[Forgot Password]
Login  Register Subscribe

25354

 
 

132811

 
 

144584

 
 

909

 
 

116218

 
 

156

 
 
Paid content will be excluded from the download.

Filter
Matches : 116220 Download | Alert*

Mozilla Firefox 77 : When browsing a document hosted on an IP address, an attacker could insert certain characters to flip domain and path information in the address bar.

Mozilla Firefox 77 : Mozilla Developer Nicolas Silva found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the user, but not observable from web content.

Mozilla Firefox 77 and Mozilla Firefox ESR 68.9 : Mozilla Developer Iain Ireland discovered a missing type check during unboxed objects removal, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code.

Mozilla Firefox 77 and Mozilla Firefox ESR 68.9 : When browsing a malicious page, a race condition in our SharedWorkerService could occur and lead to a potentially exploitable crash.

Mozilla Firefox 77 and Mozilla Firefox ESR 68.9 : NSS has shown timing differences when performing DSA signatures, which was exploitable and could eventually leak private keys.

Docker EE for Windows is installed

The host is installed with Docker 19.03.x before 19.03.1 and is prone to a code injection vulnerability. A flaw is present in the application, which fails to handle a library loading issue in nsswitch facility. Successful exploitation could allow attackers to obtain sensitive information.

The host is installed with Docker CE before 18.09.8 and Docker EE before 17.06.2-ee-23, 18.x before 18.03.1-ee-10 and 18.09.x before 18.09.8 and and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle logs in debug mode during redeployment of stacks. Successful exploitation could allow attackers to obtain sensitive information.

The host is installed with Docker before 18.09.2 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle a file-descriptor. Successful exploitation could allow attackers to overwrite the host runc binary and gain root access.

The host is installed with Docker before 19.03.11 and is prone to an address spoofing vulnerability. A flaw is present in the application, which fails to handle crafted IPv6 router advertisements via CAP_NET_RAW. Successful exploitation could allow attackers to obtain sensitive information or cause a denial of service.


Pages:      Start    1    2    3    4    5    6    7    8    9    10    11    12    13    14    ..   11621

© SecPod Technologies