Security Warnings

.NET Denial of Service Vulnerability

.NET Framework Denial of Service Vulnerability

An issue was discovered in ksmbd in the Linux kernel before 6.6.10. smb2_get_data_area_len in fs/smb/server/smb2misc.c can cause an smb_strndup_from_utf16 out-of-bounds access because the relationship between Name data and CreateContexts data is mishandled.

An out-of-bounds access vulnerability involving netfilter was reported and fixed as: f1082dd31fe4 (netfilter: nf_tables: Reject tables of unsupported family)

Azure Storage Mover Remote Code Execution Vulnerability

Improper Handling of Missing Values in Wireshark

In the Linux kernel before 6.4.12 amdgpu_cs_wait_all_fences in drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c has a fence use-after-free.

In the Linux kernel before 6.4.5 drivers/gpu/drm/drm_atomic.c has a use-after-free during a race condition between a nonblocking atomic commit and a driver unload.

io_uring UAF Unix SCM garbage collection

It was discovered that a nft object or expression could reference a nft set on a different nft table leading to a use-after-free once that table was deleted.

It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.

It was discovered that when exec'ing from a non-leader thread armed POSIX CPU timers would be left on a list but freed leading to a use-after-free.

Kernel: aoe: improper reference count leads to use-after-free vulnerability

Kernel: cifs filesystem decryption improper input validation remote code execution vulnerability in function receive_encrypted_standard of client

Kernel: gc's deletion of an skb races with unix_stream_read_generic() leading to uaf

Kernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destination

Kernel: use-after-free after removing device in wb_inode_writeback_end in mm/page-writeback.c

Kernel: use-after-free while changing the mount option in __ext4_remount leading

Libtiff: segment fault in libtiff in tiffreadrgbatileext() leading to denial of service

Maliciously crafted Git server replies can cause DoS on go-git clients

Microsoft AllJoyn API Denial of Service Vulnerability

Microsoft Common Log File System Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

Microsoft ODBC Driver Remote Code Execution Vulnerability

Microsoft Office Remote Code Execution Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability

NULL Pointer Dereference in Wireshark

Possible UAF in bt_accept_poll in Linux kernel

Remote Desktop Client Remote Code Execution Vulnerability

The WebAudio `OscillatorNode` object was susceptible to a stack buffer overflow. This could have led to a potentially exploitable crash. This vulnerability affects Firefox < 122.

Visual Studio Elevation of Privilege Vulnerability

Win32k Elevation of Privilege Vulnerability

Win32k Elevation of Privilege Vulnerability

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

Windows Cryptographic Services Remote Code Execution Vulnerability

Windows Group Policy Elevation of Privilege Vulnerability

Windows HTML Platforms Security Feature Bypass Vulnerability

Windows Hyper-V Remote Code Execution Vulnerability

Windows Kerberos Security Feature Bypass Vulnerability

Windows Kernel Elevation of Privilege Vulnerability

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

Windows libarchive Remote Code Execution Vulnerability

Windows libarchive Remote Code Execution Vulnerability

Windows Subsystem for Linux Elevation of Privilege Vulnerability

Apache Superset Insecure Default Initialization of Resource Vulnerability

Apple Multiple Products Code Execution Vulnerability

D-Link DSL-2750B Devices Command Injection Vulnerability