Security Warnings

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

An issue was discovered in the Linux kernel before 6.6.8. atalk_ioctl in net/appletalk/ddp.c has a use-after-free because of an atalk_recvmsg race condition.

An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.

An issue was discovered in the Linux kernel before 6.6.8. rose_ioctl in net/rose/af_rose.c has a use-after-free because of a rose_accept race condition.

Azure Connected Machine Agent Elevation of Privilege Vulnerability

Before Go 1.20, the RSA based key exchange methods in crypto/tls may exhibit a timing side channel

cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_InsertItemInArray at cJSON.c.

cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_SetValuestring at cJSON.c.

Command 'go get' may unexpectedly fallback to insecure git in cmd/go

DHCP Server Service Denial of Service Vulnerability

DHCP Server Service Information Disclosure Vulnerability

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

Kernel: gsm multiplexing race condition leads to privilege escalation

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability

Memory safety bugs present in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR &lt; 115.6, Thunderbird &lt; 115.6, and Firefox &lt; 121.

Microsoft Defender Denial of Service Vulnerability

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

Microsoft Dynamics 365 Finance and Operations Denial of Service Vulnerability

Microsoft ODBC Driver Remote Code Execution Vulnerability

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

Out-of-bounds write in Linux kernel's Performance Events system component

Postgresql: buffer overrun from integer overflow in array modification

SQLite SQLite3 make alltest sqlite3session.c sessionReadRecord heap-based overflow

Sudo before 1.9.15 might allow row hammer attacks (for authentication bypass or privilege escalation) because application logic sometimes is based on not equaling an error value (instead of equaling a success value) and because the values do not resist flips of a single bit.

The jose2go component before 1.6.0 for Go allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.

The WebGL `DrawElementsInstanced` method was susceptible to a heap buffer overflow when used on systems with the Mesa VM driver. This issue could allow an attacker to perform remote code execution and sandbox escape. This vulnerability affects Firefox ESR &lt; 115.6, Thunderbird &lt; 115.6, and Firefox &lt; 121.

Win32k Elevation of Privilege Vulnerability

Win32k Elevation of Privilege Vulnerability

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Windows Bluetooth Driver Remote Code Execution Vulnerability

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

Windows DNS Spoofing Vulnerability

Windows DPAPI (Data Protection Application Programming Interface) Spoofing Vulnerability

Windows Kernel Elevation of Privilege Vulnerability

Windows Media Remote Code Execution Vulnerability

Windows MSHTML Platform Remote Code Execution Vulnerability

Windows Sysmain Service Elevation of Privilege Vulnerability

Windows Telephony Server Elevation of Privilege Vulnerability

Xorg-x11-server: out-of-bounds memory read in rrchangeoutputproperty and rrchangeproviderproperty

Xorg-x11-server: out-of-bounds memory reads/writes in xkb button actions

Unitronics Vision PLC and HMI Insecure Default Password Vulnerability