WolfSSL 4.1.0 CVE-2019-18840 Heap Based Buffer Overflow

Description WolfSSL in versions 4.1.0 and 4.2.0 incorrectly handles X.509 certificates leading to a heap-buffer overflow inside the DecodedCert structure, overwriting a NULL pointer and as a result crash during memory deallocation.This vulnerability affects both client and server in two supported protocols: TLS and DTLS. During processing of a crafted certificate, WolfSSL incorrectly handles the […]

Read More

NVIDIA Windows GPU CVE-2019-5691 Escalation of Privileges

Description NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which a NULL pointer is dereferenced, which may lead to denial of service or escalation of privileges. Security Updates for NVIDIA GPU Display Driver The following table lists the NVIDIA software products affected, versions affected, and the updated […]

Read More

NVIDIA Windows GPU CVE-2019-5690 Escalation of Privileges

Description NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the size of an input buffer is not validated, which may lead to denial of service or escalation of privileges. Security Updates for NVIDIA GPU Display Driver The following table lists the NVIDIA software products affected, versions […]

Read More

NVIDIA GeForce Experience CVE‑2019‑5689 – Code Execution

Description NVIDIA GeForce Experience, all versions prior to 3.20.1, contains a vulnerability in the Downloader component in which a user with local system access can craft input that may allow malicious files to be downloaded and saved. This behavior may lead to code execution, denial of service, or information disclosure. Security Updates The following table […]

Read More

Chrome ite Isolation bypass disclosure via Payment

DETAILS The Payment Handler API allows web applications to handle requests for payments on behalf of users.A payment handler is essentially a service worker that handles `PaymentRequestEvent`. An invokedhandler may need to display information about itself or request user input. In that case, it maycall `PaymentRequestEvent::openWindow` to open a web page inside the payment request […]

Read More