Showing 1 - 5 of 5

Files Date: 2023-01-06

American Fuzzy Lop plus plus 4.05c: Posted Jan 6, 2023; Authored by van Hauser, thc, Heiko Eissfeldt, Andrea Fioraldi, Dominik Maier | Site github.com; Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.; Changes: 3 updates to afl-fuzz, one update to afl-showmap/afl-cmin, unicorn_mode updated, updated rust custom mutator dependencies and LibAFL custom mutator, and several minor bugfixes. Some libraries stopped working on macOS.; tags | tool, fuzzer; systems | unix; SHA-256 | 5a2a7e94690771e2d80d2b30a72352e16bcc14f2cfff6d6fc1fd67f0ce2a9d3b; Download | Favorite | View

Linux videobuf2 Use-After-Free: Posted Jan 6, 2023; Authored by Google Security Research, Seth Jenkins; An unsafe use of follow_pfn in get_vaddr_frames in videobuf2 on Linux leads to use-after-free issues or writes to ro-pages.; tags | exploit; systems | linux; SHA-256 | f545295793aea2d033e2e1720bb35ac7db855bcaa8fafcd55848d3dffe8ce90b; Download | Favorite | View

Red Hat Security Advisory 2022-9110-01: Posted Jan 6, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-9110-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.9.54.; tags | advisory; systems | linux, redhat; advisories | CVE-2022-34177; SHA-256 | 0a6edfda8b98dee68a6b6f05444528113e7b7a015146415fcb9c976957fcc24d; Download | Favorite | View

Ubuntu Security Notice USN-5788-1: Posted Jan 6, 2023; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5788-1 - Hiroki Kurosawa discovered that curl incorrectly handled HSTS support when certain hostnames included IDN characters. A remote attacker could possibly use this issue to cause curl to use unencrypted connections. This issue only affected Ubuntu 22.04 LTS, and Ubuntu 22.10. It was discovered that curl incorrectly handled denials when using HTTP proxies. A remote attacker could use this issue to cause curl to crash, resulting in a denial of service, or possibly execute arbitrary code.; tags | advisory, remote, web, denial of service, arbitrary; systems | linux, ubuntu; advisories | CVE-2022-43551, CVE-2022-43552; SHA-256 | 3ef92df63b6493af5d8bf8786dd0e272eec83c93043b706adf9ec6157dddd4d6; Download | Favorite | View

Ubuntu Security Notice USN-5789-1: Posted Jan 6, 2023; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5789-1 - It was discovered that the NFSD implementation in the Linux kernel did not properly handle some RPC messages, leading to a buffer overflow. A remote attacker could use this to cause a denial of service or possibly execute arbitrary code. Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure reuse. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.; tags | advisory, remote, denial of service, overflow, arbitrary, kernel, local; systems | linux, ubuntu; advisories | CVE-2022-26365, CVE-2022-33743, CVE-2022-3524, CVE-2022-3564, CVE-2022-3566, CVE-2022-3567, CVE-2022-3594, CVE-2022-3621, CVE-2022-42703, CVE-2022-43945; SHA-256 | 5e4425ebefc70941701f4366636f5c56c410100f8702999238e1ca79db767665; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days