Lucene search
K

braces: fails to limit the number of characters it can handle

🗓️ 14 Oct 2024 18:01:43Reported by RedHatType 
redhat
 redhat
🔗 access.redhat.com👁 4 Views

A flaw in the braces package allows unbounded input, causing a loop and memory exhaustion, crashing the program.

Related
Packages
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins
Security Bulletin: IBM Security QRadar EDR Software contains multiple vulnerabilities
8 Jul 202409:49
ibm
IBM Security Bulletins
Security Bulletin: IBM Cognos Analytics Mobile (Android) is affected by multiple vulnerabilities
21 Oct 202415:52
ibm
IBM Security Bulletins
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Node.js braces
29 Jul 202421:50
ibm
IBM Security Bulletins
Security Bulletin: IBM Cognos Dashboards on Cloud Pak for Data has addressed security vulnerabilities
6 May 202519:09
ibm
IBM Security Bulletins
Security Bulletin: IBM QRadar Wincollect is using components with known vulnerabilities
9 Jul 202417:03
ibm
IBM Security Bulletins
Security Bulletin: Multiple vulnerabilities affect IBM Data Virtualization on Cloud Pak for Data (February 2025)
15 Apr 202503:52
ibm
IBM Security Bulletins
Security Bulletin: Multiple vulnerabilities fixed in IBM Security Verify Information Queue
5 Aug 202409:25
ibm
IBM Security Bulletins
Security Bulletin: IBM App Connect Enterprise is vulnerable to a denial of service due to Node.js micromatch & braces modules (CVE-2024-4067 & CVE-2024-4068)
14 Jun 202410:40
ibm
IBM Security Bulletins
Security Bulletin: Multiple vulnerabilities affect IBM Db2® on Cloud Pak for Data, and Db2 Warehouse on Cloud Pak for Data
15 Apr 202502:34
ibm
IBM Security Bulletins
Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to Node.js braces module denial of service vulnerability [ CVE-2024-4068]
28 Jan 202522:08
ibm
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Red Hat Enterprise Linux9noarcheap7-hal-console0:3.3.24-1.Final_redhat_00001.1.el9eapeap7-hal-console-0:3.3.24-1.Final_redhat_00001.1.el9eap.noarch.rpm
Red Hat Enterprise Linux9noarcheap7-hibernate-validator0:6.0.23-2.SP1_redhat_00001.1.el9eapeap7-hibernate-validator-0:6.0.23-2.SP1_redhat_00001.1.el9eap.noarch.rpm
Red Hat Enterprise Linux9noarcheap7-hibernate-validator-cdi0:6.0.23-2.SP1_redhat_00001.1.el9eapeap7-hibernate-validator-cdi-0:6.0.23-2.SP1_redhat_00001.1.el9eap.noarch.rpm
Red Hat Enterprise Linux9noarcheap7-insights-java-client0:1.1.3-1.redhat_00001.1.el9eapeap7-insights-java-client-0:1.1.3-1.redhat_00001.1.el9eap.noarch.rpm
Red Hat Enterprise Linux9noarcheap7-ironjacamar0:1.5.18-1.Final_redhat_00001.1.el9eapeap7-ironjacamar-0:1.5.18-1.Final_redhat_00001.1.el9eap.noarch.rpm
Red Hat Enterprise Linux9noarcheap7-ironjacamar-common-api0:1.5.18-1.Final_redhat_00001.1.el9eapeap7-ironjacamar-common-api-0:1.5.18-1.Final_redhat_00001.1.el9eap.noarch.rpm
Red Hat Enterprise Linux9noarcheap7-ironjacamar-common-impl0:1.5.18-1.Final_redhat_00001.1.el9eapeap7-ironjacamar-common-impl-0:1.5.18-1.Final_redhat_00001.1.el9eap.noarch.rpm
Red Hat Enterprise Linux9noarcheap7-ironjacamar-common-spi0:1.5.18-1.Final_redhat_00001.1.el9eapeap7-ironjacamar-common-spi-0:1.5.18-1.Final_redhat_00001.1.el9eap.noarch.rpm
Red Hat Enterprise Linux9noarcheap7-ironjacamar-core-api0:1.5.18-1.Final_redhat_00001.1.el9eapeap7-ironjacamar-core-api-0:1.5.18-1.Final_redhat_00001.1.el9eap.noarch.rpm
Red Hat Enterprise Linux9noarcheap7-ironjacamar-core-impl0:1.5.18-1.Final_redhat_00001.1.el9eapeap7-ironjacamar-core-impl-0:1.5.18-1.Final_redhat_00001.1.el9eap.noarch.rpm
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

07 Jul 2026 09:58Current
7.2High risk
Vulners AI Score7.2
CVSS 3.17.5
EPSS0.01471
SSVC
4