7184 matches found
ROS-20240822-01
The vulnerability of the hubportinit function of the core component of the Linux operating system kernel is related to reading outside the memory boundaries. Exploitation of the vulnerability could allow an attacker to affect the confidentiality, integrity and availability of protected informatio...
ROS-20240821-01
The vulnerability of the kobjectadd function in the md component of the Linux operating system kernel is related to the lack of releasing the previous state of a synchronization request before assigning a reference to a new one. Exploitation the vulnerability could allow an attacker to cause a...
ROS-20240821-02
Vulnerability of the seg6init function in the net/ipv6/seg6.c module of the IPv6 protocol implementation of the Linux kernel is related to the reuse of previously freed memory. Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability could allow an attack...
ROS-20240820-06
The aiohttp HTTP client vulnerability is related to flaws in HTTP request processing. Exploitation of the vulnerability could allow an attacker acting remotely to perform an "HTTP request smuggling" attack...
ROS-20240820-14
A vulnerability in the JavaFX component of Oracle GraalVM Enterprise Edition virtual machine and Oracle Java SE software platform is related to insufficient input validation. Oracle Java SE platform is related to insufficient input data validation. Exploitation of the vulnerability could allow an...
ROS-20240820-02
Vulnerability of certstorestats and getcacerts functions of ssl module of programming language interpreter Python CPython is related to synchronization errors when using a shared resource. Exploitation The exploitation of the vulnerability may allow a remote intruder to gain unauthorized access t...
ROS-20240820-03
Vulnerability in the zipfile module of the Python programming language interpreter CPython is related to uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker to cause a denial of service denial of service...
ROS-20240820-07
Vulnerability of subselect component of MariaDB database management system is related to the operation exceeding the buffer boundaries in memory. Exploitation of the vulnerability could allow a remote intruder, affect confidentiality, integrity, availability of protected information Vulnerability...
ROS-20240820-01
The vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to the use of memory after its release. memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary code using a specially crafted w...
ROS-20240820-08
A vulnerability in the filtervar function of the PHP programming language interpreter is related to insufficient data authentication. data authentication. Exploitation of the vulnerability could allow an attacker acting remotely, spoof URLs with erroneous data...
ROS-20240820-05
A vulnerability in the JavaFX component of Oracle GraalVM Enterprise Edition virtual machine and Oracle Java SE software platform is related to insufficient input validation. Oracle Java SE platform is related to insufficient input data validation. Exploitation of the vulnerability could allow an...
ROS-20240820-10
Vulnerability of the brnflocalin function in the net/bridge/brnetfilterhooks.c module of the netfilter component of the netfilter kernel of the of the Linux operating system is related to incorrect packet processing. Exploitation of the vulnerability could allow an attacker to affect the...
ROS-20240820-09
Vulnerability of mutexunlock function in spi component of Linux kernel is related to memory usage after mutex addlock is released. Exploitation of the vulnerability could allow an intruder to affect confidentiality, integrity and availability of protected information The vulnerability of the...
ROS-20240820-04
Vulnerability in XML parser library libexpat is related to uncontrolled consumption of resources. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service...
ROS-20240820-11
The vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to the use of memory after its release. memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary code using a specially crafted w...
ROS-20240820-16
A vulnerability in the filtervar function of the PHP programming language interpreter is related to insufficient data authentication. data authentication. Exploitation of the vulnerability could allow an attacker acting remotely, spoof URLs with erroneous data...
ROS-20240820-15
A vulnerability in the filtervar function of the PHP programming language interpreter is related to insufficient data authentication. data authentication. Exploitation of the vulnerability could allow an attacker acting remotely, spoof URLs with erroneous data...
ROS-20240820-12
A vulnerability in the JavaFX component of Oracle GraalVM Enterprise Edition virtual machine and Oracle Java SE software platform is related to insufficient input validation. Oracle Java SE platform is related to insufficient input data validation. Exploitation of the vulnerability could allow an...
ROS-20240820-13
A vulnerability in the JavaFX component of Oracle GraalVM Enterprise Edition virtual machine and Oracle Java SE software platform is related to insufficient input validation. Oracle Java SE platform is related to insufficient input data validation. Exploitation of the vulnerability could allow an...
ROS-20240819-01
Vulnerability of rtl92epcidisconnect function in drivers/staging/rtl8192e/rtl8192e/rtlcore.c module of the RealTek RTL8192E wireless adapter driver of the Linux kernel is related to the reuse of previously freed memory. reuse of previously freed memory. Exploitation of the vulnerability could all...
ROS-20240819-02
A vulnerability in the felixsetupmmiofiltering function in the felix component of the Linux kernel operating system is related to memory leaks if the CPU port is not defined. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the null-ptr-der...
ROS-20240816-06
The vulnerability in OpenVPN software is related to the lack of resource release after the resource expires. the resource's expiration date. Exploitation of the vulnerability could allow an attacker to "save a session" even if the the server has been ordered to disconnect that client...
ROS-20240816-02
Vulnerability in the ASN1 Parser function GTime2str of the libcurl library is related to reading outside of memory boundaries memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause an octasis in the maintenance...
ROS-20240816-05
The vulnerability of truetype in ImageFont function of the Pillow image manipulation library is related to the unconstrained and unregulated resource allocation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20240816-16
A vulnerability in the opensslprivatedecrypt function of the PKCS1 Padding Handler component of the PHP programming language interpreter is related to the use of a version of OpenSSL that incorporates changes from the request. PHP programming language interpreter is related to the use of a versio...
ROS-20240816-11
A vulnerability in the procopen function of the PHP programming language interpreter exists due to a failure to take measures to neutralize special elements used by the operating system. to neutralize special elements used in the operating system command. Exploitation exploitation of the...
