Product:

Ontap_select_deploy_administration_utility

(Netapp)
Repositories https://github.com/torvalds/linux
#Vulnerabilities 157
Date Id Summary Products Score Patch Annotated
2021-06-02 CVE-2021-3520 There's a flaw in lz4. An attacker who submits a crafted file to an application linked with lz4 may be able to trigger an integer overflow, leading to calling of memmove() on a negative size argument, causing an out-of-bounds write and/or a crash. The greatest impact of this flaw is to availability, with some potential impact to confidentiality and integrity as well. Lz4, Active_iq_unified_manager, Cloud_backup, Ontap_select_deploy_administration_utility, Communications_cloud_native_core_policy, Zfs_storage_appliance_kit, Universal_forwarder 9.8
2021-06-02 CVE-2021-3530 A flaw was discovered in GNU libiberty within demangle_path() in rust-demangle.c, as distributed in GNU Binutils version 2.36. A crafted symbol can cause stack memory to be exhausted leading to a crash. Binutils, Ontap_select_deploy_administration_utility 7.5
2021-07-09 CVE-2021-3541 A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service. Active_iq_unified_manager, Cloud_backup, Clustered_data_ontap, Clustered_data_ontap_antivirus_connector, H300e_firmware, H300s_firmware, H410c_firmware, H410s_firmware, H500e_firmware, H500s_firmware, H700e_firmware, H700s_firmware, Manageability_software_development_kit, Ontap_select_deploy_administration_utility, Smi\-S_provider, Snapdrive, Zfs_storage_appliance_kit, Jboss_core_services, Libxml2 6.5
2021-07-22 CVE-2021-35942 The wordexp function in the GNU C Library (aka glibc) through 2.33 may crash or read arbitrary memory in parse_param (in posix/wordexp.c) when called with an untrusted, crafted pattern, potentially resulting in a denial of service or disclosure of information. This occurs because atoi was used but strtoul should have been used to ensure correct calculations. Debian_linux, Glibc, Active_iq_unified_manager, E\-Series_santricity_os_controller, Hci_management_node, Ontap_select_deploy_administration_utility, Solidfire 9.1
2021-07-30 CVE-2021-37600 An integer overflow in util-linux through 2.37.1 can potentially cause a buffer overflow if an attacker were able to use system resources in a way that leads to a large number in the /proc/sysvipc/sem file. NOTE: this is unexploitable in GNU C Library environments, and possibly in all realistic environments. Util\-Linux, Ontap_select_deploy_administration_utility 5.5
2021-08-05 CVE-2021-3580 A flaw was found in the way nettle's RSA decryption functions handled specially crafted ciphertext. An attacker could use this flaw to provide a manipulated ciphertext leading to application crash and denial of service. Debian_linux, Ontap_select_deploy_administration_utility, Nettle, Enterprise_linux 7.5
2021-09-06 CVE-2021-3770 vim is vulnerable to Heap-based Buffer Overflow Fedora, Ontap_select_deploy_administration_utility, Vim 7.8
2021-09-09 CVE-2020-19144 Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the 'in _TIFFmemcpy' funtion in the component 'tif_unix.c'. Debian_linux, Ontap_select_deploy_administration_utility, Libtiff 6.5
2021-09-15 CVE-2021-3778 vim is vulnerable to Heap-based Buffer Overflow Debian_linux, Fedora, Ontap_select_deploy_administration_utility, Vim 7.8
2021-09-15 CVE-2021-3796 vim is vulnerable to Use After Free Debian_linux, Fedora, Ontap_select_deploy_administration_utility, Vim 7.3