ZDI-22-473: Autodesk AutoCAD PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that...
DSA-5092 linux – security update
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. Read More
USN-5314-1: Firefox vulnerabilities
A use-after-free was discovered when removing an XSLT parameter in some circumstances. If a user were tricked into opening a specially crafted website, an attacker...
DSA-5091 containerd – security update
Felix Wilhelm discovered that the containerd container runtime was susceptible to information disclosure via malformed container images. Read More
DSA-5090 firefox-esr – security update
Two security issues have been found in the Mozilla Firefox web browser, which result in the execution of arbitrary code. Read More
AST-2022-006: pjproject: unconstrained malformed multipart SIP message
Posted by Asterisk Security Team on Mar 04 Asterisk Project Security Advisory - AST-2022-006 Product Asterisk Summary pjproject: unconstrained malformed multipart SIP message Nature of...
AST-2022-005: pjproject: undefined behavior after freeing a dialog set
Posted by Asterisk Security Team on Mar 04 Asterisk Project Security Advisory - AST-2022-005 Product Asterisk Summary pjproject: undefined behavior after freeing a dialog set...
AST-2022-004: pjproject: integer underflow on STUN message
Posted by Asterisk Security Team on Mar 04 Asterisk Project Security Advisory - AST-2022-004 Product Asterisk Summary pjproject: possible integer underflow on STUN message Nature...
CVE-2021-20319
An improper signature verification vulnerability was found in coreos-installer. A specially crafted gzip installation image can bypass the image signature verification and as a consequence...
CVE-2021-20300
A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by...