Category: Vulnerabilities

When exchanging data over a socket, libnv uses select(2) to wait for data to arrive. However, it does not verify whether the provided socket descriptor fits in select(2)’s file descriptor set size limit of...

ColorOS Assistant has an unauthenticated start-download channel, leading to file path traversal. More information : https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-2049764240746881024

Incorrect packet validation allowed unbounded recursion parsing SCTP chunk parameters. This can eventually result in a stack overflow and panic. Remote attackers can craft packets which cause affected systems to panic. This affects any...

ZigBee protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service More information : https://gitlab.com/wireshark/wireshark/-/issues/21125

BEEP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service More information : https://gitlab.com/wireshark/wireshark/-/issues/21120

SMB2 protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service More information : https://gitlab.com/wireshark/wireshark/-/work_items/21191

WebSocket protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service More information : https://gitlab.com/wireshark/wireshark/-/work_items/21190

GSM RP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service More information : https://gitlab.com/wireshark/wireshark/-/work_items/21189

An operator precedence bug in the kernel results in a scenario where a buffer overflow causes attacker-controlled data to overwrite adjacent execve(2) argument buffers. The bug may be exploitable by an unprivileged user to...

SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service More information : https://gitlab.com/wireshark/wireshark/-/issues/21139

Kismet protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service More information : https://gitlab.com/wireshark/wireshark/-/issues/21128

Dissection engine LZ77 decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service More information : https://gitlab.com/wireshark/wireshark/-/issues/21127

USB HID protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service More information : https://gitlab.com/wireshark/wireshark/-/issues/21121

Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service More information : https://gitlab.com/wireshark/wireshark/-/issues/21097