Monthly Archive: December 2020

Azure SDK for C Security Feature Bypass Vulnerability Date published : 2020-12-09 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17002

Kerberos Security Feature Bypass Vulnerability Date published : 2020-12-09 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16996

Azure SDK for Java Security Feature Bypass Vulnerability Date published : 2020-12-09 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16971

Windows Backup Engine Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962, CVE-2020-16963. Date published : 2020-12-09 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16964

Windows Backup Engine Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962, CVE-2020-16964. Date published : 2020-12-09 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16963

Windows Backup Engine Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16963, CVE-2020-16964. Date published : 2020-12-09 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16962

Windows Backup Engine Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16962, CVE-2020-16963, CVE-2020-16964. Date published : 2020-12-09 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16961

Windows Backup Engine Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16961, CVE-2020-16962, CVE-2020-16963, CVE-2020-16964. Date published : 2020-12-09 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16960

Windows Backup Engine Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-16958, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962, CVE-2020-16963, CVE-2020-16964. Date published : 2020-12-09 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16959

Windows Backup Engine Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962, CVE-2020-16963, CVE-2020-16964. Date published : 2020-12-09 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16958

A Use After Free vulnerability exists in Artifex Software, Inc. MuPDF library 1.17.0-rc1 and earlier when a valid page was followed by a page with invalid pixmap dimensions, causing bander – a static –...

A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35, in _bfd_elf_get_symbol_version_string, as demonstrated in nm-new, that can cause a denial of service...

A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35, in scan_unit_for_symbols, as demonstrated in addr2line, that can cause a denial of service...

A use after free issue exists in the Binary File Descriptor (BFD) library (aka libbfd) in GNU Binutils 2.34 in bfd_hash_lookup, as demonstrated in nm-new, that can cause a denial of service via a...