ROS-20240816-15
A vulnerability in the PHP programming language interpreter is related to the erroneous handling of cookies due to the replacement of spaces, dots, and open square brackets with underscores. as a result of replacing spaces, periods and open square brackets with underscores. Exploitation...
ROS-20240816-22
Vulnerability in the ASN1 Parser function GTime2str of the libcurl library is related to reading outside of memory boundaries memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause an octasis in the maintenance...
ROS-20240816-03
Vulnerability of HTTP Daemon is related to inconsistent interpreting of HTTP requests when processing 'Content-Length' string values. when processing 'Content-Length' string values. Exploitation of the vulnerability could allow an attacker, acting remotely, to escalate their privileges by sending...
ROS-20240816-01
A vulnerability in the Portainer container management platform is related to a difference in authentication user authentication response time. Exploitation of the vulnerability could allow an attacker acting remotely to determine whether a username is valid or invalid. remotely, whether the...
ROS-20240816-08
A vulnerability in the PHP programming language is related to the random number generator's use of a narrower range of values. Exploitation of the vulnerability could allow an attacker acting remotely to gain access sensitive data A vulnerability in the PHP interpreter phardirread function is...
ROS-20240816-10
A vulnerability in the PHP programming language interpreter is related to the erroneous handling of cookies due to the replacement of spaces, dots, and open square brackets with underscores. as a result of replacing spaces, periods and open square brackets with underscores. Exploitation...
ROS-20240816-07
A vulnerability in the Picture in Picture component of Google Chrome browser is related to the distortion of important information in the user interface. in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely, Spoof the contents of a URL string using a...
ROS-20240816-04
A vulnerability in the bermemallocx function of the OpenLDAP package is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker acting remotely to perform a denial of denial of service...
ROS-20240816-13
Vulnerability in the ASN1 Parser function GTime2str of the libcurl library is related to reading outside of memory boundaries memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause an octasis in the maintenance...
ROS-20240816-12
Vulnerability of setupdscconfig function in drivers/gpu/drm/amd/display/dc/dsc/dcdsc.c module of driver amdgpu of the Linux operating system kernel is related to a lack of input validation. Exploitation the vulnerability could allow an attacker to cause a denial of service A vulnerability in the...
ROS-20240816-09
Vulnerability in mbencodemimeheader function of PHP programming language interpreter is related to uncontrolled resource consumption. uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service. remotely to cause a deni...
ROS-20240816-14
A vulnerability in the phardirread function of the PHP interpreter is caused by a buffer overflow on the stack. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code Vulnerability in PHP programming language interpreter is related to incorrect restriction of XM...
ROS-20240815-03
Vulnerability in the handleipDefaultTTL function of the Net-SNMP software suite of the operating system Linux is related to a NULL Pointer Exception error, which can be exploited to crash an instance with a specially crafted UDP packet. Exploitation of the vulnerability could allow an attacker...
ROS-20240815-02
The vulnerability of the writestatustextandbuffer function of the cpr.c component of the program for information encryption and creation of electronic digital signatures GnuPG is related to insufficient neutralization of special elements in the request. Exploitation of the vulnerability allows a...
ROS-20240815-04
A vulnerability in the ieeewritefile component of the Netwide Assembler NASM is related to a segmentation violation in the ieeewritefile component in /output/outieee.c segmentation in the ieeewritefile component in /output/outieee.c. Exploitation of the vulnerability could allow an attacker to...
ROS-20240815-13
A vulnerability in the configuration implementation of the HTML cleanup tool for Rails Rails Html Sanitizer applications is related to content injection if the application developer overrides the allowed tags "math" and "style" or "svg" and "style". Exploitation of the vulnerability could allow a...
ROS-20240815-09
Authentication and authorization module for Apache 2.x HTTP server Modauthopenidc has a vulnerability related to setting OIDCStripCookies and providing the created cookie, a dereferencing of a NULL pointer occurs, which will cause a segmentation error. NULL pointer, which will result in a...
ROS-20240815-06
Vulnerability in the HTTP/2 protocol implementation of Mozilla Firefox, Firefox ESR and the mail client Thunderbird is related to uncontrolled resource consumption as a result of incorrect limitation on the field block size when processing CONTINUATION frames. field block size when processing...
ROS-20240815-05
A vulnerability in the centralized service for maintaining configuration information, naming, providing Apache ZooKeeper's centralized service for maintaining configuration information and naming, providing distributed synchronization, and providing group services is related to the lack of ACL...
ROS-20240815-17
A vulnerability in the fwupd daemon for managing firmware update installation on Linux-based systems is related to saving an automatically generated password in /etc/fwupd/redfish.conf without proper restrictions. Exploitation of the vulnerability could allow an attacker acting remotely to gain...
ROS-20240815-18
Vulnerability in the HTTP/2 protocol implementation of Mozilla Firefox, Firefox ESR and the mail client Thunderbird is related to uncontrolled resource consumption as a result of incorrect limitation on the field block size when processing CONTINUATION frames. field block size when processing...
ROS-20240815-14
A vulnerability in the urllib.parse component of the Python programming language interpreter is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely, bypass URL blocking starting with empty characters...
ROS-20240815-08
Vulnerability in the ANGLE component of Google Chrome browser is related to out-of-bounds recording. Exploitation of the of the vulnerability could allow an attacker acting remotely to exploit the heap corruption with a a specially crafted HTML page V8 JavaScript script handler V8 vulnerability i...
ROS-20240815-07
A vulnerability in the GNU C Library's nscd nameserver caching daemon is related to the returning a pointer outside the expected range. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the GNU C Library nscd nameserver caching daemon is...