Microsoft Skype v7.2, v7.35 & v7.36 - Stack Buffer Overflow Vulnerability

2017-06-26 Thread Vulnerability Lab
Document Title: === Microsoft Skype v7.2, v7.35 & v7.36 - Stack Buffer Overflow Vulnerability References (Source): https://www.vulnerability-lab.com/get_content.php?id=2071 MSRC ID: 38778 TRK ID: 0461000724 Vulnerability Magazine: https://www.vulnerability-db.

DefenseCode Security Advisory: IBM DB2 Command Line Processor Buffer Overflow

2017-06-26 Thread DefenseCode
DefenseCode Security Advisory IBM DB2 Command Line Processor Buffer Overflow Advisory ID: DC-2017-04-002 Advisory Title: IBM DB2 Command Line Processor Buffer Overflow Advisory URL: http://www.defensecode.com/advisories/IBM_DB2_Command_Line_Processor_Buffer_Overflow.pdf Software:

[CVE-2017-8831] Double-Fetch Vulnerability in Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c

2017-06-26 Thread wpengfeinudt
Hi all, I found this double-fetch vulnerability when I was doing my research on double fetch issue analysis, and I’d like to make an announcement here. This was found in Linux kernel file Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c. The kernel (driver) use memcpy_fromio() to fetch tw