Starting in version 2.0.0 and prior to version 2.4.6, CUPS logs data of free memory to the logging service AFTER the connection has been closed, when it should have logged the data right before. OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. However, a running routine may be unaware of this and cause the use-after-free of the mdev->addrs object, potentially leading to a denial of service. The function mctp_unregister() reclaims the device's relevant resource when a netcard detaches. An attacker could trick user to open a specially crafted file to convert, triggering an heap-use-after-free write error, allowing an application to crash, resulting in a denial of service.Ī flaw was found in the MCTP protocol in the Linux kernel. NanoMQ 0.16.5 is vulnerable to heap-use-after-free in the nano_ctx_send function of nmq_mqtt.c.Ī heap use after free issue was discovered in ImageMagick's ReplaceXmpValue() function in MagickCore/profile.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted XLSX file. Xlsxio v0.1.2 to v0.2.34 was discovered to contain a free of uninitialized pointer in the xlsxioread_sheetlist_close() function.
A use-after-free was found in saa7134_finidev in drivers/media/pci/saa7134/saa7134-core.c.Ī double free or use after free could occur after SSL_clear in OpenBSD 7.2 before errata 026 and 7.3 before errata 004, and in LibreSSL before 3.6.3 and 3.7.x before 3.7.3. A use-after-free was found in dm1105_remove in drivers/media/pci/dm1105/dm1105.c.Īn issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in cedrus_remove in drivers/staging/media/sunxi/cedrus/cedrus.c.Īn issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in ravb_remove in drivers/net/ethernet/renesas/ravb_main.c.Īn issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesas_usb3_remove in drivers/usb/gadget/udc/renesas_usb3.c.Īn issue was discovered in the Linux kernel through 6.3.8. A use-after-free was found in rkvdec_remove in drivers/staging/media/rkvdec/rkvdec.c.Īn issue was discovered in the Linux kernel before 6.3.2. There are no known workarounds for this issue.Īn issue was discovered in the Linux kernel before 6.3.2. This issue has been resolved in Tuleap version 14.9.99.63. Restricted users that were project administrators before the visibility switch keep the possibility to access the project and do some administration actions. When switching from a project visibility that allows restricted users to `Private without restricted`, restricted users that are project administrators keep this access right.
Tuleap is a Free & Open Source Suite to improve management of software developments and collaboration. Hnswlib 0.7.0 has a double free in init_index when the M argument is a large integer.
0 kommentar(er)
