PT-2026-40359

NanaZip is an open source file archive. From 5.0.1252.0 to before 6.0.1698.0, an uncontrolled recursion vulnerability exists in the UFS/UFS2 filesystem image parser in NanaZip. The function GetAllPaths recurses into subdirectories without any depth limit or visited-inode tracking. A crafted UFS...

EUVD-2026-8769

NanaZip is an open source file archive. Starting in version 5.0.1252.0 and prior to versions 6.0.1638.0 and 6.5.1638.0, a memory corruption vulnerability in NanaZip’s UFS parser allows a crafted .ufs/.ufs2/.img file to trigger out-of-bounds memory access during archive open/listing. The bug is...

Elastic Packetbeat 安全漏洞

Elastic Packetbeat is a data collector from the Dutch company Elastic. A security vulnerability exists in Elastic Packetbeat that stems from an out-of-bounds read in the NFS protocol parser, which could lead to a denial of service...

DEBIAN-CVE-2017-13005

The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:xidmapenter...

Tcpdump NFS parser buffer overflow vulnerability (CNVD-2017-27750)

Tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tools allow users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.NFS parser is one of the network file system parsers. A buffer overflo...