** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as problematic, has been found in Replify-Messenger 1.0 on Android. This issue affects some unknown processing of the file androidmanifest.xml of the component Backup File Handler. The manipulation leads to exposure of backup file to an unauthorized control sphere. It is possible to launch the attack on the physical device. The exploit has been disclosed to the public and may be used. The identifier VDB-258869 was assigned to this vulnerability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: The vendor was contacted early and responded very quickly. He does not intend to maintain the app anymore and will revoke the availability in the Google Play Store.

netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /3g/menu.php.

netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_user_login.php.

netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/config_ISCGroupTimePolicy.php.

In the Linux kernel, the following vulnerability has been resolved: Fix memory leak in posix_clock_open() If the clk ops.open() function returns an error, we don't release the pccontext we allocated for this clock. Re-organize the code slightly to make it all more obvious.

Memory corruption while redirecting log file to any file location with any file name.

Memory corruption in Kernel while handling GPU operations.

Memory corruption while allocating memory for graphics.

Memory corruption when there is failed unmap operation in GPU.

Memory corruption while processing Codec2 during v13k decoder pitch synthesis.

Transient DOS while decoding the ToBeSignedMessage in Automotive Telematics.

Transient DOS while decoding message of size that exceeds the available system memory.

Transient DOS while decoding an ASN.1 OER message containing a SEQUENCE of unknown extensions.

Memory corruption in HLOS while running kernel address sanitizers (syzkaller) on tmecom with DEBUG_FS enabled.

Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.

Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration command.

Transient DOS while processing DL NAS TRANSPORT message with payload length 0.

Transient DOS while processing DL NAS Transport message when message ID is not defined in the 3GPP specification.

Transient DOS while processing SMS container of non-standard size received in DL NAS transport in NR.

Memory corruption while processing finish_sign command to pass a rsp buffer.