吉祥寺北口システムが気になった記事をクリップしています。タイトルから元記事にリンクしています。タグは記事タイトルを形態素分析しています。たまにコメントをつけています。

Buffer

• LLVM’s ‘RFC: C Buffer Hardening’ at Google – Google Bug Hunters
  • at(474)
  • Buffer(37)
  • Bug(102)
  • Google(5828)
  • Hardening(5)
  • Hunters(3)
  • LLVM(11)
  • RFC(46)
• CVE-2023-5217 – セキュリティ更新プログラム ガイド – Microsoft – Chromium: CVE-2023-5217 Heap buffer overflow in vp8 encoding in libvpx
  • 2023(1931)
  • 5217(2)
  • Buffer(37)
  • Chromium(153)
  • CVE-(1427)
  • encoding(4)
  • Heap(9)
  • in(2447)
  • libvpx(1)
  • Microsoft(4459)
  • overflow(107)
  • VP(16)
  • ガイド(321)
  • セキュリティ(6542)
  • プログラム(1476)
  • 更新(1480)
• Node.js compatibility for Cloudflare Workers – starting with Async Context Tracking, EventEmitter, Buffer, assert, and util
  • and(3289)
  • assert(2)
  • Async(6)
  • Buffer(37)
  • CloudFlare(573)
  • compatibility(18)
  • Context(11)
  • EventEmitter(2)
  • for(5179)
  • js(227)
  • Node(118)
  • starting(30)
  • tracking(44)
  • util(3)
  • with(1607)
  • workers(135)
• Node.js compatibility for Cloudflare Workers – starting with Async Context Tracking, EventEmitter, Buffer, assert, and util
  • and(3289)
  • assert(2)
  • Async(6)
  • Buffer(37)
  • CloudFlare(573)
  • compatibility(18)
  • Context(11)
  • EventEmitter(2)
  • for(5179)
  • js(227)
  • Node(118)
  • starting(30)
  • tracking(44)
  • util(3)
  • with(1607)
  • workers(135)
• Analysis of FG-IR-22-398 – FortiOS – heap-based buffer overflow in SSLVPNd | Fortinet Blog
  • 22(358)
  • 398(3)
  • Analysis(76)
  • Based(69)
  • Blog(6451)
  • Buffer(37)
  • FG(19)
  • Fortinet(35)
  • FortiOS(24)
  • Heap(9)
  • in(2447)
  • IR(631)
  • of(3341)
  • overflow(107)
  • SSLVPNd(2)
• Buffer overflow in command line unescaping
  • Buffer(37)
  • Command(76)
  • in(2447)
  • LINE(2409)
  • overflow(107)
  • unescaping(1)
• 2145 – gpg: heap buffer overflow in libgcrypt – project-zero
  • 2145(1)
  • Buffer(37)
  • gpg(1)
  • Heap(9)
  • in(2447)
  • Libgcrypt(3)
  • overflow(107)
  • project-zero(8)
• CVE-2021-3156: Heap-Based Buffer Overflow in Sudo (Baron Samedit) | Qualys Security Blog
  • 2021(2113)
  • 3156(3)
  • Baron(1)
  • Blog(6451)
  • Buffer(37)
  • CVE-(1427)
  • heap-based(3)
  • in(2447)
  • overflow(107)
  • qualys(10)
  • Samedit(1)
  • Security(5710)
  • sudo(16)
• 2104 – Windows Kernel cng.sys pool-based buffer overflow in IOCTL 0x390400 – project-zero
  • 2104(1)
  • 390400(1)
  • Buffer(37)
  • CNG(2)
  • in(2447)
  • IOCTL(9)
  • Kernel(80)
  • overflow(107)
  • pool-based(1)
  • project-zero(8)
  • sys(22)
  • Windows(3425)
• VU#174059 – GRUB2 bootloader is vulnerable to buffer overflow
  • 174059(1)
  • bootloader(2)
  • Buffer(37)
  • Grub(6)
  • is(1010)
  • overflow(107)
  • to(3295)
  • VU(109)
  • vulnerable(40)
• VU#782301 – pppd vulnerable to buffer overflow due to a flaw in EAP packet processing
  • 782301(1)
  • Buffer(37)
  • due(48)
  • EAP(9)
  • flaw(22)
  • in(2447)
  • overflow(107)
  • packet(10)
  • pppd(3)
  • Processing(27)
  • to(3295)
  • VU(109)
  • vulnerable(40)
• Buffer overflow when pwfeedback is set in sudoers
  • Buffer(37)
  • in(2447)
  • is(1010)
  • overflow(107)
  • pwfeedback(1)
  • Set(38)
  • sudoers(2)
  • when(84)
• oss-sec: Exim CVE-2019-16928 RCE using a heap-based buffer overflow
