Lucene search
K

246 matches found

OSV
OSV
added 2024/05/06 1:4 p.m.43 views

RLSA-2024:1822 Moderate: java-11-openjdk security update

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixes: OpenJDK: long Exception message leading to crash 8319851 CVE-2024-21011 OpenJDK: integer overflow in C1 compiler address generation 8322122 CVE-2024-21068...

3.7CVSS5.4AI score0.01361EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.39 views

RHEL 7 : java-11-openjdk (RHSA-2024:1821)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1821 advisory. The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixe...

3.7CVSS6.7AI score0.01361EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.38 views

RHEL 9 : OpenShift Container Platform 4.13.3 (RHSA-2023:3540)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3540 advisory. Red Hat build of MicroShift is Red Hat's light-weight Kubernetes orchestration solution designed for edge device deployments and is built fr...

9.8CVSS7.2AI score0.02281EPSS
Exploits0References17
BDU FSTEC
BDU FSTEC
added 2024/04/25 12:0 a.m.7 views

The vulnerability of the h.265 Libde265 implementation lies in buffer overflow attacks, which allow attackers to cause service failures.

The vulnerability of the h.265 Libde265 implementation is related to the amount of memory allocated, which exceeds the maximum supported size of 0x10000000000. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

9.4CVSS5.4AI score0.00232EPSS
Exploits0References9Affected Software3
Veracode
Veracode
added 2024/04/15 9:2 a.m.21 views

Denial Of Service (DOS)

github.com/sigstore/cosign is vulnerable to a Denial of Service DoS. The vulnerability is due to allocating excessive memory when creating slices based on the number of signatures, manifests, or attestations in untrusted artifacts. This flaw allows an attacker to trigger a Denial of Service via...

7.5CVSS4.2AI score0.00851EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2023/10/09 6:53 p.m.4 views

CLSA-2023-1696877581 binutils: Fix of 9 CVEs

CVE-2017-16831: Fix excessive memory allocation attempts and possible integer overflows when attempting to read a COFF binary with a corrupt symbol count - CVE-2020-19726: Fix parsing a corrupt PE format file - CVE-2021-45078: Fix out-of-bounds write in stabxcoffbuiltintype - CVE-2021-46174: Fix...

8.8CVSS6.9AI score0.01792EPSS
Exploits9References1
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.38 views

Oracle Linux 8 : exiv2 (ELSA-2020-1577)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1577 advisory. exiv2 0.27.2-5 - Fix failing test Resolves: bz1800472 0.27.2-4 - Drop test for the previous CVE as we test it manually and we dont have POC available...

8.8CVSS6.5AI score0.04296EPSS
Exploits26References29
Cvelist
Cvelist
added 2023/04/06 3:50 p.m.29 views

CVE-2023-24534 Excessive memory allocation in net/http and net/textproto

HTTP and MIME header parsing can allocate large amounts of memory, even when parsing small inputs, potentially leading to a denial of service. Certain unusual patterns of input data can cause the common function used to parse HTTP and MIME headers to allocate substantially more memory than requir...

8.7AI score0.01888EPSS
Exploits0References6
OSV
OSV
added 2023/04/06 1:38 p.m.9 views

SUSE-SU-2023:1792-1 Security update for go1.19

This update for go1.19 fixes the following issues: Update to 1.19.8 CVE-2023-24534: security: net/http, net/textproto: denial of service from excessive memory allocation bsc1210127 CVE-2023-24536: security: net/http, net/textproto, mime/multipart: denial of service from excessive resource...

9.8CVSS8.5AI score0.02281EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 4:16 a.m.6 views

SUSE CVE-2019-6988

An issue was discovered in OpenJPEG 2.3.0. It allows remote attackers to cause a denial of service attempted excessive memory allocation in opjcalloc in openjp2/opjmalloc.c, when called from opjtcdinittile in openjp2/tcd.c, as demonstrated by the 64-bit opjdecompress...

6.5CVSS8.4AI score0.01724EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2022/11/15 12:0 a.m.53 views

NewStart CGSL MAIN 6.02 : libwebp Multiple Vulnerabilities (NS-SA-2022-0091)

The remote NewStart CGSL host, running version MAIN 6.02, has libwebp packages installed that are affected by multiple vulnerabilities: - A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE16. CVE-2018-25009 - A heap-based buffer overflow was found in libwebp in...

9.8CVSS7.6AI score0.02302EPSS
Exploits0References17
Cent OS
Cent OS
added 2022/10/26 2:18 p.m.116 views

java security update

CentOS Errata and Security Advisory CESA-2022:7008 An update for java-11-openjdk is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

5.3CVSS6.6AI score0.02376EPSS
Exploits0References7
OSV
OSV
added 2022/10/20 12:0 a.m.34 views

ALSA-2022:7013 Moderate: java-11-openjdk security and bug fix update

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixes: OpenJDK: improper MultiByte conversion can lead to buffer overflow JGSS, 8286077 CVE-2022-21618 OpenJDK: excessive memory allocation in X.509 certificate...

5.3CVSS6.3AI score0.02376EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2022/10/19 10:27 p.m.53 views

Moderate: Red Hat Security Advisory: java-17-openjdk security update

An update for java-17-openjdk is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

5.3CVSS6.6AI score0.02376EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2022/10/19 9:15 p.m.44 views

Moderate: Red Hat Security Advisory: java-11-openjdk security update

An update for java-11-openjdk is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

5.3CVSS6.6AI score0.02376EPSS
Exploits0References7
AlmaLinux
AlmaLinux
added 2022/10/19 12:0 a.m.42 views

Moderate: java-1.8.0-openjdk security update

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: OpenJDK: excessive memory allocation in X.509 certificate parsing Security, 8286533 CVE-2022-21626 OpenJDK: HttpServer no connection count limit...

5.3CVSS6.2AI score0.02376EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2022/10/19 12:0 a.m.28 views

RHEL 8 : java-11-openjdk (RHSA-2022:7010)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:7010 advisory. The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixe...

5.3CVSS6.8AI score0.02376EPSS
Exploits0References15
Positive Technologies
Positive Technologies
added 2022/09/02 12:0 a.m.5 views

PT-2022-23166 · Unknown · Github.Com/Gagliardetto/Binary

Name of the Vulnerable Software and Affected Versions: github.com/gagliardetto/binary versions prior to v0.7.1 Description: The issue is a memory allocation vulnerability that can be exploited to allocate slices in memory with excessive size values, potentially exhausting available memory or...

8.8CVSS7.4AI score0.00941EPSS
Exploits1References11
NVD
NVD
added 2022/08/11 1:15 a.m.24 views

CVE-2022-38155

TEEMalloc in Samsung mTower through 0.3.0 allows a trusted application to achieve Excessive Memory Allocation via a large len value, as demonstrated by a Numaker-PFM-M2351 TEE kernel crash...

7.5CVSS0.00879EPSS
Exploits1References2
Prion
Prion
added 2022/08/11 1:15 a.m.18 views

Design/Logic Flaw

TEEMalloc in Samsung mTower through 0.3.0 allows a trusted application to achieve Excessive Memory Allocation via a large len value, as demonstrated by a Numaker-PFM-M2351 TEE kernel crash...

5CVSS7.3AI score0.00879EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder