The userfaultfd implementation in the Linux kernel before 4.19.7 mishandles access control for certain UFFDIO_ ioctl calls, as demonstrated by allowing local users to write data into holes in a tmpfs file (if the user has read-only access to that file, and that file contains holes), related to fs/userfaultfd.c and mm/userfaultfd.c.
cPanel before 68.0.15 does not preserve permissions for local backup transport (SEC-330).
A buffer overflow in the fribidi_get_par_embedding_levels_ex() function in lib/fribidi-bidi.c of GNU FriBidi through 1.0.7 allows an attacker to cause a denial of service or possibly execute arbitrary code by delivering crafted text content to a user, when this content is then rendered by an application that uses FriBidi for text layout calculations. Examples include any GNOME or GTK+ based application that uses Pango for text layout, as this internally uses FriBidi for bidirectional text layout. For…
Отпариватель Kitfort КТ-9122 позволяет быстро прогладить любые вещи и изделия из текстиля даже со сложной текстурой, которые обычно не гладят. Кроме глажки и отпаривания он обрабатывает вещи мощной струей горячего пара, проводя чистку и дезинфекцию. Отпариватель вертикальный Kitfort КТ-9122 белый в наличиивозможна доставка. Цена: 18397.00 ₽ КУПИТЬ