Monthly Archives: June 2015
US Net Neutrality Rules To Go Ahead
Europol Op Crushes Phiendish Global Phishing Ring
CVE-2015-0737 (firesight_system_software)
Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSIGHT System Software 5.3.1.1 allow remote attackers to inject arbitrary web script or HTML via a crafted (1) GET or (2) POST parameter, aka Bug ID CSCuu11099.
CVE-2015-0771 (ios)
The IKE implementation in the WS-IPSEC-3 service module in Cisco IOS 12.2 on Catalyst 6500 devices allows remote authenticated users to cause a denial of service (device reload) by sending a crafted message during IPsec tunnel setup, aka Bug ID CSCur70505.
CVE-2015-0773 (firesight_system_software)
Cisco FireSIGHT System Software 5.3.1.3 and 6.0.0 allows remote authenticated users to delete an arbitrary user’s dashboard via a modified VPN deletion request in a management session, aka Bug ID CSCut67078.
CVE-2015-0774 (application_and_content_networking_system_software)
Cross-site scripting (XSS) vulnerability in Cisco Application and Content Networking System (ACNS) 5.5(9) allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuu70650.
The token order of OpVectorTimesScalar and OpMatrixTimesScalar which generated in glslangValidator isn't consistant with SPEC
Posted by Aras Pranckevicius on Jun 12
Hi,
According to SPIR-V spec,
OpVectorTimesScalar’s first source operand is vector and secondary is scalar,
and OpMatrixTimesScalar’s first source operand is matrix and secondary is
scalar.
But it seems the token order generated by glslangValidator isn’t consistant
with sepc.
It is better if you can update glslangValidator to match spec’s behavior.
following is a simple sample, in case you need it.
Example:
GLSL soruce:…
FreeBSD-SA-15:10.openssl
Bugtraq: Cisco Security Advisory: Cisco IOS XR Software Crafted IPv6 Packet Denial of Service Vulnerability
Cisco Security Advisory: Cisco IOS XR Software Crafted IPv6 Packet Denial of Service Vulnerability