepancies in some Intel processors may allow an authenticated user to potentially enable information disclosure through local access...
Astra Linux – Vulnerability in Intel Microcode
A domain-bypass transient execution vulnerability in some Intel AtomR processors may allow an authenticated user to potentially enable information disclosure through local access...
Astra Linux – Vulnerability in Linux
The 802.11 standard that underpins Wi-Fi Protected Access WPA, WPA2, and WPA3 and Wired Equivalent Privacy WEP does not require that the A-MSDU flag in the plaintext QoS header field be authenticated. Against devices that support receiving non-SSP A-MSDU frames which is mandatory as part of...
Astra Linux – Vulnerability in Linux
A NULL pointer dereference flaw was discovered in the Linux kernel’s GPU Nouveau driver functionality in versions prior to 5.12-rc1. This flaw allows a local user to crash the system. The flaw occurs when the user calls ioctl DRMIOCTLNOUVEAUCHANNELALLOC...
Astra Linux – Vulnerability in xmlgraphics-commons
Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests. Users...
Astra Linux – Vulnerability in nss
When converting coordinates from projective to affine, the modular inversion was not performed in constant time, allowing for a timing-based side channel attack. This vulnerability affects Firefox versions less than 80, as well as Firefox for Android versions less than 80...
Astra Linux – Vulnerability in sane-backends
A heap buffer overflow in SANE backends before version 1.0.30 allows a malicious device connected to the same local network as the victim to execute arbitrary code, known as GHSL-2020-080...
Astra Linux – Vulnerability in WebKit2GTK
There is a code execution vulnerability in the AudioSourceProviderGStreamer functionality of Webkit WebKitGTK 2.30.1. A specially crafted web page may lead to a use after free issue...
Astra Linux – Vulnerability in Ansible
A flaw in log output neutralization was discovered in Ansible when using the uri module. This flaw exposes sensitive data to content and JSON output. It allows attackers to access logs or outputs of executed tasks, thereby enabling them to read keys used in playbooks from other users within the u...
Astra Linux – Vulnerability in Linux
A issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check authenticity of fragmented TKIP frames. An adversary can exploit this vulnerability to inject and possibly decrypt packets in WPA or WPA2 networks th...
Astra Linux – Vulnerability in Linux, BlueZ
In the Bluetooth Core Specification 2.1 through 5.2, Bluetooth LE and BR/EDR secure pairing mechanisms may allow a nearby man-in-the-middle attacker to identify the Passkey used during pairing in the Passkey authentication procedure by reflecting the public key and the authentication evidence of...
Astra Linux – Vulnerability in Apache2
Apache HTTP Server versions 2.4.41 to 2.4.46 with modproxyhttp can become unstable when processing specially crafted requests that use both Content-Length and Transfer-Encoding headers. This can lead to a denial of service attack...
Astra Linux – Vulnerability in openjpeg2
In OpenJPEG version 2.3.1, the jp2/opjdecompress.c file contains a use-after-free issue. This issue can occur if there is a mix of valid and invalid files in a directory that is processed by the decompressor. It is also possible for a double free to occur. This issue is related to calling...
Astra Linux – Vulnerability in OpenVPN
OpenVPN 2.5.1 and earlier versions allow remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication. This can potentially lead to further information leaks...
Astra Linux – Vulnerability in libhibernate3-java
A flaw was discovered in Hibernate-core in versions prior to and including 5.4.23.Final. An SQL injection occurs in the implementation of the JPA Criteria API; this allows unsanitized literals to be used in SQL comments within queries. This flaw could enable attackers to access unauthorized...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: bpf: bpflocalstorage: Always use bpfmemalloc in PREEMPTRT. In PREEMPTRT, kmallocGFPATOMIC is still not safe in non-preemptible contexts. Therefore, bpfmemalloc must be used in PREEMPTRT. This patch aims to enforce the use of...