Log

CVE-2019-6988 created at 25 Sep 2019 19:31:40
Severity
+ Low
Remote
+ Remote
Type
+ Denial of service
Description
+ An issue has been discovered in OpenJPEG <= 2.3.0. It allows remote attackers to cause a denial of service (attempted excessive memory allocation) in opj_calloc in
+ openjp2/opj_malloc.c, when called from opj_tcd_init_tile in openjp2/tcd.c, as demonstrated by the 64-bit opj_decompress.
References
+ https://github.com/uclouvain/openjpeg/issues/1178
Notes
CVE-2019-7096 created at 25 Sep 2019 19:31:40
Severity
+ Critical
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ An arbitrary code execution issue has been found in Adobe Flash Player before 32.0.0.171.
References
+ https://helpx.adobe.com/security/products/flash-player/apsb19-19.html
Notes
CVE-2019-7108 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Remote
Type
+ Information disclosure
Description
+ An out-of-bounds read has been found in Adobe Flash Player before 32.0.0.171.
References
+ https://helpx.adobe.com/security/products/flash-player/apsb19-19.html
Notes
CVE-2019-7148 created at 25 Sep 2019 19:31:40
Severity
+ Low
Remote
+ Remote
Type
+ Denial of service
Description
+ An attempted excessive memory allocation was discovered in the function read_long_names in elf_begin.c in libelf in elfutils <= 0.175. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted elf input, which leads to an out-of-memory exception.
References
+ https://sourceware.org/bugzilla/show_bug.cgi?id=24085
Notes
CVE-2019-7149 created at 25 Sep 2019 19:31:40
Severity
+ Low
Remote
+ Remote
Type
+ Denial of service
Description
+ A heap-based buffer over-read was discovered in the function read_srclines in dwarf_getsrclines.c in libdw in elfutils 0.175. A crafted input can cause segmentation faults, leading to denial-of-service.
References
+ https://sourceware.org/bugzilla/show_bug.cgi?id=24102
Notes
CVE-2019-7150 created at 25 Sep 2019 19:31:40
Severity
+ Low
Remote
+ Remote
Type
+ Denial of service
Description
+ An issue was discovered in elfutils 0.175. A segmentation fault can occur in the function elf64_xlatetom in libelf/elf32_xlatetom.c, due to dwfl_segment_report_module not checking whether the dyn data read from a core file is truncated. A crafted input can cause a program crash, leading to denial-of-service.
References
+ https://sourceware.org/bugzilla/show_bug.cgi?id=24103
Notes
CVE-2019-7221 created at 25 Sep 2019 19:31:40
Severity
+ Critical
Remote
+ Local
Type
+ Privilege escalation
Description
+ A use-after-free vulnerability was found in the way the Linux kernel's KVM hypervisor emulates a preemption timer for L2 guests when nested (=1) virtualization is enabled. This high resolution timer(hrtimer) runs when a L2 guest is active. After VM exit, the sync_vmcs12() timer object is stopped. The use-after-free occurs if the timer object is freed before calling sync_vmcs12() routine. A guest user/process could use this flaw to crash the host kernel resulting in a denial of service or, potentially, gain privileged access to a system.
References
+ https://bugs.chromium.org/p/project-zero/issues/detail?id=1759&desc=2
+ https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=353c0956a618a07ba4bbe7ad00ff29fe70e8412a
Notes
CVE-2019-7222 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Local
Type
+ Information disclosure
Description
+ An information leakage issue was found in the way Linux kernel's KVM hypervisor handled page fault exceptions while emulating instructions like VMXON, VMCLEAR, VMPTRLD, and VMWRITE with memory address as an operand. It occurs if the operand is a mmio address, as the returned exception object holds uninitialized stack memory contents. A guest user/process could use this flaw to leak host's stack memory contents to a guest.
References
+ https://bugs.chromium.org/p/project-zero/issues/detail?id=1759
+ https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=353c0956a618a07ba4bbe7ad00ff29fe70e8412a
Notes
CVE-2019-7310 created at 25 Sep 2019 19:31:40
Severity
+ Low
Remote
+ Remote
Type
+ Denial of service
Description
+ In Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PDF document, as demonstrated by pdftocairo.
References
+ https://gitlab.freedesktop.org/poppler/poppler/issues/717
+ https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=12797
+ https://gitlab.freedesktop.org/poppler/poppler/commit/b54e1fc3e0d2600621a28d50f9f085b9e38619c2
Notes
CVE-2019-7314 created at 25 Sep 2019 19:31:40
Severity
+ Critical
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ liblivemedia in Live555 before 2019.02.03 mishandles the termination of an RTSP stream after RTP/RTCP-over-RTSP has been set up, which could lead to a use-after-free error that causes the RTSP server to crash (Segmentation fault) or possibly have unspecified other impact.
References
+ http://lists.live555.com/pipermail/live-devel/2019-February/021143.html
+ http://www.live555.com/liveMedia/public/changelog.txt
Notes