  • 16928(2)
  • 2019(1756)
  • Buffer(37)
  • CVE-(1427)
  • Exim(15)
  • heap-based(3)
  • oss-sec(64)
  • overflow(107)
  • RCE(30)
  • using(213)
• oss-sec: [SECURITY ADVISORY] curl: TFTP receive buffer overflow
  • Advisory(250)
  • Buffer(37)
  • cURL(37)
  • oss-sec(64)
  • overflow(107)
  • Receive(6)
  • Security(5710)
  • TFTP(1)
• curl – SMTP send heap buffer overflow
  • Buffer(37)
  • cURL(37)
  • Heap(9)
  • overflow(107)
  • send(24)
  • SMTP(17)
• curl – default protocol drive letter buffer overflow
  • Buffer(37)
  • cURL(37)
  • default(50)
  • drive(138)
  • letter(31)
  • overflow(107)
  • Protocol(58)
• GitHub – edwardz246003/IIS_exploit: Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with “If:
  • 2003(6)
  • 2016(235)
  • 246003(1)
  • 6.0(19)
  • allows(25)
  • Arbitrary(26)
  • As(303)
  • Attackers(12)
  • August(30)
  • beginning(11)
  • Buffer(37)
  • Code(400)
  • edwardz(1)
  • Execute(8)
  • Exploit(79)
  • Exploited(23)
  • Function(20)
  • GitHub(873)
  • Header(13)
  • HTTP(335)
  • If(39)
  • IIS(13)
  • in(2447)
  • INFORMATION(226)
  • Internet(694)
  • July(51)
  • Long(51)
  • Microsoft(4459)
  • or(98)
  • overflow(107)
  • PROPFIND(1)
  • Remote(203)
  • request(43)
  • ScStoragePathFromUrl(1)
  • Server(698)
  • Service(812)
  • Services(6355)
  • the(4365)
  • to(3295)
  • via(72)
  • WebDAV(2)
  • Wild(23)
  • Windows(3425)
  • with(1607)
• Vulnerability Note VU#548487 – BSD libc contains a buffer overflow vulnerability in link_ntoa()
  • 548487(1)
  • BSD(14)
  • Buffer(37)
  • contains(26)
  • in(2447)
  • libc(4)
  • Link(153)
  • Note(304)
  • ntoa(1)
  • overflow(107)
  • VU(109)
  • Vulnerability(515)
• 今年のうちに対応したい、Node.jsのBufferに潜む危険性 – Yahoo! JAPAN Tech Blog
  • Blog(6451)
  • Buffer(37)
  • Japan(8144)
  • js(227)
  • Node(118)
  • tech(780)
  • Yahoo!(2072)
  • うち(171)
  • 今年(309)
  • 危険性(74)
  • 対応(4882)
• Vulnerability Note VU#862384 – libarchive contains a heap-based buffer overflow due to improper input validation
  • Buffer(37)
  • contains(26)
  • due(48)
  • heap-based(3)
  • improper(10)
  • input(13)
  • libarchive(3)
  • Note(304)
  • overflow(107)
  • to(3295)
  • Validation(31)
  • VU(109)
  • Vulnerability(515)
• [ovs-announce] CVE-2016-2074: MPLS buffer overflow vulnerabilities in Open vSwitch
  • Buffer(37)
  • CVE-(1427)
  • in(2447)
  • MPLS(2)
  • Open(594)
  • overflow(107)
  • ovs-announce(2)
  • vSwitch(2)
  • Vulnerabilities(210)
• Vulnerability Note VU#270232 – Quagga bgpd with BGP peers enabled for VPNv4 contains a buffer overflow vulnerability
  • BGP(27)
  • bgpd(2)
  • Buffer(37)
  • contains(26)
  • enabled(20)
  • for(5179)
  • Note(304)
  • overflow(107)
  • peers(1)
  • Quagga(3)
  • VPNv(1)
  • VU(109)
  • Vulnerability(515)
  • with(1607)
• Vulnerability Note VU#485744 – Flexera Software FlexNet Publisher lmgrd contains a buffer overflow vulnerability
  • Buffer(37)
  • contains(26)
  • Flexera(3)
  • FlexNet(2)
  • lmgrd(2)
  • Note(304)
  • overflow(107)
  • Publisher(16)
  • Software(386)
  • VU(109)
  • Vulnerability(515)
• Google Online Security Blog: CVE-2015-7547: glibc getaddrinfo stack-based buffer overflow
  • Blog(6451)
  • Buffer(37)
  • CVE-(1427)
  • getaddrinfo(3)
  • glibc(16)
  • Google(5828)
  • ONLINE(554)
