18095 matches found
Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10
An integer overflow or wrap-around vulnerability exists in the OpenEuler kernel on Linux file system modules, allowing for forced integer overflow. This issue affects the OpenEuler kernel, starting from version 4.19.90, up to and including version 4.19.90-2401.3, as well as versions 5.10.0-60.18....
Astra Linux – Vulnerability in libsdl2
SDL Simple DirectMediaLayer from version 2.0.12 has an integer overflow issue, which leads to heap corruption when using SDLBlitCopy in the video/SDLblitcopy.c file, due to a specially crafted .BMP file...
Astra Linux – Vulnerability in libsdl2
SDL Simple DirectMedia Layer version 2.0.12 has a heap-based buffer over-read issue in the function Blit3or4to3or4inversedrgb in the file video/SDLblitN.c, caused by a malicious .BMP file...
Astra Linux – Vulnerability in ffmpeg
A heap-use-after-free in the avfreep function in libavutil/mem.c of FFmpeg 4.2 allows attackers to execute arbitrary code...
Astra Linux – Vulnerability in imagemagick
ImageMagick 7.0.10-34 allows division by zero in the OptimizeLayerFrames function in MagickCore/layer.c, which may lead to a denial of service...
Astra Linux – Vulnerability in imagemagick
A flaw was discovered in ImageMagick, specifically in the files MagickCore/colorspace-private.h and MagickCore/quantum.h. An attacker who submits a crafted file processed by ImageMagick could trigger undefined behavior, resulting in values that are outside the range of the type unsigned char, and...
Astra Linux – Vulnerability in imagemagick
A flaw was discovered in ImageMagick, specifically in the file MagickCore/quantum-export.c. An attacker who submits a crafted file processed by ImageMagick could trigger undefined behavior, resulting in values that are outside the range of the unsigned long long type, as well as a shift exponent...
Astra Linux – Vulnerability in imagemagick
In the IntensityCompare function within /MagickCore/quantize.c, a double value was being converted to an int and then returned. In some cases, this resulted in a value that was outside the range of the type int. This flaw could be triggered by a malicious input file under certain conditions when...
Astra Linux – Vulnerability in xterm
With Patch 370, xterm enables Sixel support. When this is enabled, attackers can exploit a buffer overflow in the setsixel function in graphicssixel.c by using crafted text...
Astra Linux – Vulnerability in SOX
A floating-point exception vulnerability was discovered in sox, within the lsxaiffstartwrite function at sox/src/aiff.c:622:58. This flaw can lead to a denial of service...
Astra Linux – Vulnerability in rabbitMQ-server
Pivotal RabbitMQ versions prior to v3.7.18, as well as RabbitMQ for PCF versions 1.15.x prior to 1.15.13, versions 1.16.x prior to 1.16.6, and versions 1.17.x prior to 1.17.3, contain two components: the virtual host limits page and the federation management UI. These components do not properly...
Astra Linux – Vulnerability in Vino
The commit d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak CWE-655 in the VNC server code. This flaw allows an attacker to read stack memory, and it can be exploited for information disclosure. Combined with another vulnerability, this flaw can be used to leak stack memory and...
Astra Linux – Vulnerability in the 389-DS-base
When using a syncrepl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted query, resulting in a crash...
Astra Linux – Vulnerability in ffmpeg
Before ffmpeg version 4.3, the tty demuxer did not have a ‘readprobe’ function assigned to it. By creating a legitimate “ffconcat” file that references an image, followed by a file that triggers the tty demuxer, the contents of the second file will be copied into the output file verbatim as long ...
Astra Linux – Vulnerability in the 389-DS-base
A double-free was detected in the way that 389-ds-base handles virtual attribute contexts during persistent searches. An attacker could send a series of search requests, causing the server to behave unexpectedly and potentially crashing it...
Astra Linux – Vulnerability in imagemagick
A flaw was discovered in ImageMagick in the coders/txt.c file. An attacker who submits a crafted file processed by ImageMagick could trigger undefined behavior, resulting in values that are outside the range of the type unsigned long long. This likely leads to a disruption in the application’s...
Astra Linux – Vulnerability in imagemagick
A NULL pointer dereference flaw was discovered in ImageMagick in versions prior to 7.0.10-31, in the ReadSVGImage function in coders/svg.c. This issue arises from not checking the return value from libxml2’s xmlCreatePushParserCtxt function and directly using that value, resulting in a crash and...
Astra Linux – Vulnerability in Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: media: davinci: vpif: Fixed a use-after-free issue during the driver unbind operation. The driver allocates and registers two platform device structures during the probe phase. However, these devices were never deregistered after...
Astra Linux – Vulnerability in Linux 5.15
A flaw was discovered in the unrestricted use of the BPFBTFLOAD function, which could lead to an out-of-bounds memory write in the Linux kernel’s BPF subsystem due to the way a user loads BTFs. This flaw allows a local user to crash the system or escalate their privileges...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
A flaw was discovered in the Linux kernel. The existing KVM SEV API contains a vulnerability that allows a non-root host user-level application to crash the host kernel by creating a confidential guest VM instance in an AMD CPU that supports Secure Encrypted Virtualization SEV...
Astra Linux – Vulnerability in Grunt
Path traversal in the GitHub repository gruntjs/grunt before version 1.5.2...
Astra Linux – Vulnerability in the 389-DS-base
A vulnerability was discovered in the 389 Directory Server, which allows expired passwords to access the database, resulting in improper authentication...
Astra Linux – Vulnerability in the 389-DS-base
A vulnerability was discovered in the 389 Directory Server, which allows an unauthenticated attacker with network access to the LDAP port to cause a denial of service. The denial of service is triggered by a single message sent over a TCP connection, without the need for any bind or other...
Astra Linux – Vulnerability in dnsmasq
A single-byte, non-arbitrary write/use-after-free flaw was discovered in dnsmasq. This flaw allows an attacker to send a crafted packet processed by dnsmasq, potentially causing a denial of service...
Astra Linux – Vulnerability in pcre2
A out-of-bounds read vulnerability was discovered in the PCRE2 library, specifically in the getrecursedatalength function of the pcre2jitcompile.c file. This issue affects recursions in JIT-compiled regular expressions due to duplicate data transfers...
Astra Linux – Vulnerability in pcre2
A out-of-bounds read vulnerability was discovered in the PCRE2 library, specifically in the compilexclassmatchingpath function of the pcre2jitcompile.c file. This issue relates to a Unicode property matching problem in JIT-compiled regular expressions. The vulnerability arises because the charact...
Astra Linux – Vulnerability in Grunt
The file.copy operations in GruntJS are vulnerable to a TOCTOU race condition, which can lead to arbitrary file writes in the GitHub repository gruntjs/grunt before version 1.5.3. This vulnerability allows for arbitrary file writes, which can lead to local privilege escalation to the GruntJS user...
Astra Linux – Vulnerability in gst-plugins-good1.0
Integer overflow in the matroskademux element within the gstmatroskademuxaddwvpkheader function, which allows for a heap overwrite during the parsing of Matroska files. There is a potential for arbitrary code execution due to the heap overwrite...
Astra Linux – Vulnerability in Linux 5.15
A NULL pointer dereference flaw was discovered in the Linux kernel’s KVM module. This flaw can lead to a denial of service in the x86emulateinsn function in arch/x86/kvm/emulate.c. The flaw occurs when an illegal instruction is executed on the guest CPU of the Intel model...
Astra Linux – Vulnerability in gst-plugins-good1.0
DOS: Potential heap overwrite during MKV demuxing using LZO decompression. Integer overflow in the Matroskademux element within the LZO decompression function can cause a segfault, or potentially a heap overwrite, depending on the libc and operating system. Depending on the libc used and the...
Astra Linux – Vulnerability in the 389-DS-base
A access control bypass vulnerability was discovered in version 389-ds-base. This issue arises from improper handling of filters, which can lead to incorrect results. However, further analysis revealed that it actually constitutes an access control bypass. This vulnerability could allow any remot...
Astra Linux – Vulnerability in Linux 5.15
A flaw in memory writing within the Linux kernel’s UDF file system functionality was discovered. This flaw allows a user to trigger certain file operations, which in turn triggers udfwritefi. A local user could exploit this flaw to crash the system or potentially cause other malicious actions...
Astra Linux – Vulnerability in Intel Microcode
Insufficient granularity of access control in out-of-band management in some IntelR Atom and Intel Xeon Scalable Processors may allow a privileged user to potentially enable escalation of privileges through adjacent network access...
Astra Linux – Vulnerability in Linux 5.15
A use-after-free flaw was discovered in the Linux kernel, specifically in the logreplay function within fs/ntfs3/fslog.c in the NTFS journal. This flaw allows a local attacker to crash the system and causes a kernel information leak...
