Buffer Overflow in glXQueryServerString() of mesa
Posted by Meng Ruijie on Jan 26 [Vulnerability description] freedesktop Mesa v23.0.4 was discovered to contain a segmentation violation via the function glXQueryServerString(). [Vulnerability Type]...
NULL pointer dereference in tgetstr() of ncurses
Posted by Meng Ruijie on Jan 26 [Vulnerability description] ncurses v6.4-20230610 was discovered to contain a NULL pointer dereference via the function tgetstr(). [VulnerabilityType Other]...
Null pointer dereference in Xedit
Posted by Meng Ruijie on Jan 26 [Vulnerability description] A NULL pointer dereference in the component /X11/xedit/lisp of Xedit v1.2.3 allows attackers to cause a...
Null pointer deference in freedesktop mesa
Posted by Meng Ruijie on Jan 26 [Vulnerability description] freedesktop Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function dri2GetGlxDrawableFromXDrawableId(). This...
PrommetriX – (Prometheus Metrics Leaker) released!
Posted by psy on Jan 26 Hi FD, I am glad to present this script: - Prommetrix I think that building a tool that quite...
Multiple Vulnerabilities in Reprise License Manager 15.1 (CVE-2023-43183, CVE-2023-44031)
Posted by Rahim, Mohaiman via Fulldisclosure on Jan 26 Multiple Vulnerabilities in Reprise License Manager 15.1 (CVE-2023-43183, CVE-2023-44031) Credit: Mohaiman Rahim ///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// # Product: RLM...
Yet another fork()/malloc() bomb in javascript + SIGILL in Chrome
Posted by Georgi Guninski on Jan 26 Searching the web for `javascript fork malloc bomb` returns results, e.g. [here][1]: and [here][2]: We got a javascript...
TrojanSpy Win32 Nivdort / Insecure Permissions – EoP (SYSTEM)
Posted by malvuln on Jan 26 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024 Original source: https://malvuln.com/advisory/15bda00b57e2ed729a45f7cfa62165da.txt Contact: malvuln13 () gmail com Media:...
APPLE-SA-01-22-2024-9 tvOS 17.3
Posted by Apple Product Security via Fulldisclosure on Jan 26 APPLE-SA-01-22-2024-9 tvOS 17.3 tvOS 17.3 addresses the following issues. Information about the security content is...
APPLE-SA-01-22-2024-8 watchOS 10.3
Posted by Apple Product Security via Fulldisclosure on Jan 26 APPLE-SA-01-22-2024-8 watchOS 10.3 watchOS 10.3 addresses the following issues. Information about the security content is...