Security Warnings

.NET Denial of Service Vulnerability

.NET Denial of Service Vulnerability

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

A buffer overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the pan/addr_resolv.c, and ws_manuf_lookup_str(), size components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected.

A Buffer Overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the wsutil/to_str.c, and format_fractional_part_nsecs components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected.

A malicious website could have used a combination of exiting fullscreen mode and `requestPointerLock` to cause the user's mouse to be re-positioned unexpectedly, which could have led to user confusion and inadvertently granting permissions they did not intend to grant. This vulnerability affects Firefox &lt; 123, Firefox ESR &lt; 115.8, and Thunderbird &lt; 115.8.

A memory leak flaw was found in the UBI driver in drivers/mtd/ubi/attach.c in the Linux kernel through 6.7.4 for UBI_IOCATT, because kobj-&gt;name is not released.

A vulnerability in Node.js HTTP servers allows an attacker to send a specially crafted HTTP request with chunked encoding leading to resource exhaustion and denial of service (DoS). The server reads an unbounded number of bytes from a single connection exploiting the lack of limitations on chunk extension bytes. The issue can cause CPU and network bandwidth exhaustion bypassing standard safeguards like timeouts and body size limits.

An issue in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the packet-bgp.c, dissect_bgp_open(tvbuff_t*tvb, proto_tree*tree, packet_info*pinfo), optlen components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected.

An issue was discovered in QEMU 7.1.0 through 8.2.1. register_vfs in hw/pci/pcie_sriov.c does not set NumVFs to PCI_SRIOV_TOTAL_VF, and thus interaction with hw/nvme/ctrl.c is mishandled.

An issue was discovered in QEMU 7.1.0 through 8.2.1. register_vfs in hw/pci/pcie_sriov.c mishandles the situation where a guest writes NumVFs greater than TotalVFs, leading to a buffer overflow in VF implementations.

Apache Commons Compress: Denial of service caused by an infinite loop for a corrupted DUMP file

Apache Commons Compress: OutOfMemoryError unpacking broken Pack200 file

Apache Xerces C++: Use-after-free on external DTD scan

arm64: errata: Add Cortex-A520 speculative unprivileged load workaround

Azure Connected Machine Agent Elevation of Privilege Vulnerability

Azure DevOps Server Remote Code Execution Vulnerability

Azure Stack Hub Spoofing Vulnerability

close_altfile in filename.c in less before 606 omits shell_quote calls for LESSCLOSE.

create_empty_lvol in drivers/mtd/ubi/vtbl.c in the Linux kernel through 6.7.4 can attempt to allocate zero bytes and crash because of a missing check for ubi-&gt;leb_size.

Denial of service due to unbounded recursion in QuickTimeVideo::multipleEntriesDecoder in Exiv2

drm/amd/display: Wake DMCUB before sending a command

drm/bridge: sii902x: Fix probing race issue

Dynamics 365 Field Service Spoofing Vulnerability

Dynamics 365 Sales Spoofing Vulnerability

Dynamics 365 Sales Spoofing Vulnerability

elfutils v0.189 was discovered to contain a NULL pointer dereference via the handle_verdef() function at readelf.c.

Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root.

Incorrect code generation could have led to unexpected numeric conversions and potential undefined behavior.*Note:* This issue only affects 32-bit ARM devices. This vulnerability affects Firefox &lt; 123, Firefox ESR &lt; 115.8, and Thunderbird &lt; 115.8.

Internet Connection Sharing (ICS) Denial of Service Vulnerability

Internet Shortcut Files Security Feature Bypass Vulnerability

Kernel: race condition leads to use after free during vma lock in lock_vma_under_rcu

ksmbd: validate mech token in session setup

libgit2 is vulnerable to a denial of service attack in `git_revparse_single`

libgit2 is vulnerable to arbitrary code execution due to heap corruption in `git_index_add`

LoongArch: BPF: Prevent out-of-bounds memory access

Microsoft ActiveX Data Objects Remote Code Execution Vulnerability

Microsoft Azure Active Directory B2C Spoofing Vulnerability

Microsoft Azure File Sync Elevation of Privilege Vulnerability

Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability

Microsoft Azure Kubernetes Service Confidential Container Remote Code Execution Vulnerability

Microsoft Azure Site Recovery Elevation of Privilege Vulnerability

Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability

Microsoft Dynamics Business Central/NAV Information Disclosure Vulnerability