Buffer Overflow

Two QEMU Vulnerabilities Fixed in Ubuntu 24.04 LTS

| | Buffer Overflow, KernelCare Enterprise, linux live patching, live patching, out-of-bounds memory access, QEMU security, QEMU security update, QEMU vulnerabilities, qemucare, QEMUCare live patching solution, security patches, Ubuntu 24.04, ubuntu 24.04 security, Ubuntu 24.04 vulnerabilities, Ubuntu Security Fixes, Ubuntu Security Updates
Recently, two memory-related flaws were discovered in QEMU, a popular open-source machine emulator and virtualizer. The vulnerabilities, identified as CVE-2024-26327 and CVE-2024-26328, affect QEMU versions 7.1.0 through 8.2.1. Both vulnerabilities stem from ...
TuxCare

CISA Report: Memory Safety Risks in Critical Open Source Projects

| | Buffer Overflow, cisa, CISA Report, CISA Research, cybersecurity defense strategies, enterprise security, Linux & Open Source News, memory corruption, Memory Safety, Memory Security, memory-safe languages, memory-unsafe languages, Open Source Projects, Open Source Threats
Open-source projects are the cornerstone of modern software infrastructure, powering everything from web browsers to mobile apps and cloud services. These projects, contributed to and maintained by communities worldwide, enable innovation and ...
TuxCare

QNAP Patches: Medium Severity Flaws in OTS QuTS Fixed

| | Address Space Layout Randomization (ASLR), Buffer Overflow, Cybersecurity, Cybersecurity News, data protection, Double Free Vulnerability, Firmware Updates, Incorrect Permission Assignment, Medium Severity Flaws, NAS Security, network attached storage, QNAP, QTS, QuTS Hero, security best practices, vulnerability patching, WatchTowr Labs
In recent updates, QNAP, a prominent Taiwanese company specializing in network-attached storage (NAS) solutions, has diligently addressed several vulnerabilities within its QTS and QuTS hero operating systems. These QNAP patches are crucial ...
TuxCare
The Google WebP logo

Patch EVERYTHING: Widely Used ‘WebP’ Code has Critical Bug

| | Buffer Overflow, buffer overflow attack, Buffer Overflow Vulnerabilities, buffer overflows, Chrome, Chromium, edge, Electron, Exploitable Vulnerabilities, Firefox, google, Heap Overflow, libwebp, Open Source and Software Supply Chain Risks, open source software supply chain, open source software supply chain security, opera, SB Blogwatch, secure software supply chain, slack, software supply chain, software supply chain hygiene, software supply chain risk, Software Supply Chain risks, software supply chain security, Software Supply Chain Security Risks, thunderbird, WebP
WebP FAIL. Critical vuln in libwebp: Go get updates to Chrome, Firefox, Edge, Slack and more ...
Security Boulevard
business smb risk

5 Buffer Overflow Vulnerabilities in Popular Apps

| | Buffer Overflow, Exim, macos, Malware, Nvidia, security, VPN, WhatsApp
The 2019 CWE Top 25 Most Dangerous Software Errors lists improper restriction of operations within the bounds of a memory buffer as the most critical weakness that leads to a dangerous vulnerability ...
Security Boulevard

Ethical hacking: Buffer overflow

| | Buffer Overflow
Introduction to buffer overflows When taking external input, an application needs to allocate memory to store that input. Many high-level programming languages will do this behind the scenes, but... Go on to ...
Infosec Resources
EH-Net - Bango - From Dev to InfoSec Part 4: Buffer Overflows Made My Brain Hurt - Arnold!

From Dev to InfoSec Part 4: Buffer Overflows Made My Brain Hurt

| | assembly, Bango, Buffer Overflow, highlight, immunity, programming, python, Tutorial
While I’ve written a lot of code in my time, I don’t think I’ve ever firmly appreciated how complex it can be to write secure code. We go about our lives taking ...
The Ethical Hacker Network

Mitigating Buffer Overflow Attacks in Linux/Unix

| | Buffer Overflow, General Security, Linux
A buffer overflow is the most common and the most serious threat to Linux/Unix operating systems. Buffer overflows occur when code running in unprotected memory in a buffer overwrites memory in an ...
SecurityOrb.com
NVR Software Flaw Threatens Thousands of Devices

NVR Software Flaw Threatens Thousands of Devices

| | android, Buffer Overflow, IoT botnet, network video recorder, Privilege Escalation, Remote Code Execution, video surveillance
A network video recorder (NVR) application used by organizations from around the world to control surveillance cameras contains a critical vulnerability that could expose devices to hacking. The flaw was found by ...
Security Boulevard

Three Categories of Buffer Overflow in the JRE

| | Buffer Overflow, gethostbyname, Java, JRockit, MS06-041
Some people think that writing code in Java is a silver bullet against implementation flaws such as buffer overflows. The truth is a little murky. Certainly, there is no provision for overflows ...
aut disce, aut discede