CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Debian CVE•added 2023/02/13 12:0 a.m.•17 views

CVE-2023-0800

LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3502, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127...

6.8CVSS6.4AI score0.00026EPSS

AlpineLinux•added 2023/02/13 12:0 a.m.•28 views

CVE-2023-0796

6.8CVSS5.6AI score0.00013EPSS

AlpineLinux•added 2023/02/13 12:0 a.m.•34 views

CVE-2023-0803

LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3516, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127...

6.8CVSS5.9AI score0.00026EPSS

Code423n4•added 2023/01/20 12:0 a.m.•6 views

Compilation Error: Undefined function 'shiftl_toFix' in CTokenFiatCollateral Contract

Lines of code Vulnerability details Impact return shiftltoFixrate, shiftLeft; It should be noted that the function "shiftltoFix" is not defined in the contract and not imported from any library, this means that the compiler will throw an error when trying to deploy the contract and this function...

6.8AI score

OSV•added 2023/01/17 6:9 p.m.•12 views

GSD-2023-1000775 selftests/bpf: Fix xdp_synproxy compilation failure in 32-bit arch

selftests/bpf: Fix xdpsynproxy compilation failure in 32-bit arch This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...

OSV•added 2023/01/17 4:13 p.m.•6 views

GSD-2023-1000215 netfilter: ctnetlink: fix compilation warning after data race fixes in ct mark

netfilter: ctnetlink: fix compilation warning after data race fixes in ct mark This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.159 by comm...

OSV•added 2023/01/17 4:4 p.m.•3 views

GSD-2023-1000137 netfilter: ctnetlink: fix compilation warning after data race fixes in ct mark

OSV•added 2023/01/17 3:54 p.m.•12 views

GSD-2023-1000033 netfilter: ctnetlink: fix compilation warning after data race fixes in ct mark

Fedora•added 2023/01/12 1:53 a.m.•41 views

[SECURITY] Fedora 37 Update: pypy3.8-7.3.11-1.3.8.fc37

PyPy's implementation of Python 3.8, featuring a Just-In-Time compiler on some CPU architectures, and various optimized implementations of the standard types strings, dictionaries, etc.. This build of PyPy has JIT-compilation enabled...

9.8CVSS9.1AI score0.014EPSS

Exploits2

Tenable Nessus•added 2022/12/21 12:0 a.m.•16 views

EulerOS 2.0 SP10 : gcc (EulerOS-SA-2022-2821)

According to the versions of the gcc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In gcc, an internal compiler error in matchreload function at lra-constraints.c may cause a crash through a crafted input file. CVE-2020-35536 - In...

9.4AI score

Exploits0References3

Oracle linux•added 2022/12/13 12:0 a.m.•49 views

Unbreakable Enterprise kernel-container security update

4.14.35-2047.520.3.1.el7 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883027 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883027 CVE-2022-4378 - hugetlbfs: don't delete error page from pagecache James...

7.8CVSS7.7AI score0.00033EPSS

Mageia•added 2022/11/24 10:21 p.m.•50 views

Updated java packages fix security vulnerability

Class compilation issue. CVE-2022-21540 Improper restriction of MethodHandle.invokeBasic. CVE-2022-21541 Integer truncation issue in Xalan-J. CVE-2022-34169 Improper MultiByte conversion can lead to buffer overflow. CVE-2022-21618 Improper handling of long NTLM client hostnames. CVE-2022-21619...

7.5CVSS2.3AI score0.10953EPSS

Exploits2References7

Spring Engineering•added 2022/11/23 8:0 a.m.•16 views

Spring Tips: the road to Spring Framework 6: the new Ahead-of-Time Compilation Engine and GraalVM

Hi, Spring fans! Spring Boot 3 is here or will be tomorrow, on the 24th of November, 2022, to be more precise!, bringing a fantastic new Ahead-of-Time AOT compilation engine that supports GraalVM native images. Join me, and well dive deep into the engine and its interactions with the Spring...

0.9AI score