Skip to content
logo

RedPacket Security

InfoSec News & Tutorials

  • Home
  • News
  • Tools
  • Vulnerabilities
  • Hack The Box
  • Tutorials
  • Smart Home
  • Product Review

MISC

CVE prog
Vulnerabilities 

CVE-2021-1772

April 10, 2021 admin CVE, CVE-2021-1772, MISC, Release Notes, vulnerability

A stack overflow was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted text file may lead to arbitrary code execution.

Read more
CVE prog
Vulnerabilities 

CVE-2021-1789

April 10, 2021 admin CVE, CVE-2021-1789, MISC, Release Notes, vulnerability

A type confusion issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, tvOS 14.4, watchOS 7.3, iOS 14.4 and iPadOS 14.4, Safari 14.0.3. Processing maliciously crafted web content may lead to arbitrary code execution.

Read more
CVE prog
Vulnerabilities 

CVE-2021-1792

April 10, 2021 admin CVE, CVE-2021-1792, MISC, Release Notes, vulnerability

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution.

Read more
CVE prog
Vulnerabilities 

CVE-2021-1750

April 9, 2021 admin CVE, CVE-2021-1750, MISC, Release Notes, vulnerability

Multiple issues were addressed with improved logic. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. An application may be able to execute arbitrary code with kernel privileges.

Read more
CVE prog
Vulnerabilities 

CVE-2021-27290

April 9, 2021 admin CVE, CVE-2021-27290, exploit, MISC, vulnerability

ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option.

Read more
CVE prog
Vulnerabilities 

CVE-2020-27952

April 8, 2021 admin CVE, CVE-2020-27952, MISC, Vendor Advisory, vulnerability

An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, macOS Big Sur 11.0.1. Processing a maliciously crafted font file may lead to arbitrary code execution.

Read more
CVE prog
Vulnerabilities 

CVE-2020-29611

April 8, 2021 admin CVE, CVE-2020-29611, MISC, Vendor Advisory, vulnerability

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in tvOS 14.3, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, iCloud for Windows 12.0, watchOS 7.2. Processing a maliciously crafted image may lead to arbitrary code execution.

Read more
CVE prog
Vulnerabilities 

CVE-2020-29614

April 8, 2021 admin CVE, CVE-2020-29614, MISC, Vendor Advisory, vulnerability

This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. Processing a maliciously crafted file may lead to heap corruption.

Read more
CVE prog
Vulnerabilities 

CVE-2020-29617

April 8, 2021 admin CVE, CVE-2020-29617, MISC, Vendor Advisory, vulnerability

An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 14.3, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, iCloud for Windows 12.0, watchOS 7.2. Processing a maliciously crafted image may lead to heap corruption.

Read more
CVE prog
Vulnerabilities 

CVE-2020-9490

April 7, 2021 admin CVE, CVE-2020-9490, MISC, Vendor Advisory, vulnerability

Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the ‘Cache-Digest’ header in a HTTP/2 request would result in a crash when the server actually tries to HTTP/2 PUSH a resource afterwards. Configuring the HTTP/2 feature via “H2Push off” will mitigate this vulnerability for unpatched servers.

Read more
CVE prog
Vulnerabilities 

CVE-2020-13949

April 7, 2021 admin CVE, CVE-2020-13949, Mailing List, MISC, vulnerability

In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service.

Read more
CVE prog
Vulnerabilities 

CVE-2020-13949

April 7, 2021 admin CVE, CVE-2020-13949, Mailing List, MISC, vulnerability

In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service.

Read more
CVE prog
Vulnerabilities 

CVE-2020-13949

April 7, 2021 admin CVE, CVE-2020-13949, Mailing List, MISC, vulnerability

In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service.

Read more
CVE prog
Vulnerabilities 

CVE-2020-13949

April 7, 2021 admin CVE, CVE-2020-13949, Mailing List, MISC, vulnerability

In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service.

Read more
CVE prog
Vulnerabilities 

CVE-2020-13949

April 7, 2021 admin CVE, CVE-2020-13949, Mailing List, MISC, vulnerability

In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service.

Read more
CVE prog
Vulnerabilities 

CVE-2020-13949

April 7, 2021 admin CVE, CVE-2020-13949, Mailing List, MISC, vulnerability

In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service.

Read more
CVE prog
Vulnerabilities 

CVE-2020-13949

April 7, 2021 admin CVE, CVE-2020-13949, Mailing List, MISC, vulnerability

In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service.

Read more
CVE prog
Vulnerabilities 

CVE-2020-13949

April 7, 2021 admin CVE, CVE-2020-13949, Mailing List, MISC, vulnerability

In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service.

Read more
CVE prog
Vulnerabilities 

CVE-2021-29662

April 7, 2021 admin CVE, CVE-2021-29662, MISC, patch, vulnerability

The Data::Validate::IP module through 0.29 for Perl does not properly consider extraneous zero characters at the beginning of an IP address string, which (in some situations) allows attackers to bypass access control that is based on IP addresses.

Read more
CVE prog
Vulnerabilities 

CVE-2021-29930

April 6, 2021 admin CVE, CVE-2021-29930, exploit, MISC, vulnerability

An issue was discovered in the arenavec crate through 2021-01-12 for Rust. A drop of uninitialized memory can sometimes occur upon a panic in T::default().

Read more
CVE prog
Vulnerabilities 

CVE-2021-29942

April 6, 2021 admin CVE, CVE-2021-29942, exploit, MISC, vulnerability

An issue was discovered in the reorder crate through 2021-02-24 for Rust. swap_index can return uninitialized values if an iterator returns a len() that is too large.

Read more
CVE prog
Vulnerabilities 

CVE-2021-29941

April 6, 2021 admin CVE, CVE-2021-29941, exploit, MISC, vulnerability

An issue was discovered in the reorder crate through 2021-02-24 for Rust. swap_index has an out-of-bounds write if an iterator returns a len() that is too small.

Read more
CVE prog
Vulnerabilities 

CVE-2021-29938

April 6, 2021 admin CVE, CVE-2021-29938, exploit, MISC, vulnerability

An issue was discovered in the slice-deque crate through 2021-02-19 for Rust. A double drop can occur in SliceDeque::drain_filter upon a panic in a predicate function.

Read more
CVE prog
Vulnerabilities 

CVE-2021-29931

April 6, 2021 admin CVE, CVE-2021-29931, MISC, Vendor Advisory, vulnerability

An issue was discovered in the arenavec crate through 2021-01-12 for Rust. A double drop can sometimes occur upon a panic in T::drop().

Read more
  • ← Previous
Copyright © 2021 RedPacket Security. All rights reserved.
Theme: ColorMag by ThemeGrill. Powered by WordPress.
pixel