Lucene search
K

CVE-2024-29902

🗓️ 10 Apr 2024 22:28:19Reported by Debian Security Bug TrackerType 
debiancve
 debiancve
🔗 security-tracker.debian.org👁 6 Views

Cosign before 2.2.4 reads attachments into memory, causing service denial when memory is exhausted.

Related
Packages
ReporterTitlePublishedViews
Family
AlpineLinux
CVE-2024-29902
10 Apr 202423:15
alpinelinux
Chainguard
CVE-2024-29902 vulnerabilities
10 Apr 202423:15
cgr
CNNVD
cosign 安全漏洞
10 Apr 202400:00
cnnvd
CVE
CVE-2024-29902
10 Apr 202422:28
cve
Cvelist
CVE-2024-29902 Cosign vulnerable to system-wide denial of service via malicious attachments
10 Apr 202422:28
cvelist
EUVD
EUVD-2024-1155
3 Oct 202520:07
euvd
Github Security Blog
Cosign malicious attachments can cause system-wide denial of service
11 Apr 202417:05
github
NVD
CVE-2024-29902
10 Apr 202423:15
nvd
OpenVAS
openSUSE Security Advisory (SUSE-SU-2024:1486-1)
20 Aug 202400:00
openvas
OpenVAS
openSUSE Security Advisory (SUSE-SU-2024:1486-2)
20 Aug 202400:00
openvas
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Debian13anycosign0cosign_0_any.deb
Debian14anycosign0cosign_0_any.deb
Debian999anycosign0cosign_0_any.deb

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

10 Apr 2024 22:28Current
5.4Medium risk
Vulners AI Score5.4
CVSS 3.14.2 - 5.9
EPSS0.00658
SSVC
6