Acceptance of some invalid Transfer-Encoding headers in the HTTP/1 client in net/http before Go 1.17.12 and Go 1.18.4 allows HTTP request smuggling if combined with…

Execution unit scheduler contention may lead to a side channel vulnerability found on AMD CPU microarchitectures codenamed “Zen 1â€�, “Zen 2â€� and “Zen 3â€� that…

In Task.java, there is a possible escalation of privilege due to a confused deputy. This could lead to local escalation of privilege with no additional…

The My HUAWEI app has a defect in the design. Successful exploitation of this vulnerability may affect data confidentiality. Zafiyet ile ilgili Genel Bilgi, Etki…

The video framework has the memory overwriting vulnerability caused by addition overflow. Successful exploitation of this vulnerability may affect the availability. Zafiyet ile ilgili Genel…

Vulnerability of writing data to an arbitrary address in the HW_KEYMASTER module. Successful exploitation of this vulnerability may affect confidentiality. Zafiyet ile ilgili Genel Bilgi,…

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for…

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for…

The th_read() function doesn’t free a variable t->th_buf.gnu_longlink after allocating memory, which may cause a memory leak. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri…

The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory, which may cause a memory leak. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri…