Sicherheitswarnungen

An Improper Link Resolution Before File Access ("Link Following") and Improper Limitation of a Pathname to a Restricted Directory ("Path Traversal"). This vulnerability occurs when extracting a maliciously crafted tar file, which can result in unauthorized file writes or overwrites outside the intended extraction directory. The issue is associated with index.js in the tar-fs package. This issue affects tar-fs: from 0.0.0 before 1.16.4, from 2.0.0 before 2.1.2, from 3.0.0 before 3.0.8.

An out of bounds write exists in FreeType versions 2.13.0 and below (newer versions of FreeType are not vulnerable) when attempting to parse font subglyph structures related to TrueType GX and variable font files. The vulnerable code assigns a signed short value to an unsigned long and then adds a static value causing it to wrap around and allocate too small of a heap buffer. The code then writes up to 6 signed long integers out of bounds relative to this buffer. This may result in arbitrary code execution. This vulnerability may have been exploited in the wild.

ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability

Azure Arc Installer Elevation of Privilege Vulnerability

Azure Command Line Integration (CLI) Elevation of Privilege Vulnerability

Azure Health Bot Elevation of Privilege Vulnerability

Azure Playwright Elevation of Privilege Vulnerability

bpf, test_run: Fix use-after-free issue in eth_skb_pkt_type()

geneve: Fix use-after-free in geneve_find_dev().

HDF5 H5Faccum.c H5F__accum_free heap-based overflow

ibmvnic: Don't reference skb after sending to VIOS

Improper Input Validation in Vim

io_uring: prevent opcode speculation

Jinja sandbox breakout through attr filter selecting format method

jwt-go allows excessive memory allocation during header parsing

Kernel Streaming Service Driver Elevation of Privilege Vulnerability

Kernel Streaming Service Driver Elevation of Privilege Vulnerability

Kernel Streaming Service Driver Elevation of Privilege Vulnerability

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

KEX init error results with excessive memory usage

KVM: Explicitly verify target vCPU is online in kvm_get_vcpu()

Libexpat: expat: improper restriction of xml entity expansion depth in libexpat

Memory Exhaustion in Expr Parser with Unrestricted Input

Microsoft Access Remote Code Execution Vulnerability

Microsoft Dataverse Elevation of Privilege Vulnerability

Microsoft Dataverse Remote Code Execution Vulnerability

Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Microsoft Local Security Authority (LSA) Server Elevation of Privilege Vulnerability

Microsoft Management Console Security Feature Bypass Vulnerability

Microsoft Office Remote Code Execution Vulnerability

Microsoft Office Remote Code Execution Vulnerability

Microsoft Office Remote Code Execution Vulnerability

Microsoft Office Remote Code Execution Vulnerability

Microsoft Windows Cross Device Service Elevation of Privilege Vulnerability

Microsoft Windows Cross Device Service Elevation of Privilege Vulnerability

Microsoft Word Remote Code Execution Vulnerability

Microsoft Word Remote Code Execution Vulnerability

Microsoft Word Remote Code Execution Vulnerability

mm/khugepaged: fix ->anon_vma race

Null Pointer Dereference vulnerability in libarchive 3.7.6 and earlier when running program bsdtar in function header_pax_extension at rchive_read_support_format_tar.c:1844:8.

numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal.

ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up

Possible SSRF and Credential Leakage via Absolute URL in axios Requests

Remote Desktop Client Remote Code Execution Vulnerability

rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read

s390/ism: add release function for struct device

Stream HTTP wrapper header check might omit basic auth header