» 2020 » 11월

, aka ‘Azure Sphere Unsigned Code Execution Vulnerability’. This CVE ID is unique from CVE-2020-16970, CVE-2020-16982, CVE-2020-16984, CVE-2020-16987, CVE-2020-16991.

Source: CVE-2020-16994

CVE-2020-16991

Posted on 2020년 11월 11일2020년 11월 11일 by admin

CVE-2020-16991

, aka ‘Azure Sphere Unsigned Code Execution Vulnerability’. This CVE ID is unique from CVE-2020-16970, CVE-2020-16982, CVE-2020-16984, CVE-2020-16987, CVE-2020-16994.

Source: CVE-2020-16991

CVE-2020-16992

Posted on 2020년 11월 11일2020년 11월 11일 by admin

CVE-2020-16992

, aka ‘Azure Sphere Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2020-16981, CVE-2020-16988, CVE-2020-16989, CVE-2020-16993.

Source: CVE-2020-16992

CVE-2020-16990

Posted on 2020년 11월 11일2020년 11월 11일 by admin

CVE-2020-16990

, aka ‘Azure Sphere Information Disclosure Vulnerability’. This CVE ID is unique from CVE-2020-16985.

Source: CVE-2020-16990

CVE-2020-16127

Posted on 2020년 11월 11일2020년 11월 11일 by admin

CVE-2020-16127

An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, would perform unbounded read operations on user-controlled ~/.pam_environment files, allowing an infinite loop if /dev/zero is symlinked to this location.

Source: CVE-2020-16127

CVE-2020-16126

Posted on 2020년 11월 11일2020년 11월 11일 by admin

CVE-2020-16126

An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, improperly dropped the ruid, allowing untrusted users to send signals to AccountService, thus stopping it from handling D-Bus messages in a timely fashion.

Source: CVE-2020-16126