Astra Linux – Vulnerability in Linux 5.15
A race condition in the x86 KVM subsystem within the Linux kernel, as of 6.1-rc6, allows guest OS users to cause a denial of service host OS crash or host OS memory corruption when nested virtualization is enabled and the TDP MMU is also enabled...
Astra Linux – Vulnerability in Thunderbird
An optimization in WebGL was incorrect in some cases, and could have led to memory corruption and a potentially exploitable crash. Note: This advisory was added on December 13th, 2022 after we better understood the impact of the issue. The fix was included in the original release of Firefox 106...
Astra Linux – Vulnerability in Thunderbird
A missing check related to text units could have led to a use-after-free condition and potentially exploitable crashes.Note: This advisory was added on December 13th, 2022 after we better understood the impact of the issue. The fix was included in the original release of Firefox 105. This...
Astra Linux – Vulnerability in Chromium, ffmpeg5
In FFmpeg and Google Chrome, prior to version 108.0.5359.71, uninitialized use allowed a remote attacker to execute arbitrary code within a sandbox through a crafted HTML page. Chromium security severity: Medium...
Astra Linux – Vulnerability in exiv2
There is a floating-point exception in the Exiv2::ValueType function in Exiv2 0.26, which can lead to a remote denial-of-service attack due to malicious input...
Astra Linux – Vulnerability in exiv2
An invalid memory address dereferencing was discovered in the Exiv2::StringValueBase::read method in value.cpp of Exiv2 0.26. This vulnerability causes a segmentation fault and results in the application crashing, leading to a denial of service...
Astra Linux – Vulnerability in exiv2
There is a heap-based buffer overflow issue in the Exiv2::Internal::PngChunk::keyTXTChunk function of pngchunkint.cpp in Exiv2 0.26. A crafted PNG file can lead to a remote denial-of-service attack...
Astra Linux – Vulnerability in virglrenderer
A out-of-bounds read in the vrendblitneedswizzle function in vrendrenderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGLCCMDBLIT commands...
Astra Linux – Vulnerability in Ruby-Nokogiri
A command injection vulnerability exists in Nokogiri v1.10.3 and earlier. This vulnerability allows commands to be executed in a subprocess via Ruby’s Kernel.open method. Processes become vulnerable only if the undocumented method Nokogiri::CSS::Tokenizerloadfile is called with unsafe user input ...
Astra Linux – Vulnerability in virglrenderer
A heap-based buffer overflow in the vrendrenderertransferwriteiov function in vrendrenderer.c in virglrenderer from version 0.8.0 allows guest OS users to cause a denial of service through VIRGLCCMDRESOURCEINLINEWRITE commands...
Astra Linux – Vulnerability in virglrenderer
A heap-based buffer overflow in the vrendrenderertransferwriteiov function in vrendrenderer.c in virglrenderer from version 0.8.0 allows guest OS users to cause a denial of service, or a QEMU guest-to-host escape and code execution, through VIRGLCCMDRESOURCEINLINEWRITE commands...
Astra Linux – Vulnerability in CGal
There is a code execution vulnerability in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. There is also an oob read vulnerability in Nef2/PMio parser.h, specifically in the PMio parser::readvertex function. OOB reads are possible. An attacker can provide malicious input to...
Astra Linux – Vulnerability in exiv2
In Exiv2 0.27.99.0, there is an out-of-bounds read in the Exiv2::MrwImage::readMetadata function in mrwimage.cpp. This could lead to a denial of service...
Astra Linux – Vulnerability in mbedtls
In Arm Mbed TLS before version 2.19.0, and Arm Mbed Crypto before version 2.0.0, when deterministic ECDSA is enabled, an RNG with insufficient entropy is used for blinding. This may allow an attacker to recover a private key through side-channel attacks if a victim signs the same message multiple...
Astra Linux – Vulnerability in usbguard
A issue was discovered in USBGuard prior to version 1.1.0. On systems where the usbguard-dbus daemon is running, a non-privileged user could enable USBGuard to allow all USB devices to be connected in the future...
Astra Linux – Vulnerability in gdisk
In the LoadPartitionTable function of gpt.cc, there is a potential out-of-bounds write vulnerability due to a missing bounds check. This could lead to a local escalation of privileges when inserting a malicious USB device, without the need for additional execution privileges. User interaction is...