CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2025/08/19 5:3 p.m.•3 views

CVE-2025-38587 ipv6: fix possible infinite loop in fib6_info_uses_dev()

5.5CVSS6AI score0.00147EPSS

Exploits0References10

SUSE Linux•added 2025/08/19 9:30 a.m.•4 views

Security update for 389-ds

This update for 389-ds fixes the following issues: Update to version 2.0.20git64.628a24b68: Security fixes: CVE-2025-3416: Fixed openssl use after free bsc1242666 Other fixes: resolve infinite loop due when loading RUV entryrdn bsc1243428 Upstream changelog: Issue 6119 - Synchronise acceptthread...

6.3CVSS7.5AI score0.00426EPSS

Exploits0References6

Tenable Nessus•added 2025/08/19 12:0 a.m.•9 views

Amazon Linux 2 : python (ALAS-2025-2961)

The version of python installed on the remote host is prior to 2.7.18-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2961 advisory. There is a defect in the CPython tarfile module affecting the TarFile extraction and entry enumeration APIs. The tar implementation...

7.5CVSS6.9AI score0.00586EPSS

CNNVD•added 2025/08/19 12:0 a.m.•2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates in the ipv6 module in the fib6infousesdev function that could lead to an infinite loop...

5.5CVSS7.9AI score0.00147EPSS

Exploits0References8

CNNVD•added 2025/08/19 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates in the ipv6 module in the rt6nlmsgsize function that could lead to an infinite loop...

5.5CVSS7.9AI score0.00147EPSS

Exploits0References8

Tenable Nessus•added 2025/08/19 12:0 a.m.•7 views

Amazon Linux 2 : python3 (ALAS-2025-2962)

The version of python3 installed on the remote host is prior to 3.7.16-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2962 advisory. There is a defect in the CPython tarfile module affecting the TarFile extraction and entry enumeration APIs. The tar implementatio...

7.5CVSS6.9AI score0.00586EPSS

Tenable Nessus•added 2025/08/18 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2019-17350

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.12.x allowing Arm domU attackers to cause a denial of service infinite loop involving a compare-and-exchange operation...

5.5CVSS6.2AI score0.00358EPSS

Exploits0References2

Tenable Nessus•added 2025/08/18 12:0 a.m.•6 views

Amazon Linux 2023 : python3.12, python3.12-devel, python3.12-idle (ALAS2023-2025-1135)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1135 advisory. There is a defect in the CPython tarfile module affecting the TarFile extraction and entry enumeration APIs. The tar implementation would process tar archives with negative offsets without error,...

Tenable Nessus•added 2025/08/18 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2023-36464

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pypdf is an open source, pure-python PDF library. In affected versions an attacker may craft a PDF which leads to an infinite loop if parsecontentstream is...

6.2CVSS6.3AI score0.00342EPSS

Exploits1References2

Tenable Nessus•added 2025/08/18 12:0 a.m.•7 views

Amazon Linux 2023 : python3.13, python3.13-devel, python3.13-freethreading (ALAS2023-2025-1147)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1147 advisory. There is a defect in the CPython tarfile module affecting the TarFile extraction and entry enumeration APIs. The tar implementation would process tar archives with negative offsets without error,...

Tenable Nessus•added 2025/08/18 12:0 a.m.•10 views

Linux Distros Unpatched Vulnerability : CVE-2025-8194

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a defect in the CPython tarfile module affecting the TarFile extraction and entry enumeration APIs. The tar implementation would process tar archives...

Tenable Nessus•added 2025/08/18 12:0 a.m.•5 views

Exploits0References3

Amazon Linux 2023 : python3, python3-devel, python3-idle (ALAS2023-2025-1146)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1146 advisory. There is a defect in the CPython tarfile module affecting the TarFile extraction and entry enumeration APIs. The tar implementation would process tar archives with negative offsets without error,...

Tenable Nessus•added 2025/08/18 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2021-27918

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader for xml.NewTokenDecoder returns EOF in the middle of an...

7.5CVSS7.9AI score0.02543EPSS

Exploits0References2

Amazon•added 2025/08/18 12:0 a.m.•4 views

Important: python3.13

Issue Overview: There is a defect in the CPython "tarfile" module affecting the "TarFile" extraction and entry enumeration APIs. The tar implementation would process tar archives with negative offsets without error, resulting in an infinite loop and deadlock during the parsing of maliciously...

Amazon•added 2025/08/18 12:0 a.m.•4 views

Important: python3.9

Amazon•added 2025/08/18 12:0 a.m.•4 views

Important: python3.11