A Buffer Overflow vulnerability in the RSTP server component of Eufy Indoor 2K Indoor Camera allows a local attacker to achieve remote code execution.
This issue affects:
Eufy Indoor 2K Indoor Camera
2.0.9.3 version and prior versions.
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of FreeBSD Kernel. Authentication is not required to exploit this vulnerability.
kernel-5.17.12-300.fc36
The 5.17.12 stable kernel update contains a number of important fixes across the tree.
kernel-5.17.12-200.fc35
The 5.17.12 stable kernel update contains a number of important fixes across the tree.
kernel-5.17.12-100.fc34
The 5.17.12 stable kernel update contains a number of important fixes across the tree.
USN-5446-1 fixed a vulnerability in dpkg. This update provides
the corresponding update for Ubuntu 16.04 ESM.
Original advisory details:
Max Justicz discovered that dpkg incorrectly handled unpacking certain
source packages. If a user or an automated system were tricked into
unpacking a specially crafted source package, a remote attacker could
modify files outside the target unpack directory, leading to a denial of
service or potentially gaining access to the system.
qt5-qtbase-5.15.3-2.fc36
Security fix for CVE-2021-38593
qt5-qtbase-5.15.2-31.fc35
Security fix for CVE-2021-38593
It was discovered that FreeType incorrectly handled certain font files.
An attacker could possibly use this issue to cause a denial of service.
It was discovered that NTFS-3G was incorrectly validating NTFS
metadata in its ntfsck tool by not performing boundary checks. A
local attacker could possibly use this issue to cause a denial of
service or to execute arbitrary code.
