Gentoo Linux Security Advisory 202408-33 - Multiple vulnerabilities have been discovered in protobuf-c, the worst of which could result in denial of service. Versions greater than or equal to 1.4.1 are affected.
591b920d9e69c9911a321ca37990a492cc38f8529bf51ff4eb094bc55ce6d7d7Ubuntu Security Notice 5811-1 - Matthieu Barjole and Victor Cutillas discovered that Sudo incorrectly handled user-specified editors when using the sudoedit command. A local attacker that has permission to use the sudoedit command could possibly use this issue to edit arbitrary files. It was discovered that the Protobuf-c library, used by Sudo, incorrectly handled certain arithmetic shifts. An attacker could possibly use this issue to cause Sudo to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS.
125a5a2bfed966c929abe10855d93636c2099a6516997eefaa81b2d2f0f7af69Gentoo Linux Security Advisory 202210-16 - Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Versions less than 106.0.5249.119 are affected.
3d7202a984de4a90f9a3c66c864584b39d7b486af8f6dc00422571a50b43caf3Debian Linux Security Advisory 5244-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
a97e0818e04337cac43b86cb867fe835e81a0ba4b1119ab6110f2c18a842ed9cUbuntu Security Notice 5531-1 - Pietro Borrello discovered that protobuf-c contained an invalid arithmetic shift. This vulnerability allowed attackers to cause a denial of service via unspecified vectors. It was discovered that protobuf-c contained an unsigned integer overflow. This vulnerability allowed attackers to cause a denial of service via unspecified vectors.
9c1853bf4125f3d2065d985d456461411609a6cce87fd52a52fb2f90beb1a732
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed