This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-39605.
Category Archives: Advisories
ZDI-24-1464: Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-39354.
ZDI-24-1463: Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-47131.
ZDI-24-1462: Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-39605.
ZDI-24-1461: Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-39605.
USN-7094-1: QEMU vulnerabilities
It was discovered that QEMU incorrectly handled memory during certain VNC
operations. A remote attacker could possibly use this issue to cause QEMU
to consume resources, resulting in a denial of service. This issue only
affected Ubuntu 14.04 LTS. (CVE-2019-20382)
It was discovered that QEMU incorrectly handled certain memory copy
operations when loading ROM contents. If a user were tricked into running
an untrusted kernel image, a remote attacker could possibly use this issue
to run arbitrary code. This issue only affected Ubuntu 14.04 LTS.
(CVE-2020-13765)
Aviv Sasson discovered that QEMU incorrectly handled Slirp networking. A
remote attacker could use this issue to cause QEMU to crash, resulting in a
denial of service, or possibly execute arbitrary code. This issue only
affected Ubuntu 14.04 LTS. (CVE-2020-1983)
It was discovered that the SLiRP networking implementation of the QEMU
emulator did not properly manage memory under certain circumstances. An
attacker could use this to cause a heap-based buffer overflow or other out-
of-bounds access, which can lead to a denial of service (application crash)
or potential execute arbitrary code. This issue only affected
Ubuntu 14.04 LTS. (CVE-2020-7039)
It was discovered that the SLiRP networking implementation of the QEMU
emulator misuses snprintf return values. An attacker could use this to
cause a denial of service (application crash) or potentially execute
arbitrary code. This issue only affected Ubuntu 14.04 LTS. (CVE-2020-8608)
It was discovered that QEMU SLiRP networking incorrectly handled certain
udp packets. An attacker inside a guest could possibly use this issue to
leak sensitive information from the host. This issue only affected
Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. (CVE-2021-3592, CVE-2021-3594)
It was discovered that QEMU had a DMA reentrancy issue, leading to a
use-after-free vulnerability. An attacker could possibly use this issue
to cause a denial of service. This issue only affected Ubuntu 18.04 LTS,
Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2023-3019)
It was discovered that QEMU had a flaw in Virtio PCI Bindings, leading
to a triggerable crash via vhost_net_stop. An attacker inside a guest
could possibly use this issue to cause a denial of service. This issue
only affected Ubuntu 24.04 LTS and Ubuntu 24.10. (CVE-2024-4693)
It was discovered that QEMU incorrectly handled memory in virtio-sound,
leading to a heap-based buffer overflow. An attacker could possibly use
this issue to cause a denial of service or execute arbitrary code. This
issue only affected Ubuntu 24.04 LTS and Ubuntu 24.10. (CVE-2024-7730)
DSA-5805-1 guix – security update
It was discovered that the daemon of the GNU Guix functional package
manager was susceptible to privilege escalation. For additional
information please refer to
https://guix.gnu.org/en/blog/2024/build-user-takeover-vulnerability/
A Vulnerability in Android OS Could Allow for Remote Code Execution
A vulnerability has been discovered in Android OS that could allow for remote code execution. Android is an operating system developed by Google for mobile devices, including, but not limited to, smartphones, tablets, and watches. Successful exploitation of this vulnerability could allow for remote code execution in the context of the logged-on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
USN-6882-2: Cinder regression
USN-6882-1 fixed vulnerabilities in Cinder. The update caused a regression
in certain environments due to incorrect privilege handling. This update
fixes the problem.
We apologize for the inconvenience.
Original advisory details:
Martin Kaesberger discovered that Cinder incorrectly handled QCOW2 image
processing. An authenticated user could use this issue to access arbitrary
files on the server, possibly exposing sensitive information.
USN-7088-4: Linux kernel vulnerabilities
Ziming Zhang discovered that the VMware Virtual GPU DRM driver in the
Linux kernel contained an integer overflow vulnerability. A local
attacker could use this to cause a denial of service (system crash).
