Timing Attack

symfony/symfony is vulnerable to timing attack. When checking the signature of an URI an ESI fragment URL for instance, the URISigner did not used a constant time string comparison function, allowing a remote attacker to guess the URI by analyzing the server response time...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists through a memory leak in registerqueuekobjects in net/core/net-sysfs.c...

Denial Of Service (DoS)

Mozilla Firefox is vulnerable to denial of service DoS. The attack exists because it causes a Stack buffer overflow in WebRTC networking...

XML External Entity (XXE)

DiffPlug Spotless is vulnerable to XML external entities XXE. The XML formatter has resolveExternalURI setting to true by default and it loads external DTD...

Denial Of Service (DoS)

nginx HTTP/2 is vulnerable to denial of service DoS. It does not prevent the attacker from creating multiple request streams and flooding using PRIORITY frames continuously in a way that causes substantial churn to the priority tree, causing an excessive resource consumption...

Denial Of Service (DoS)

sqlite3 is vulnerable to denial of service. A divide-by-zero bug in the whereLoopAddBtreeIndex function allows an attacker to crash the application...

Safer Restriction Bypass

Ghostscript is vulnerable to safer restriction bypass. The attack is possible due to a flaw of exposing .forceput through .pdfhookDSCCreator when hooking errors, allowing an attacker to bypass the -dSAFER restrictions by sending a malicious PostScript file...

Arbitrary Code Execution

php is vulnerable to arbitrary code execution. A heap-based buffer over-read in the mbstring regular expression functions allows an attacker to execute arbitrary code on the system...

Denial Of Service (DoS)

mysql is vulnerable to Denial of Service DoS. The vulnerability exists as Server Replication has an unspecified vulnerability causing an application crash...

Information Disclosure

kernel is vulnerable to information disclosure. The vulnerability exists through a heap address information leak while using L2CAPPARSECONFRSP...

Directory Traversal

pip is vulnerable to directory traversal. During installation of a remote package via pip install , a malicious server can send a Content-Disposition header containing ../ to join the temporary directory and the filename as download path, which allows for arbitrary file write and potentially code...

Improper Signature Validation

Ruby is vulnerable to improper signature validation vulnerability. This occurs in the tarball in package.rb which allows to install mis-signed gem...

Information Disclosure

Linux kernel is vulnerable to information disclosure vulnerability. This is because Linux kernel does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhostnewmsg function. A privileged user could read some memory contents...

Denial Of Service (DoS)

Oracle MySQL is vulnerable to denial of serviceDoS attacks. A remote user could exploit a flaw in the Client programs component which leads to unauthorized attacker to cause a hang or frequently repeatable crash complete DoS...

Denial Of Service (DoS)

Linux kernel is vulnerable to denial of service DoS attacks. The vulnerability exists in the Linux kernel Virtualization Module CONFIGKVM for the Intel processor family CONFIGKVMINTEL when a guest was to flood the I/O port 0x80 with write requests leading to a crash in the host kernel...

NULL Pointer Dereference

Linux kernel is vulnerable to NULL pointer dereference attacks. This is due to mishandling of node-splitting in assocarray implementation in assocarrayinsertintoterminalnode function in lib/assocarray.c. A local users could cause a denial of service via a crafted application, as demonstrated by t...

Denial Of Service (DoS)

Wireshark is a network protocol analyzer. It is used to capture and browse the traffic running on a computer network. Two flaws were found in Wireshark. If Wireshark read a malformed packet off a network or opened a malicious dump file, it could crash or, possibly, execute arbitrary code as the...

Use-After-Free

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. A flaw was found in the Linux kernel's keyring handling code, where in keyrejectandlink an uninitialised variable would eventually lead to arbitrary free...

Information Disclosure

mysql is vulnerable to information disclosure vulnerability. Remote authenticated users could affect integrity via vectors related to Server: InnoDB Plugin...

Privilege Escalation

The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. An integer overflow flaw was found in the way the Linux kernel's netfilter connection tracking implementation loaded extensions. An attacker on a local network could potentially send a sequence of specially...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. It was found that the Linux kernel's IPv6 network stack did not properly validate the value of the MTU variable when it was set. A remote attacker could potentially use this flaw to disrupt a target system's networking packet loss by setting an invalid M...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. It was found that the Linux kernel did not properly account file descriptors passed over the unix socket against the process limit. A local user could use this flaw to exhaust all available memory on the system...

Sensitive Information Disclosure

OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...

Information Disclosure

IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java...

Cross-site Scripting (XSS)

jenkins is vulnerable to cross-site scripting XSS. A remote attacker is able to inject arbitrary Javascript into victim's browser to steal session tokens or perform unwanted actions on behalf of the user...

