Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.
7b0d5b17acb38c19878865b91a26ec718fa0ef53363473240c7cfbdbed356f7fFlawfinder searches through source code for potential security flaws, listing potential security flaws sorted by risk, with the most potentially dangerous flaws shown first. This risk level depends not only on the function, but on the values of the parameters of the function.
5b12c5de0a0f75de84caaebf4b6bd3d87f3776fd3a54de3409ee9c148788251fMultiple Korenix products are affected by unauthenticated device administration, backdoor accounts, cross site request forgery, unauthenticated tftp actions, and command injection vulnerabilities. Products affected include JetNet 5428G-20SFP, JetNet 5810G, JetNet 4706F, JetNet 4706, JetNet 4706, JetNet 4510, JetNet 5010, JetNet 5310, and JetNet 6095.
2ab15e19675a05aaabcb76dc1553dadb6ceb96917b39bbdccdfbeaba3666a535Red Hat Security Advisory 2021-2180-01 - The ovirt-engine package provides the Red Hat Virtualization Manager, a centralized management platform that allows system administrators to view and manage virtual machines. The Manager provides a comprehensive range of features including search capabilities, resource management, live migrations, and virtual infrastructure provisioning.
6852d4b9f97cf864532f858f2006cc4ee7a38b868296227def5a9a57acebe4eeRed Hat Security Advisory 2021-2179-01 - The ovirt-engine package provides the manager for virtualization environments. This manager enables admins to define hosts and networks, as well as to add storage, create VMs and manage user permissions. Issues addressed include code execution and denial of service vulnerabilities.
ce9f506c93ade4ce270780fa19b29e37703e953b3039d04f4e541502e6ebea8dProjeQtOr Project Management version 9.1.4 suffers from a remote shell upload vulnerability.
699e3af0a51fe968519378a4a1d55d03dbb79568c68b2915eb21f38e8903fd14Ubuntu Security Notice 4971-1 - It was discovered that libwebp incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image file, a remote attacker could use this issue to cause libwebp to crash, resulting in a denial of service, or possibly execute arbitrary code.
4154c64372f3a8ff3f9aba59bd006298ea88881a10facd690dd50280c5d9b968Ubuntu Security Notice 4973-1 - It was discovered that the Python stdlib ipaddress API incorrectly handled octal strings. A remote attacker could possibly use this issue to perform a wide variety of attacks, including bypassing certain access restrictions.
c5b3ce18c04bb54f8d9cccdbd356b78d71d0e1536f4ddad6ed0d63d355b590c2Ubee EVW327 suffers from a cross site request forgery vulnerability.
db2ae13634eda913433b0dd6498c6ec401dc37ff7931584eb95b8bc1a5692da9Ubuntu Security Notice 4972-1 - Tom Lane discovered that PostgreSQL incorrect handled certain array subscripting calculations. An authenticated attacker could possibly use this issue to overwrite server memory and escalate privileges. Andres Freund discovered that PostgreSQL incorrect handled certain INSERT ... ON CONFLICT ... DO UPDATE commands. A remote attacker could possibly use this issue to read server memory and obtain sensitive information. Various other issues were also addressed.
6d2f32424f89c0673047264898acd8aa2e015967a2bcfa395cfa26c0c00e5ac4Red Hat Security Advisory 2021-2175-01 - GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Issues addressed include an integer overflow vulnerability.
478424f318d1e74131e9f85e02a9b25922b2a6b91745030dbf4e8fa3e89d8ff7Backdoor.Win32.NetSpy.10 malware suffers from a heap corruption vulnerability.
40b0ad730bc229a47ab2cc59e18aa1563785c0fe02e126f3084c40235157b48dRed Hat Security Advisory 2021-2170-01 - GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Issues addressed include an integer overflow vulnerability.
0796c581b90ae2fbf49a21d1670b20a0353d94724f5de524674ea248bfa4fb04Red Hat Security Advisory 2021-2174-01 - GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Issues addressed include an integer overflow vulnerability.
faf52ca76dff42164de9bb72c6a07c121795726e29c7a03c6be98f0163a5f3faAtlassian Jira version 8.15.0 suffers from a username enumeration vulnerability.
01db45162cdfbd20811911d949d8e0b51cc7df6910ff6fc3394accd66300c530Red Hat Security Advisory 2021-2168-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system.
54bd74fb552802738cbdde5b8c93eb1b4b7df96eca91d8c4e5270b64ceffa2e3Red Hat Security Advisory 2021-2171-01 - GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Issues addressed include an integer overflow vulnerability.
fb2d64555b5853a867fe091711e97a113d18fe4c99d16af1f7fc696d4f2a1b10Red Hat Security Advisory 2021-2173-01 - GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Issues addressed include an integer overflow vulnerability.
512861f554d2d7f21d17f26976722264e25cacffc5bc99e12fa6bd38f2e99a62CHIYU IoT devices suffer from multiple cross site scripting vulnerabilities. Versions affected include BF-430, BF-431, BF-450M, BF-630, BF631-W, BF830-W, Webpass, BF-MINI-W, and SEMAC.
a0e148bec7337cb5cb6a2196c1eaeb2f732ddeb5e61a399ebf58969e953122eaCHIYU TCP/IP Converter devices suffers from a crlf injection vulnerability. Versions affected include BF-430, BF-431, and BF-450M.
e7a596a59cae5f2c12a480ba0005a90bec441a27f46a82c5481c45eb383eab21Ubuntu Security Notice 4970-1 - It was discovered that GUPnP incorrectly filtered local requests. If a user were tricked into visiting a malicious website, a remote attacker could possibly use this issue to perform actions against local UPnP services such as obtaining or altering sensitive information.
0a2b86cdd89d16b61a286b6d83eab7d18ff398bbe1162d771f34da42e8f707d9Red Hat Security Advisory 2021-2172-01 - GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Issues addressed include an integer overflow vulnerability.
1c1febdb125274d3a83903cc169f4810862bfd7556b63506f8db15e4aca1c425WordPress WP Prayer plugin version 1.6.1 suffers from a persistent cross site scripting vulnerability.
afd9a64bbddd69cb57546707ffd7e55632c459f8405d9c50e71711afdf36e788Red Hat Security Advisory 2021-2165-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.
6da6b9ec60b82c610e0c5a7bc75693e5f878172a20d44ed51102d245a512d4a3Red Hat Security Advisory 2021-2169-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
57c250694dc9f042f0f6425c74ede96627017e8272ef870419b7c0d4dbe52849
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed