Ontap_select_deploy_administration_utility - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Ontap_select_deploy_administration_utility
(Netapp)

Repositories	https://github.com/torvalds/linux
#Vulnerabilities	165

Date	Id	Summary	Products	Score	Patch	Annotated
2021-07-30	CVE-2021-37600	An integer overflow in util-linux through 2.37.1 can potentially cause a buffer overflow if an attacker were able to use system resources in a way that leads to a large number in the /proc/sysvipc/sem file. NOTE: this is unexploitable in GNU C Library environments, and possibly in all realistic environments.	Util\-Linux, Ontap_select_deploy_administration_utility	5.5
2021-08-05	CVE-2021-3580	A flaw was found in the way nettle's RSA decryption functions handled specially crafted ciphertext. An attacker could use this flaw to provide a manipulated ciphertext leading to application crash and denial of service.	Debian_linux, Ontap_select_deploy_administration_utility, Nettle, Enterprise_linux	7.5
2021-09-06	CVE-2021-3770	vim is vulnerable to Heap-based Buffer Overflow	Fedora, Ontap_select_deploy_administration_utility, Vim	7.8
2021-09-09	CVE-2020-19144	Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the 'in _TIFFmemcpy' funtion in the component 'tif_unix.c'.	Debian_linux, Ontap_select_deploy_administration_utility, Libtiff	6.5
2021-09-15	CVE-2021-3778	vim is vulnerable to Heap-based Buffer Overflow	Debian_linux, Fedora, Ontap_select_deploy_administration_utility, Vim	7.8
2021-09-15	CVE-2021-3796	vim is vulnerable to Use After Free	Debian_linux, Fedora, Ontap_select_deploy_administration_utility, Vim	7.3
2021-09-26	CVE-2021-41617	sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.	Fedora, Active_iq_unified_manager, Aff_500f_firmware, Aff_a250_firmware, Clustered_data_ontap, Hci_management_node, Ontap_select_deploy_administration_utility, Solidfire, Openssh, Http_server, Zfs_storage_appliance_kit, Starwind_virtual_san	7.0
2021-10-12	CVE-2021-3671	A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authenticated user could use this flaw to crash the samba server.	Debian_linux, Management_services_for_element_software, Management_services_for_netapp_hci, Ontap_select_deploy_administration_utility, Samba	6.5
2021-12-14	CVE-2021-4044	Internally libssl in OpenSSL calls X509_verify_cert() on the client side to verify a certificate supplied by a server. That function may return a negative return value to indicate an internal error (for example out of memory). Such a negative return value is mishandled by OpenSSL and will cause an IO function (such as SSL_connect() or SSL_do_handshake()) to not indicate success and a subsequent call to SSL_get_error() to return the value SSL_ERROR_WANT_RETRY_VERIFY. This return value is only...	500f_firmware, A250_firmware, Cloud_backup, E\-Series_performance_analyzer, H300e_firmware, H300s_firmware, H410c_firmware, H410s_firmware, H500e_firmware, H500s_firmware, H700e_firmware, H700s_firmware, Ontap_select_deploy_administration_utility, Snapcenter, Node\.js, Openssl	7.5
2021-12-15	CVE-2021-45078	stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact, as demonstrated by an out-of-bounds write. NOTE: this issue exists because of an incorrect fix for CVE-2018-12699.	Debian_linux, Fedora, Binutils, Ontap_select_deploy_administration_utility, Enterprise_linux	7.8