[Bug 1848117] CVE-2020-14415 QEMU: division by zero in oss_write() in audio/ossaudio.c

Author:
Category Operating Systems



Statement: Open Sound System (OSS) is deprecated in favor of ALSA and disabled in Red Hat products. This flaw did not affect the following versions of QEMU as they did not include support for OSS: * `qemu-kvm-ma` as shipped with Red Hat Enterprise Linux 7. * `qemu-kvm-rhev` as shipped with Red Hat Virtualization and Red Hat OpenStack.



Source link

Write a comment:
*

Your email address will not be published.

RELATED STORIES
vamtam-theme-circle-post
Category Operating Systems

Zoom Patches Zero-Day Vulnerability in Windows 7

July 10, 2020
The flaw also affects older versions of the operating system, even if they’re fully patched....
Read More
Category Operating Systems

CVE-2020-5764:安卓MX Player播放器路径穿越和代码执行漏洞

July 10, 2020
0x00 绪论. MX Player是一个Android应用程序,可以在Google Play商店中找到它,下载量超过5亿。 虽然这是一个视频播放器应用,但我们不会使用畸形的视频文件对其进行攻击。我攻击的是它的视频共享功能。视频共享功能可以在手机间共享文件,其中有路径遍历漏洞(CVE-2020–5764)。我将展示如何找到该漏洞以及如何最终获得(对于某些设备)代码执行。幸运的是,由于我们已经向开发人员披露了此问题,所以问题已在v1.24.5中进行了修补,因此,如果你是MX Player用户,强烈建议你将其更新到此版本或更高版本。 0x01 MX Player发送者/接收者关系. Source link
Read More
Category Operating Systems

CVE-2020-7457 FreeBSD 安全漏洞 -漏洞情报、漏洞详情、安全漏洞、CVE – 安全客,安全资讯平台

July 10, 2020
来源:MISC 链接:https://security.FreeBSD.org/advisories/FreeBSD-SA-20:20.ipv6.asc 来源:www.auscert.org.au 链接:https://www.auscert.org.au/bulletins/ESB-2020.2337/ 来源:vigilance.fr 链接:https://vigilance.fr/vulnerability/FreeBSD-privilege-escalation-via-IPv6-Socket-Option-32766 来源:nvd.nist.gov 链接:https://nvd.nist.gov/vuln/detail/CVE-2020-7457 Source link
Read More
vamtam-theme-circle-post
Category Operating Systems

Zügige Updates fürs Smartphone: Google erklärt verbesserte Android-Updates

July 10, 2020
Android 10 lief fünf Monate nach dem Start schon auf 100 Millionen Smartphones und Tablets,...
Read More
vamtam-theme-circle-post
Category Operating Systems

Zoom Zero-Day Flaw Allegedly Allows Full Takeover of Windows PCs – HOTforSecurity

July 10, 2020
Video conferencing software Zoom is again in the spotlight over an alleged critical vulnerability that...
Read More
Category Operating Systems

Google本周发布了2020年7月安全补丁,修复Android中的多个超危远程代码执行漏洞。

July 10, 2020
Google本周发布了2020年7月安全补丁,修复Android中的多个超危远程代码执行漏洞,包括存在于media framework组件和system组件中的三个漏洞。 最严重的漏洞影响system组件,攻击者可借助特制的文件利用该漏洞以高权限执行代码。事实上,Google修复了system组件中的两个超危漏洞,一个影响Android 8.0及之后版本(CVE-2020-0224),另一个仅影响Android 10(CVE-2020-0225)。 System组件中修复的第三个漏洞是一个高危信息泄露漏洞(CVE-2020-0107),仅影响Android 10。…. Source link
Read More
Category Operating Systems

CVE-2020-7458 FreeBSD 安全漏洞 -漏洞情报、漏洞详情、安全漏洞、CVE – 安全客,安全资讯平台

July 10, 2020
来源:MISC 链接:https://security.FreeBSD.org/advisories/FreeBSD-SA-20:18.posix_spawnp.asc 来源:vigilance.fr 链接:https://vigilance.fr/vulnerability/FreeBSD-buffer-overflow-via-posix-spawnp-32765 来源:nvd.nist.gov 链接:https://nvd.nist.gov/vuln/detail/CVE-2020-7458 Source link
Read More
vamtam-theme-circle-post
Category Operating Systems

Android 中的特殊攻击面(三)—— 隐蔽的 call 函数

July 10, 2020
作者:heeeeen公众号:OPPO安全应急响应中心 系列阅读:– Android 中的特殊攻击面(一)——邪恶的对话框– Android 中的特殊攻击面(二)——危险的deeplink 0x00 简介 6月,Google在Android AOSP Framework中修复了OPPO子午互联网安全实验室发现的高危提权漏洞CVE-2020-0144 [1] ,这个漏洞允许手机上没有权限的恶意应用以SystemUI 的名义发送任意Activity Intent...
Read More
vamtam-theme-circle-post
Category Operating Systems

Nvidia corrige une vulnérabilité du logiciel GeForce Experience

July 10, 2020
Nvidia a publié une mise à jour de sécurité qui corrige une vulnérabilité dans GeForce...
Read More
vamtam-theme-circle-post
Category Operating Systems

NVD – CVE-2020-8019

July 9, 2020
CVE-2020-8019 Detail Current Description A UNIX Symbolic Link (Symlink) Following...
Read More
digitpol
scale
element-support
Call Center
+31 55 8448040
element-map
Location

Global

International Cyber Crime Investigation

Digitpol is licensed by the Ministry of Justice: Licence Number POB1557

©Digitpol. All images and content are copyright of Digitpol and can not be used, replicated or reproduced without written permission. 2019.

Privacy  /   Terms and Policy   /   Site map  /   Contact