Denial Of Service (DoS)

qemu is vulnerable to denial of service. An infinite loop in the e1000 NIC emulator occurs while processing transmit tx descriptors in processtxdesc when various descriptor fields are initialized with invalid values...

Remote Code Execution (RCE)

tomcat9 is vulnerable to remote code execution RCE. The vulnerability exists through the incomplete fix for CVE-2020-9484, with a configuration edge case that was highly unlikely to be used...

Directory Traversal

busybox is vulnerable to directory traversal. A remote attacker is able to perform a symlink attack to gain access to files outside of the current working directory...

Privilege Escalation

chromium is vulnerable to privilege escalation. The vulnerability exists because of insufficient policy enforcement in Cryptohome...

Denial Of Service(DoS)

chromium, sid is vulnerable to Denial of ServiceDoS. Inappropriate implementation in V8 in Google Chrome allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Prototype Pollution

ini is vulnerable to prototype pollution. An attacker is able to inject properties into existing construct prototypes and modify attributes such as proto, constructor and prototype...

Remote Code Execution

struts2-core is vulnerable to remote code execution. Tag attributes can be used to perform a double evaluation when forced OGNL evaluation is applied, by using the %... syntax. This can lead to remote code execution when an attacker provides a malicious input to be evaluated...

Denial Of Service

krb5is vulnerable to denial of service. The vulnerability exists because lib/krb5/asn.1/asn1encode.c support for indefinite length allows for an unbounded recursion...

Arbitrary Code Execution

webkitgtk4 is vulnerable to arbitrary code execution. The vulnerabiltiy exists through memory errors...

Privilege Escalation

kernel is vulnerable to privilege escalation. A buffer overflow in the mwifiexcmdappendvsietlv function in drivers/net/wireless/marvell/mwifiex/scan.c allows an attacker to gain higher privileges or cause a denial of service condition...

Information Disclosure

kernel is vulnerable to information disclosure. An information leak bug caused by a malicious USB device in the drivers/net/can/usb/peakusb/pcanusbcore.c driver allows an attacker to obtain confidential information...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. The vulnerability exists due to a memory leak in the sdmainit function in drivers/infiniband/hw/hfi1/sdma.c which allows an attacker to crash the system...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. A flaw was found in the way the KVM subsystem of a Linux kernel handled PIT Programmable Interval Timer IRQs interrupt requests when there was no virtual interrupt controller set up. A malicious user in the kvm group on the host could force this situatio...

Information Disclosure

httpd is vulnerable to information disclosure. The vulnerability exists as it was discovered that the Apache HTTP Server did not properly validate the request URI for proxied requests. In certain configurations, if a reverse proxy used the ProxyPassMatch directive, or if it used the RewriteRule...

Arbitrary Code Execution

firefox is vulnerable to arbitrary code execution. The vulnerability exists as it was found that a malicious web page could execute arbitrary code with the privileges of the user running Firefox if the user dropped a tab onto the malicious web page...

Arbitrary Code Execution

thunderbird is vulnerable to arbitrary code execution. The vulnerability exists as a double free flaw was found in the way Thunderbird handled "application/http-index-format" documents. A malformed HTTP response could cause Thunderbird to execute arbitrary code with the privileges of the user...

Privilege Escalation

kernel is vulnerable to privilege escalation. A buffer overflow flaw was found in the ecryptfsuidhash function in the Linux kernel eCryptfs implementation. On systems that have the eCryptfs netlink transport Red Hat Enterprise Linux 5 does or where the "/dev/ecryptfs" file has world writable...

Privilege Escalation

firefox is vulnerable to privilege escalation. The vulnerability exists when the Firebug add-on is in use. The XMLHttpRequestSpy module in the Firebug add-on exposes a Chrome privilege escalation flaw that could be used to execute arbitrary JavaScript with the privileges of the user running Firef...

Remote Code Execution (RCE)

Mozilla Firefox is vulnerable to Remote Code Execution RCE. Due to the flaws found in the processing of malformed web content, a page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox...

Arbitrary Code Execution

seamonkey is vulnerable to arbitrary code execution. The vulnerability exists as a web page containing malicious content could cause SeaMonkey to crash or, potentially, execute arbitrary code as the user running SeaMonkey...

Information Disclosure

kernel is vulnerable to information disclosure. The vulnerability exists as the sockgetsockopt function in the Linux kernel did not properly initialize a data structure that can be directly returned to user-space when the getsockopt function is called with SOBSDCOMPAT optname set...

CRLF Injection

waitress is vulnerable to CRLF injection. The vulnerability exists due to the different ways in which carriage returns and line feed characters are parsed in the server and the client. This cab potentially lead to HTTP request smuggling and splitting vulnerabilities...

Denial Of Service (DoS)

github.com/apache/thrift is vulnerable to denial of service DoS. The vulnerability exists as an Apache Thrift server implemented in Go using TJSONProtocol or TSimpleJSONProtocol may panic when it parses invalid input data that causes lena to be less than 0...

Cross-Site Scripting (XSS)

bootstrap-3-typeahead is vulnerable to cross-site scripting XSS. A remote attacker is able to inject arbitrary Javascript into a victim's browser due to improper special characters escaping...

Arbitrary Code Execution

php is vulneable to arbitrary code execution. Invalid memory access in the function xmlrpcdecode allows an attacker to execute arbitrary code on the system via malicious input...

Information Disclosure

php is vulnerable to denial of service. An attacker is able to read past allocated buffer in the function exifreaddata by passing malicious EXIF data to the PHP EXIF extension. This can also potentially lead to an application crash...

Buffer Overflows And Privilege Escalation

libguestfs-winsupport is vulnerable to heap-based buffer overflow. An attacker can run /bin/ntfs-3g with a malicious file, even causing local access escalation attack if the /bin/ntfs-3g is a setuid-root binary...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists through a fix race condition between mmgetnotzero/gettaskmm and core dumping...

Path Traversal

Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for ...

Privilege Escalation

Oracle Java SE is vulnerable to privilege escalation vulnerability. The vulnerability exists in the Java SE, Java SE Embedded component of Oracle Java SE due to an unknown code block of the component Hotspot. An unauthenticated attacker with network access via multiple protocols could compromise...

Null Pointer Dereference

PHP is vulnerable to null pointer dereference vulnerability. This exists in ext/wddx/wddx.c which allows remote attackers to cause a denial of service via crafted serialized data in a wddxPacket XML document, as demonstrated by a PDORow string...

Use-After-Free

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...

Use-After-Free

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...

Sandbox Protection Bypass

The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause t...

Privilege Escalation

The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Multiple flaws were discovered in the Libraries, 2D, and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain...

Information Disclosure

IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Detailed vulnerability descriptions are linked from the IBM Security...

Arbitrary Code Execution

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

Improper Access Control

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update...

Remote Code Execution (RCE)

Jackson-databind is vulnerable to remote code execution RCE attacks. Attackers can exploit an incomplete fix of CVE-2017-7525 to bypass the blacklist when Spring libraries are available on the class path. In order to be vulnerable to this attack, either the use of @JsonTypeInfouse =...

Directory Information Disclosure

Tomcat is vulnerable to directory information disclosure. When accessing a directory protected by a security constraint with a URL that did not need in a slash, Tomcat would redirect to the URL with the trailing slash, confirming the presence of the file, even if no access is permitted...

Denial Of Service (DoS)

httpd is vulnerable to denial of service DoS attacks. The vulnerability exists as the deflateinfilter function in moddeflate.c in the moddeflate module in the Apache HTTP Server before 2.4.10, when request body decompression is enabled, allows remote attackers to cause a denial of service resourc...

Remote Code Execution (RCE)

Microsoft ChakraCore is vulnerable to remote code execution. This is due to a buffer over-read vulnerability which would allow a remote attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2017-0224, CVE-2017-0228, CVE-2017-0229,...

Denial Of Service (DoS)

openssl is vulnerable to denial of service DoS attacks. A malicious user can pass a large prime number during a TLS handshake that can cause the client to take a long time generating a key for this, leading to the client hanging and possibly crashing...

Denial Of Service (DoS)

ImageMagick is vulnerable to denial of service DoS attacks. A malicious user can pass a bmp file to the system and cause a memory leak. This can lead to the system running out of memory and crashing...

Denial Of Service (DoS) Through An Infinite Loop

OpenSSL is vulnerable to denial of service DoS attacks. These attacks are possible because it does not correctly handle ECParameter structures where the curve is over a malformed binary polynomial field. These attacks can be triggered through a session that uses an Elliptic Curve algorithm...

Denial Of Service (DoS)

OpenSSL is vulnerable to denial of service DoS attacks. A malicious user can pass a malicious Diffie-Hellman ServerKeyExchange message to the system to cause a segmentation fault that can lead to the system crashing...

Denial Of Service (DoS)

OpenSSL is vulnerable to denial of service DoS. A flaw in OpenSSL allows attackers to a double free to occur through DTLS packets...

Denial Of Service (DoS) Through Null Pointer Dereference

OpenSSL is vulnerable to denial of service DoS attacks through a null pointer dereference. This can be triggered at remote DTLS servers by a handshake message where the ciphersuite is specified as a 1 anonymous DH or 2 anonymous ECDH ciphersuite...