Arm Mali CSF has a refcount overflow bugfix in r43p0 that was misclassified as a memory leak fix.
05a93b8780cfb3ee2e1142acedfd65b47dbf3a86e2c48f3c8256e45ceaf5837bDebian Linux Security Advisory 5567-1 - Multiple buffer overflows and memory leak issues have been found in tiff, the Tag Image File Format (TIFF) library and tools, which may cause denial of service when processing a crafted TIFF image.
488383dfe99aada3210eb06ee816794f7320a1dcece9cbb4baefa6be343ce04bRed Hat Security Advisory 2023-7400-01 - An update for libcap is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Issues addressed include integer overflow and memory leak vulnerabilities.
63e5baed3ca51b7c6bf694d9fa2608b6858d97bf1150df6b43ff03708494790cRed Hat Security Advisory 2023-7077-01 - An update for kernel is now available for Red Hat Enterprise Linux 8. Issues addressed include buffer overflow, denial of service, double free, information leakage, memory leak, null pointer, out of bounds access, out of bounds write, and use-after-free vulnerabilities.
7db5997189aa564fbe4295196db6fa871ff58949a43b251330c0bf24348f2adfRed Hat Security Advisory 2023-7057-01 - An update for yajl is now available for Red Hat Enterprise Linux 8. Issues addressed include a memory leak vulnerability.
f30c33ac99b2602702e4072df820cdb74c7dbfcf30e2c94bcc918b11713c38b0Red Hat Security Advisory 2023-6901-01 - An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Issues addressed include buffer overflow, denial of service, double free, memory leak, null pointer, out of bounds access, out of bounds write, and use-after-free vulnerabilities.
2533653c5a85b7dffc3b9dea265f6e22745a735a08a1453afb585e5b3377e3c6Ubuntu Security Notice 6449-2 - USN-6449-1 fixed vulnerabilities in FFmpeg. Unfortunately that update could introduce a regression in tools using an FFmpeg library, like VLC. This updated fixes the problem. It was discovered that FFmpeg incorrectly managed memory resulting in a memory leak. An attacker could possibly use this issue to cause a denial of service via application crash. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS.
bf6201e552c03ca8723582243756d69f93b6eea0b2163b8df982cdac79905eaaRed Hat Security Advisory 2023-6575-01 - An update for libtiff is now available for Red Hat Enterprise Linux 9. Issues addressed include buffer overflow, memory leak, null pointer, and use-after-free vulnerabilities.
eab16ffd79c1fcbfaeb9b04ad20e46cb118adbd74daa25b1acc79986af1a8a7eRed Hat Security Advisory 2023-6551-01 - An update for yajl is now available for Red Hat Enterprise Linux 9. Issues addressed include a memory leak vulnerability.
623bd081c791673f21caed8805524f984b8a91c207d92d64625287c7dc3a3c9cUbuntu Security Notice 6449-1 - It was discovered that FFmpeg incorrectly managed memory resulting in a memory leak. An attacker could possibly use this issue to cause a denial of service via application crash. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. It was discovered that FFmpeg incorrectly handled certain input files, leading to an integer overflow. An attacker could possibly use this issue to cause a denial of service via application crash. This issue only affected Ubuntu 20.04 LTS.
30ff576e31ffb4f55aa40850734014c7fc975b5ab7b1fea8aaf260af4e227ccdUbuntu Security Notice 6430-1 - It was discovered that FFmpeg did not properly handle certain inputs in vf_lagfun.c, resulting in a buffer overflow vulnerability. An attacker could possibly use this issue to cause a denial of service via application crash. This issue only affected Ubuntu 20.04 LTS. It was discovered that FFmpeg incorrectly managed memory in avienc.c, resulting in a memory leak. An attacker could possibly use this issue to cause a denial of service via application crash.
a9bea8d9dd97428bdd2ea53fcb4eb96bd03d9a8ab7cb54d086ba322153be089bRed Hat Security Advisory 2023-5622-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include memory leak, privilege escalation, and use-after-free vulnerabilities.
05852e9fad3e59bf14ca804a4c9c7c6c0ab6f7cdd3da81919fbd57053d63811cUbuntu Security Notice 6384-1 - Jana Hofmann, Emanuele Vannacci, Cedric Fournet, Boris Kopf, and Oleksii Oleksenko discovered that some AMD processors could leak stale data from division operations in certain situations. A local attacker could possibly use this to expose sensitive information. Lonial Con discovered that the netfilter subsystem in the Linux kernel contained a memory leak when handling certain element flush operations. A local attacker could use this to expose sensitive information.
86d4f986dbf26d2b8344d0f408ab0eb7fb4ec29c9e1181c7b908d23ecbd28bf5Ubuntu Security Notice 6381-1 - It was discovered that a memory leak existed in certain GNU binutils modules. An attacker could possibly use this issue to cause a denial of service. It was discovered that GNU binutils was not properly performing bounds checks in several functions, which could lead to a buffer overflow. An attacker could possibly use this issue to cause a denial of service, expose sensitive information or execute arbitrary code.
62052b8930b0e674a329aaba90345955aad2731e389587961766f435a702bf53Red Hat Security Advisory 2023-5175-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation. Issues addressed include a memory leak vulnerability.
a0644a1d0fab135233266c995fe3af9950bc821b3ce5fe9a79fee01d5f4cf347Red Hat Security Advisory 2023-5071-01 - Libcap is a library for getting and setting POSIX.1e draft 15 capabilities. Issues addressed include integer overflow and memory leak vulnerabilities.
e50cb7c52a97269d2fb99f054b0a16854c3bb81f3767dcd93bdfaadeae209fcfRed Hat Security Advisory 2023-4983-01 - Red Hat Process Automation Manager is an open source business process management suite that combines process management and decision service management and enables business and IT users to create, manage, validate, and deploy process applications and decision services. This asynchronous security patch is an update to Red Hat Process Automation Manager 7. Issues addressed include bypass, denial of service, deserialization, and memory leak vulnerabilities.
6867bafdeedf9ae75c9407251eef4143953398b5310e20fefd7e1e5070726ec8Red Hat Security Advisory 2023-4799-01 - Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux. Issues addressed include a memory leak vulnerability.
905aaa6b968126362f07c6d48c3445fdd47240f5c80fe283b1345b28bcd8692fRed Hat Security Advisory 2023-4624-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. Issues addressed include a memory leak vulnerability.
e0f5c7eca180931c2dd41e9bf1359f55373aefa75a8399a487be13af264d36efRed Hat Security Advisory 2023-4524-01 - Libcap is a library for getting and setting POSIX.1e draft 15 capabilities. Issues addressed include integer overflow and memory leak vulnerabilities.
9393191fe2906786aaecc95ef657be2b2d21d0856639034a2d51cd3151f514e6Red Hat Security Advisory 2023-3822-01 - Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Issues addressed include a memory leak vulnerability.
12304eba2c48f6801d19aeba5d6391a309d1fe6b19187b6bb5c3fb940c85ddfaRed Hat Security Advisory 2023-3715-01 - The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. Issues addressed include a memory leak vulnerability.
9b8b53521738368a749fe60c780351f9820f05a28d78796091f980340ba474e6Red Hat Security Advisory 2023-3097-01 - The gssntlmssp is a GSSAPI NTLM mechanism that allows to perform NTLM authentication in GSSAPI programs. Issues addressed include memory leak and out of bounds read vulnerabilities.
847c8312f217e99ed415b61db0699adeda1300a006d99e9eddf28f3508c0c38dRed Hat Security Advisory 2023-2898-01 - The libtar packages contain a C library for manipulating tar archives. The library supports both the strict POSIX tar format and many of the commonly used GNU extensions. Issues addressed include memory leak and out of bounds read vulnerabilities.
7f829d5c46558d34b8e0966a6bbdb5512e0f0d8629e4740cf5754cbf01d65479Red Hat Security Advisory 2023-3000-01 - The Dynamic Host Configuration Protocol is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and administer DHCP on a network. Issues addressed include a memory leak vulnerability.
52692430782fa734b3f81bc5ddcffa7824db44b45fc33fd1cace19f8fb6368d3
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed