The Linux kernel 6.3 has a use-after-free in iopt_unmap_iova_range in drivers/iommu/iommufd/io_pagetable.c.
It could allow a local attacker to crash the system due to a race condition. A use-after-free was found in bq24190_remove in drivers/power/supply/bq24190_charger.c. This vulnerability is caused by improper data tracing, and an attacker could exploit it to cause a denial of service attack.ĬPython v3.12.0 alpha 7 was discovered to contain a heap use-after-free via the function ascii_decode at /Objects/unicodeobject.c.Īn issue was discovered in the Linux kernel before 6.2.9.
The vulnerability can be triggered by calling the function nni_mqtt_msg_get_publish_property() in the file mqtt_msg.c. Users unable to upgrade should avoid exposing their development server to the internet.Ī use-after-free vulnerability exists in NanoMQ 0.17.2. A patch has been introduced in and which mitigates the issue. It should be noted that by default `gatsby develop` is only accessible via the localhost `127.0.0.1`, and one would need to intentionally expose the server to other interfaces to exploit this vulnerability by using server options such as `-host 0.0.0.0`, `-H 0.0.0.0`, or the `GATSBY_HOST=0.0.0.0` environment variable. Any file in scope of the development server could potentially be exposed. The Gatsby framework prior to versions 4.25.7 and 5.9.1 contain a Local File Inclusion vulnerability in the `_file-code-frame` and `_original-stack-frame` paths, exposed when running the Gatsby develop server (`gatsby develop`). Gatsby is a free and open source framework based on React. An attacker could trick user to open a specially crafted file to convert, triggering an heap-use-after-free write error, allowing an application to crash, resulting in a denial of service. NanoMQ 0.16.5 is vulnerable to heap-use-after-free in the nano_ctx_send function of nmq_mqtt.c.Ī heap use after free issue was discovered in ImageMagick's ReplaceXmpValue() function in MagickCore/profile.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted XLSX file. Xlsxio v0.1.2 to v0.2.34 was discovered to contain a free of uninitialized pointer in the xlsxioread_sheetlist_close() function. A double free or use after free could occur after SSL_clear in OpenBSD 7.2 before errata 026 and 7.3 before errata 004, and in LibreSSL before 3.6.3 and 3.7.x before 3.7.3.
0 kommentar(er)