  • overflow(107)
  • Security(5710)
  • stack-based(2)
• Cisco ASA Software IKEv1 and IKEv2 Buffer Overflow Vulnerability
  • and(3289)
  • ASA(9)
  • Buffer(37)
  • Cisco(204)
  • IKEv(6)
  • overflow(107)
  • Software(386)
  • Vulnerability(515)
• Carlos O’Donell – [PATCH] CVE-2015-7547 — glibc getaddrinfo() stack-based buffer overflo
  • Buffer(37)
  • Carlos(1)
  • CVE-(1427)
  • getaddrinfo(3)
  • glibc(16)
  • O'Donell(1)
  • overflo(1)
  • Patch(106)
  • stack-based(2)
• oss-sec: Status of CVE-2015-8126: libpng buffer overflow in png_set_PLTE
  • Buffer(37)
  • CVE-(1427)
  • in(2447)
  • libpng(4)
  • of(3341)
  • oss-sec(64)
  • overflow(107)
  • PLTE(2)
  • PNG(24)
  • Set(38)
  • Status(51)
• oss-sec: CVE request: libpng buffer overflow in png_set_PLTE
  • Buffer(37)
  • CVE-(1427)
  • in(2447)
  • libpng(4)
  • oss-sec(64)
  • overflow(107)
  • PLTE(2)
  • PNG(24)
  • request(43)
  • Set(38)
• oss-sec: Buffer overflow in libxml2
  • Buffer(37)
  • in(2447)
  • libxml(2)
  • oss-sec(64)
  • overflow(107)
• X.Org Security Advisory: CVE-2013-6462: Stack buffer overflow in parsing of BDF font files in libXfont
  • Advisory(250)
  • BDF(2)
  • Buffer(37)
  • CVE-(1427)
  • files(67)
  • font(22)
  • in(2447)
  • libXfont(1)
  • of(3341)
  • org(402)
  • overflow(107)
  • Parsing(12)
  • Security(5710)
  • Stack(107)
• ソーシャルネットワークへの投稿をスケジューリングするBuffer、β段階から好調のBuffer for Businessを正式リリース | TechCrunch Japan
  • Buffer(37)
  • BUSINESS(563)
  • for(5179)
  • Japan(8144)
  • Social(1281)
  • TechCrunch(1148)
  • スケジューリング(13)
  • ネットワーク(1820)
  • リリース(8519)
  • 好調(314)
  • 投稿(733)
  • 正式(1161)
  • 段階(139)
• Security Advisory SA55197 – Apache mod_fcgid "fcgid_header_bucket_read()" Buffer Overflow Vulnerability – Secunia
  • Advisory(250)
  • apache(513)
  • bucket(6)
  • Buffer(37)
  • fcgid(1)
  • Header(13)
  • mod(34)
  • overflow(107)
  • quot(2)
  • read(39)
  • SA(73)
  • Secunia(9)
  • Security(5710)
  • Vulnerability(515)
• cURL – Security Advisory (libcurl URL decode buffer boundary flaw)
  • Advisory(250)
  • boundary(4)
  • Buffer(37)
  • cURL(37)
  • decode(2)
  • flaw(22)
  • libcurl(2)
  • Security(5710)
  • URL(188)
• ソーシャルネットワークにスケジュール投稿を行うBuffer、月刊売り上げが10万ドルとなり、利用者数60万を達成 | TechCrunch Japan
  • Buffer(37)
  • Japan(8144)
  • Social(1281)
  • TechCrunch(1148)
  • スケジュール(98)
  • ネットワーク(1820)
  • 万(749)
  • 利用者(531)
  • 売り上げ(30)
  • 投稿(733)
  • 数(72)
  • 月刊(32)
  • 達成(287)
• Security Advisory SA51692 – VLC Media Player HTML Subtitle Parsing Buffer Overflow Vulnerabilities – Secunia
  • Advisory(250)
  • Buffer(37)
  • HTML(217)
  • Media(292)
  • overflow(107)
  • Parsing(12)
  • Player(261)
  • SA(73)
  • Secunia(9)
  • Security(5710)
  • Subtitle(3)
  • VLC(21)
  • Vulnerabilities(210)
• V-049: RealPlayer Buffer Overflow and Invalid Pointer Flaw Let Remote Users Execute Arbitrary Code | Department of Energy
  • and(3289)
  • Arbitrary(26)
  • Buffer(37)
  • Code(400)
  • Department(91)
  • Energy(93)
  • Execute(8)
  • flaw(22)
  • Invalid(2)
  • Let(32)
  • of(3341)
  • overflow(107)
  • Pointer(6)
  • RealPlayer(6)
  • Remote(203)
  • Users(195)
  • V-(10)
• ISC Diary | Zero Day MySQL Buffer Overflow
  • Buffer(37)
  • Day(167)
  • diary(85)
  • ISC(111)
  • MySQL(182)
  • overflow(107)
  • Zero(252)