Information Disclosure

libvirt is vulnerable to information disclosure. It was discovered that the virDomainSnapshotGetXMLDesc and virDomainSaveImageGetXMLDesc functions did not sufficiently limit the usage of the VIRDOMAINXMLSECURE flag when fine-grained ACLs were enabled. A remote attacker able to establish a...

Use-After-Free

kernel-rt is vulnerable to use-after-free. The vulnerability exists in sctpassocupdate function in net/sctp/associola.c which allows an attacker to cause a memory corruption resulting an application crash...

Arbitrary Code Execution

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Two flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the...

Buffer Overflow

The X11 Xorg libraries provide library routines that are used within all X Window applications. Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way various X11 client libraries handled certain protocol data. An attacker able to submit invalid protocol da...

Denial Of Service (DoS)

FreeType is a free, high-quality, portable font engine that can open and manage font files. It also loads, hints, and renders individual glyphs efficiently. Multiple integer overflow flaws and an integer signedness flaw, leading to heap-based buffer overflows, were found in the way FreeType handl...

Arbitrary Code Execution

kernel-rt is vulnerable to arbitrary code execution. The vulnerability exists through multiple buffer overflows in the commandportreadcallback function...

Arbitrary Code Execution

The Network Time Protocol NTP is used to synchronize a computer's time with a referenced time source. Multiple buffer overflow flaws were discovered in ntpd's cryptorecv, ctlputdata, and configure functions. A remote attacker could use either of these flaws to send a specially crafted request...

Privilege Escalation

kernel-rt packages is vulnerable to privilege escalation. An out-of-bounds memory access flaw was found in the syscall tracing functionality of the Linux kernel's ftrace subsystem. On a system with ftrace syscall tracing enabled, a local, unprivileged user could use this flaw to crash the system,...

Arbitrary Code Execution

LibVNCServer is a library that allows for easy creation of VNC server or client functionality. An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way screen sizes were handled by LibVNCServer. A malicious VNC server could use this flaw to cause a client to crash o...

Man-in-the-Middle Attack

nss-util is vulnerable to a man-in-the-middle attack. The library accepts a wildcard character that is embedded in an internationalized domain name's U-labels in the certTestHostName function in lib/certdb/certdb.c , allowing a malicious user to spoof SSL servers via a crafted certificate...

Information Disclosure

The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way the Linux kernel's futex subsystem handled the requeuing of certain Priority Inheritance PI futexes. A local, unprivileged user could use this flaw to escalate their privileges on...

Denial Of Service (DoS)

The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. A race condition leading to a use-after-free flaw was found in the way the Linux kernel's TCP/IP protocol suite implementation handled the addition of fragments to the LRU Last-Recently Used list under certai...

Use-After-Free

Mozilla Thunderbird is vulnerable to use-after-free. It allows the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird...

Out Of Bound Reads (OOB)

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

Denial Of Service (DoS)

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. A heap-based buffer overflow and a use-after-free flaw were found in the tiff2pdf tool. An attacker could use these flaws to create a specially crafted TIFF file that would cause tiff2pdf to...

Denial Of Service (DoS)

Red Hat JBoss Web Server is vulnerable to denial of service. A buffer over-read flaw was found in the httpd modlogconfig module. In configurations where cookie logging is enabled, a remote attacker could use this flaw to crash the httpd child process via an HTTP request with a malformed cookie...

Arbitrary Code Execution

KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm package provides the user-space component for running virtual machines using KVM. Multiple buffer overflow, input validation, and out-of-bounds write flaws were found in the wa...

Arbitrary Code Execution

KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm package provides the user-space component for running virtual machines using KVM. Multiple buffer overflow, input validation, and out-of-bounds write flaws were found in the wa...

Denial Of Service (DoS) Through Memory Consumption

The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. A denial of service flaw was found in the way the Linux kernel's IPv6 implementation processed IPv6 router advertisement RA packets. An attacker able to send a large number of RA packets to a target system...

Information Disclosure

openjdk is vulnerable to information disclosure. An unspecified vulnerability allows remote attackers to affect confidentiality via vectors related to Libraries...

Arbitrary Code Execution

openjdk is vulnerable to arbitrary code execution. It was discovered that the 2D component did not properly reject certain malformed images. Specially-crafted raster parameters could cause Java Virtual Machine memory corruption and, possibly, lead to arbitrary code execution with virtual machine...

Use-After-Free

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

Denial Of Service (DoS)

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update...

Denial Of Service (DoS) Through Double Free

mingw32-libxml2 is vulnerable to denial of service DoS. It is possible because it does not prevent parsing of malicious libxml2 with certain XPath XML Path Language expressions, causing an application to crash...

Heap-Based Buffer Overflow

mingw32-libxml2 is vulnerable to a heap-based buffer overflow. Due to a flaw in libxml2 which decods entity references with long names, it allows an attacker to provide a malicious XML file, causing an application crash and arbitrary code execution...