16 matches found
BELL-CVE-2026-43380
Bulletin has no description...
Linux Distros Unpatched Vulnerability : CVE-2026-43380
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hwmon: pmbus/q54sj108a2 fix stack overflow in debugfs read The q54sj108a2debugfsread function suffers from a stack buffer overflow due to incorrect arguments...
CVE-2026-43380
creationtimestamp| type| source ---|---|--- 2026-05-08 16:28:09+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116539895668179070...
DEBIAN-CVE-2026-43380
In the Linux kernel, the following vulnerability has been resolved: hwmon: pmbus/q54sj108a2 fix stack overflow in debugfs read The q54sj108a2debugfsread function suffers from a stack buffer overflow due to incorrect arguments passed to bin2hex. The function currently passes 'data' as the...
CVE-2026-43380
CVE-2026-43380 relates to the Linux kernel hwmon driver pmbus/q54sj108a2. The q54sj108a2_debugfs_read function suffers a stack buffer overflow due to incorrect bin2hex argument usage and insufficient output buffer size, causing writes beyond the stack. A fix expands the data_char buffer to 66 byt...
CVE-2025-43380
creationtimestamp| type| source ---|---|--- 2025-11-13 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-1008/...
Linux Distros Unpatched Vulnerability : CVE-2024-43380
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fugit contains time tools for flor and the floraison group. The fugit natural parser, that turns every wednesday at 5pm into 0 17 3, accepted any length of inpu...
Logstash 8.15.1 Security Update (ESA-2024-35)
Logstash Uncontrolled Resource Consumption vulnerability ESA-2024-35 On August 19, 2024, Floraison announced CVE-2024-43380, which affects fugit "natural" parser. The parser turns natural language into a cron date and was found to accept any length of input, causing an uncontrolled resource...
CVE-2024-43380
creationtimestamp| type| source ---|---|--- 2024-08-19 17:41:46+00:00| seen| https://t.me/cvedetector/3519...
CVE-2024-43380
fugit contains time tools for flor and the floraison group. The fugit "natural" parser, that turns "every wednesday at 5pm" into "0 17 3", accepted any length of input and went on attempting to parse it, not returning promptly, as expected. The parse call could hold the thread with no end in sigh...
CVE-2024-43380 vulnerabilities
Vulnerabilities for packages: logstash...
CVE-2024-43380 vulnerabilities
Vulnerabilities for packages: logstash-jre-bcfips, logstash...
CVE-2024-43380
fugit contains time tools for flor and the floraison group. The fugit "natural" parser, that turns "every wednesday at 5pm" into "0 17 3", accepted any length of input and went on attempting to parse it, not returning promptly, as expected. The parse call could hold the thread with no end in sigh...
CVE-2024-43380 fugit parse and parse_nat stall on lengthy input
fugit contains time tools for flor and the floraison group. The fugit "natural" parser, that turns "every wednesday at 5pm" into "0 17 3", accepted any length of input and went on attempting to parse it, not returning promptly, as expected. The parse call could hold the thread with no end in sigh...
CVE-2024-43380 fugit parse and parse_nat stall on lengthy input
fugit contains time tools for flor and the floraison group. The fugit "natural" parser, that turns "every wednesday at 5pm" into "0 17 3", accepted any length of input and went on attempting to parse it, not returning promptly, as expected. The parse call could hold the thread with no end in sigh...
CVE-2022-43380
CVE-2022-43380 relates to IBM AIX 7.1/7.2/7.3 and VIOS 3.1 where a non-privileged local user can trigger a denial of service via exploitation of the AIX NFS kernel extension. The IBM Security Bulletin confirms the root cause is in the NFS kernel extension and lists affected filesets and AIX/VIOS ...