ZDI-24-234: (0Day) Ashlar-Vellum Cobalt STP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that...
Multiple Vulnerabilities in Google Android OS Could Allow for Remote Code Execution
Multiple vulnerabilities have been discovered in Google Android OS, the most severe of which could allow for remote code execution. Android is an operating system...
libreoffice-24.2.1.2-3.fc40
FEDORA-2024-2d4080121e Packages in this update: libreoffice-24.2.1.2-3.fc40 Update description: 24.2.1.2, include kf6. Read More
USN-6653-4: Linux kernel (GKE) vulnerabilities
It was discovered that a race condition existed in the ATM (Asynchronous Transfer Mode) subsystem of the Linux kernel, leading to a use-after-free vulnerability. A...
imagej-1.54i-1.fc40
FEDORA-2024-a966a6485e Packages in this update: imagej-1.54i-1.fc40 Update description: Update to 1.54i (close RHBZ#2267596): assorted bugfixes Read More
USN-6674-2: Django vulnerability
USN-6674-1 fixed a vulnerability in Django. This update provides the corresponding update for Ubuntu 18.04 LTS. Original advisory details: Seokchan Yoon discovered that the Django...
USN-6674-1: Django vulnerability
Seokchan Yoon discovered that the Django Truncator function incorrectly handled very long HTML input. A remote attacker could possibly use this issue to cause Django...
USN-6673-1: python-cryptography vulnerabilities
Hubert Kario discovered that python-cryptography incorrectly handled errors returned by the OpenSSL API when processing incorrect padding in RSA PKCS#1 v1.5. A remote attacker could...
liblas-1.8.2-0.12.gitf1da555.fc39
FEDORA-2024-34301311f8 Packages in this update: liblas-1.8.2-0.12.gitf1da555.fc39 Update description: Update to git f1da555, fixes CVE-2024-27507. Read More