dimanche 15 septembre 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Dino Carbon Message 0280_message_carbons.vala unknown vulnerability

A vulnerability has been found in Dino (the affected version is unknown) and classified as problematic. This vulnerability affects some unknown functionality of the file module/xep/0280_message_carbons.vala of the component Carbon Message...
Auteur: VulDB

Linux Kernel 5.2.14 trans.c alloc_workqueue denial of service

A vulnerability, which was classified as problematic, was found in Linux Kernel 5.2.14 (Operating System). This affects an unknown functionality of the file drivers/net/wireless/intel/iwlwifi/pcie/trans.c. There is no information about possible...
Auteur: VulDB

Linux Kernel 5.2.14 qla_os.c alloc_workqueue denial of service

A vulnerability, which was classified as problematic, has been found in Linux Kernel 5.2.14 (Operating System). Affected by this issue is an unknown function of the file drivers/scsi/qla2xxx/qla_os.c. There is no information about possible...
Auteur: VulDB

Linux Kernel 5.2.14 if_sdio.c alloc_workqueue denial of service

A vulnerability classified as problematic was found in Linux Kernel 5.2.14 (Operating System). Affected by this vulnerability is some unknown processing in the library drivers/net/wireless/marvell/libertas/if_sdio.c. There is no information about...
Auteur: VulDB

Linux Kernel 5.2.14 fjes_main.c alloc_workqueue denial of service

A vulnerability classified as problematic has been found in Linux Kernel 5.2.14. Affected is an unknown code block of the file drivers/net/fjes/fjes_main.c. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Linux Kernel 5.2.14 radeon_display.c alloc_workqueue denial of service

A vulnerability was found in Linux Kernel 5.2.14 (Operating System). It has been rated as problematic. This issue affects an unknown code of the file drivers/gpu/drm/radeon/radeon_display.c. There is no information about possible countermeasures...
Auteur: VulDB

Linux Kernel 5.2.14 kfd_interrupt.c alloc_workqueue denial of service

A vulnerability was found in Linux Kernel 5.2.14 (Operating System). It has been declared as problematic. This vulnerability affects an unknown part of the file drivers/gpu/drm/amd/amdkfd/kfd_interrupt.c. There is no information about possible...
Auteur: VulDB

py-lmdb 0.97 mdb_env_open2 size denial of service

A vulnerability was found in py-lmdb 0.97. It has been classified as problematic. This affects the function mdb_env_open2. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

py-lmdb 0.97 mdb_cursor_set mn_flags memory corruption

A vulnerability was found in py-lmdb 0.97 and classified as critical. Affected by this issue is the function mdb_cursor_set. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

py-lmdb 0.97 memmove mdb_node_del memory corruption

A vulnerability has been found in py-lmdb 0.97 and classified as critical. Affected by this vulnerability is the function mdb_node_del of the component memmove. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

py-lmdb 0.97 memory corruption

A vulnerability, which was classified as critical, was found in py-lmdb 0.97. Affected is some unknown processing. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

py-lmdb 0.97 md_flags/mdb_node_add memory corruption

A vulnerability, which was classified as critical, has been found in py-lmdb 0.97. This issue affects an unknown code block. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an...
Auteur: VulDB

WordPress up to 5.2.2 Post Preview cross site scripting

A vulnerability classified as problematic was found in WordPress up to 5.2.2. This vulnerability affects an unknown code of the component Post Preview. Upgrading to version 5.2.3 eliminates this vulnerability.
Auteur: VulDB

WordPress up to 5.2.2 URL wp-includes/kses.php wp_kses_bad_protocol_once cross site scripting

A vulnerability classified as problematic has been found in WordPress up to 5.2.2. This affects the function wp_kses_bad_protocol_once of the file wp-includes/kses.php of the component URL Handler. Upgrading to version 5.2.3 eliminates this...
Auteur: VulDB