(CVE-2022-36402)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– ARM64 architecture;
– PowerPC architecture;
– User-Mode Linux (UML);
– x86 architecture;
– Block layer subsystem;
– Cryptographic API;
– Android drivers;
– Serial ATA and Parallel ATA drivers;
– ATM drivers;
– Drivers core;
– CPU frequency scaling framework;
– Device frequency scaling framework;
– GPU drivers;
– HID subsystem;
– Hardware monitoring drivers;
– InfiniBand drivers;
– Input Device core drivers;
– Input Device (Miscellaneous) drivers;
– IOMMU subsystem;
– IRQ chip drivers;
– ISDN/mISDN subsystem;
– LED subsystem;
– Multiple devices driver;
– Media drivers;
– EEPROM drivers;
– VMware VMCI Driver;
– MMC subsystem;
– Network drivers;
– Near Field Communication (NFC) drivers;
– NVME drivers;
– Device tree and open firmware driver;
– Parport drivers;
– PCI subsystem;
– Pin controllers subsystem;
– Remote Processor subsystem;
– S/390 drivers;
– SCSI drivers;
– QCOM SoC drivers;
– Direct Digital Synthesis drivers;
– TTY drivers;
– Userspace I/O drivers;
– DesignWare USB3 driver;
– USB Gadget drivers;
– USB Serial drivers;
– BTRFS file system;
– File systems infrastructure;
– Ext4 file system;
– F2FS file system;
– JFS file system;
– NILFS2 file system;
– BPF subsystem;
– Core kernel;
– DMA mapping infrastructure;
– Tracing infrastructure;
– Radix Tree data structure library;
– Kernel userspace event delivery library;
– Objagg library;
– Memory management;
– Amateur Radio drivers;
– Bluetooth subsystem;
– CAN network layer;
– Networking core;
– Ethtool driver;
– IPv4 networking;
– IPv6 networking;
– IUCV driver;
– KCM (Kernel Connection Multiplexor) sockets driver;
– MAC80211 subsystem;
– Netfilter;
– Network traffic control;
– SCTP protocol;
– Sun RPC protocol;
– TIPC protocol;
– TLS protocol;
– Wireless networking;
– AppArmor security module;
– Simplified Mandatory Access Control Kernel framework;
– SoC audio core drivers;
– USB sound devices;
(CVE-2024-35848, CVE-2024-43853, CVE-2024-41017, CVE-2024-26607,
CVE-2024-43839, CVE-2024-41072, CVE-2024-46815, CVE-2023-52614,
CVE-2024-46798, CVE-2024-46676, CVE-2024-43914, CVE-2024-43841,
CVE-2024-41012, CVE-2024-27051, CVE-2024-46738, CVE-2024-47663,
CVE-2024-46723, CVE-2024-46740, CVE-2024-42287, CVE-2024-46750,
CVE-2024-43894, CVE-2023-52531, CVE-2024-47668, CVE-2024-47669,
CVE-2024-46685, CVE-2024-41011, CVE-2024-41064, CVE-2024-42305,
CVE-2024-41073, CVE-2024-46829, CVE-2024-43860, CVE-2024-46679,
CVE-2024-44999, CVE-2024-46817, CVE-2024-26800, CVE-2024-46689,
CVE-2024-43908, CVE-2024-46739, CVE-2024-43893, CVE-2024-46828,
CVE-2024-46777, CVE-2024-46721, CVE-2024-36484, CVE-2024-46822,
CVE-2024-46840, CVE-2024-43880, CVE-2024-46781, CVE-2024-46673,
CVE-2024-26669, CVE-2024-41098, CVE-2024-46737, CVE-2024-43871,
CVE-2024-42281, CVE-2024-42301, CVE-2024-44995, CVE-2024-43879,
CVE-2024-26668, CVE-2024-44965, CVE-2024-41068, CVE-2024-41059,
CVE-2024-42229, CVE-2024-44987, CVE-2024-46745, CVE-2024-26891,
CVE-2024-46719, CVE-2024-42292, CVE-2024-44952, CVE-2024-46756,
CVE-2024-45028, CVE-2024-42283, CVE-2024-45025, CVE-2024-46743,
CVE-2024-43867, CVE-2024-46771, CVE-2024-41081, CVE-2024-42244,
CVE-2024-42284, CVE-2024-43858, CVE-2024-44998, CVE-2024-46758,
CVE-2024-46800, CVE-2024-45003, CVE-2024-44935, CVE-2024-38611,
CVE-2024-46844, CVE-2024-44954, CVE-2024-42313, CVE-2024-46783,
CVE-2024-42311, CVE-2024-46761, CVE-2024-41022, CVE-2024-43829,
CVE-2024-43835, CVE-2024-43846, CVE-2024-46755, CVE-2024-47667,
CVE-2024-42259, CVE-2024-41090, CVE-2024-42310, CVE-2024-42265,
CVE-2024-42295, CVE-2024-46818, CVE-2024-46780, CVE-2024-44948,
CVE-2024-44960, CVE-2024-44988, CVE-2024-46757, CVE-2024-45021,
CVE-2024-46747, CVE-2024-43854, CVE-2024-42304, CVE-2021-47212,
CVE-2024-42309, CVE-2024-44946, CVE-2024-46744, CVE-2024-42285,
CVE-2024-46782, CVE-2024-43856, CVE-2024-41091, CVE-2024-42131,
CVE-2024-43830, CVE-2024-42290, CVE-2024-45008, CVE-2024-42276,
CVE-2024-47659, CVE-2024-40929, CVE-2024-46714, CVE-2023-52918,
CVE-2024-44947, CVE-2024-42289, CVE-2024-42246, CVE-2024-41071,
CVE-2024-43883, CVE-2024-46722, CVE-2024-38602, CVE-2024-43882,
CVE-2024-42280, CVE-2024-46759, CVE-2024-42271, CVE-2024-44969,
CVE-2024-44944, CVE-2024-46675, CVE-2024-41020, CVE-2024-41042,
CVE-2024-42306, CVE-2024-46677, CVE-2024-42288, CVE-2024-41070,
CVE-2024-45026, CVE-2024-41065, CVE-2024-26885, CVE-2024-42286,
CVE-2024-41063, CVE-2024-43884, CVE-2024-42297, CVE-2024-43890,
CVE-2024-43861, CVE-2024-45006, CVE-2024-26640, CVE-2024-26641,
CVE-2024-41015)