Skip to content

0xdea/advisories

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

62 Commits
2003-01-openssh.txt
2003-01-openssh.txt
 
 
2019-01-cde-dtprintinfo.txt
2019-01-cde-dtprintinfo.txt
 
 
2019-02-solaris-xscreensaver.txt
2019-02-solaris-xscreensaver.txt
 
 
2020-01-solaris-xlock.txt
2020-01-solaris-xlock.txt
 
 
2020-02-cde-dtsession.txt
2020-02-cde-dtsession.txt
 
 
2020-05-cde-sdtcm_convert.txt
2020-05-cde-sdtcm_convert.txt
 
 
2020-06-cde-libDtSvc.txt
2020-06-cde-libDtSvc.txt
 
 
2020-07-solaris-whodo-w.txt
2020-07-solaris-whodo-w.txt
 
 
HNS-2022-01-dtprintinfo.txt
HNS-2022-01-dtprintinfo.txt
 
 
HNS-2022-02-zyxel-zysh.txt
HNS-2022-02-zyxel-zysh.txt
 
 
HNS-2023-03-zephyr.txt
HNS-2023-03-zephyr.txt
 
 
HNS-2023-04-tinydir.txt
HNS-2023-04-tinydir.txt
 
 
HNS-2024-05-rt-thread.txt
HNS-2024-05-rt-thread.txt
 
 
HNS-2024-06-threadx.txt
HNS-2024-06-threadx.txt
 
 
HNS-2024-07-riot.txt
HNS-2024-07-riot.txt
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

advisories

"Testing can prove the presence of bugs, but not their absence."

-- Edsger W. Dijkstra

Linux

  • CVE-2006-1242. Linux kernel IP ID information disclosure weakness.

OpenSSH

  • 2003-01-openssh. OpenSSH/PAM delay information disclosure vulnerability (CVE-2003-0190).
  • CVE-2006-5229. OpenSSH information disclosure via timing leak.

X.Org

  • CVE-2022-46285. Infinite loop on unclosed comments handling XPM files in libXpm.

Azure

  • CVE-2024-25110. Integer wraparound vulnerability in Azure IoT Platform Device SDK.
  • CVE-2024-29195. Integer wraparound vulnerability in Azure C SDK.

Solaris

Zyxel

Zephyr

  • HNS-2023-03-zephyr. Multiple vulnerabilities in Zephyr RTOS (CVE-2023-3725, CVE-2023-4257, CVE-2023-4259, CVE-2023-4260, CVE-2023-4261, CVE-2023-4262, CVE-2023-4263, CVE-2023-4264, CVE-2023-4265, CVE-2023-5139, CVE-2023-5184, CVE-2023-5753).

RT-Thread

  • HNS-2024-05-rt-thread. Multiple vulnerabilities in RT-Thread RTOS (CVE-2024-24334, CVE-2024-24335, CVE-2024-25388, CVE-2024-25389, CVE-2024-25390, CVE-2024-25391, CVE-2024-25392, CVE-2024-25393, CVE-2024-25394, CVE-2024-25395).

ThreadX

  • HNS-2024-06-threadx. Multiple vulnerabilities in Eclipse ThreadX (CVE-2024-2212, CVE-2024-2214, CVE-2024-2452).

RIOT

  • HNS-2024-07-riot. Multiple vulnerabilities in RIOT OS (CVE-2024-31225, CVE-2024-32017, CVE-2024-32018).

Others

  • smbfs/umount. Buffer overflow in Illumos smbfs/umount.
  • dhclient. Format string bug in ISC DHCP configuration file handling.
  • coturn. Security issues in the Coturn TURN server.
  • FreeRTOS-Plus-TCP. Security issues in FreeRTOS (uncredited).
  • lwIP/httpclient. Integer wraparound and heap buffer overflow in lwIP (uncredited).
  • lwIP/makefsdata. Integer underflow and static buffer overflow (uncredited).
  • HNS-2023-04-tinydir. Buffer overflow vulnerabilities with long path names in TinyDir (CVE-2023-49287).

About

A collection of my public security advisories.

0xdeadbeef.info

Topics

vulnerability cve advisory

Resources

Readme

License

MIT license
Activity

Stars

23 stars

Watchers

6 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published