The exact cause of this issue is the function `httpClose(con->http)` being called in `scheduler/client.c`. This is a use-after-free bug that impacts the entire cupsd process.
Starting in version 2.0.0 and prior to version 2.4.6, CUPS logs data of free memory to the logging service AFTER the connection has been closed, when it should have logged the data right before. OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. Users should upgrade to version 10.0.8 to receive a patch. Starting in version 9.4.0 and prior to version 10.0.8, a malicious link can be crafted by an unauthenticated user that can exploit a reflected XSS in case any authenticated user opens the crafted link. GLPI is a free asset and IT management software package. This vulnerability affects Firefox addrs object, potentially leading to a denial of service. This resulted in a potentially exploitable condition when the reference to that object was later reused. Hnswlib 0.7.0 has a double free in init_index when the M argument is a large integer.Ī use-after-free condition existed in `NotifyOnHistoryReload` where a `LoadingSessionHistoryEntry` object was freed and a reference to that object remained. A crafted UDF filesystem image causes a use-after-free write operation in the udf_put_super and udf_close_lvid functions in fs/udf/super.c. An issue was discovered in the Linux kernel through 6.4.2.
0 kommentar(er)