WordPress up to 5.2.2 Dashboard Reflected cross site scripting

A vulnerability was found in WordPress up to 5.2.2. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Dashboard. Upgrading to version 5.2.3 eliminates this vulnerability.
Auteur: VulDB

WordPress up to 5.2.2 pluggable.php wp_validate_redirect Open Redirect

A vulnerability was found in WordPress up to 5.2.2. It has been declared as critical. Affected by this vulnerability is the function wp_validate_redirect of the file wp-includes/pluggable.php. Upgrading to version 5.2.3 eliminates this...
Auteur: VulDB

WordPress up to 5.2.2 Shortcode Preview cross site scripting

A vulnerability was found in WordPress up to 5.2.2. It has been classified as problematic. Affected is an unknown function of the component Shortcode Preview Handler. Upgrading to version 5.2.3 eliminates this vulnerability.
Auteur: VulDB

WordPress up to 5.2.2 Comment Stored cross site scripting

A vulnerability was found in WordPress up to 5.2.2 and classified as problematic. This issue affects some unknown processing of the component Comment Handler. Upgrading to version 5.2.3 eliminates this vulnerability.
Auteur: VulDB

WordPress up to 5.2.2 Media Upload wp_ajax_upload_attachment cross site scripting

A vulnerability has been found in WordPress up to 5.2.2 and classified as problematic. This vulnerability affects an unknown code block of the component Media Upload. Upgrading to version 5.2.3 eliminates this vulnerability.
Auteur: VulDB

Micro-Star MSI Afterburner 4.6.2.15658 Driver RTCore64.sys Code Execution

A vulnerability, which was classified as critical, was found in Micro-Star MSI Afterburner 4.6.2.15658. This affects an unknown code in the library RTCore64.sys of the component Driver. There is no information about possible countermeasures...
Auteur: VulDB

XWiki CryptPad up to 2.x Pad Management Logic denial of service

A vulnerability, which was classified as problematic, has been found in XWiki CryptPad up to 2.x. Affected by this issue is an unknown part of the component Pad Management Logic. Upgrading to version 3.0.0 eliminates this vulnerability.
Auteur: VulDB

JIRA up to 8.3.x cross site request forgery

A vulnerability classified as problematic was found in JIRA up to 8.3.x. Affected by this vulnerability is some unknown functionality. Upgrading to version 8.4.0 eliminates this vulnerability.
Auteur: VulDB

JIRA up to 8.4.0 Cache AccessLogFilter information disclosure

A vulnerability classified as problematic has been found in JIRA up to 8.4.0. Affected is the function AccessLogFilter of the component Cache Handler. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

JIRA up to 7.13.6 FilterPickerPopup.jspa searchOwnerUserName cross site scripting

A vulnerability was found in JIRA up to 7.13.6. It has been rated as problematic. This issue affects an unknown function of the file FilterPickerPopup.jspa. Upgrading to version 7.13.7 eliminates this vulnerability.
Auteur: VulDB

JIRA up to 8.3.x Attachment /rest/api/1.0/render information disclosure

A vulnerability was found in JIRA up to 8.3.x. It has been declared as problematic. This vulnerability affects some unknown processing of the file /rest/api/1.0/render of the component Attachment Handler. Upgrading to version 8.4.0 eliminates...
Auteur: VulDB
12345678910Last

Événements SSI

LES ASSISES

Grand rendez-vous annuel des RSSI, les Assises de la sécurité des systèmes d'information se tiennent à Monaco (Grimaldi Forum) du 9 au 12 octobre 2019. Organisées par DG Consultants.

BLOCKCHAIN

Conférence et exposition sur les applications d'entreprise de la blockchain à Paris, cité universitaire internationale, les 13 et 14 novembre 2019. Organisés par Corp Agency.

TRUSTECH

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes (palais des festivals) du 26 au 28 novembre 2019. Organisé par Comexposium.

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RSS