Lucene search
K

11150 matches found

OSV
OSV
added 2024/09/27 1:30 a.m.8 views

MGASA-2024-0317 Updated python3 packages fix security vulnerabilities

A defect was discovered in the Python “ssl” module where there is a memory race condition with the ssl.SSLContext methods “certstorestats” and “getcacerts”. The race condition can be triggered if the methods are called at the same time as certificates are loaded into the SSLContext, such as durin...

8.7CVSS6.7AI score0.02507EPSS
Exploits4References9
Microsoft CVE
Microsoft CVE
added 2024/09/26 7:0 a.m.4 views

Infinite loop when iterating over zip archive entry names from zipfile.Path

...

8.7CVSS6.8AI score0.01275EPSS
Exploits0
OSV
OSV
added 2024/09/26 6:38 a.m.1 views

USN-7037-1 openjpeg2 vulnerability

It was discovered that OpenJPEG could enter a large loop and continuously print warning messages when given specially crafted input. An attacker could potentially use this issue to cause a denial of service...

4.3CVSS6.9AI score0.00528EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/09/24 2:39 a.m.3 views

kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()

A vulnerability was found in the Linux kernel's networking subsystem in the actapi implementation within the tcfidrcheckalloc function, which lead to a possible infinite loop when multiple actions with the same index are added, causing the second request to block indefinitely while holding the...

5.5CVSS6.8AI score0.00286EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/24 1:17 a.m.2 views

kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()

A vulnerability was found in the Linux kernel's networking subsystem in the actapi implementation within the tcfidrcheckalloc function, which lead to a possible infinite loop when multiple actions with the same index are added, causing the second request to block indefinitely while holding the...

5.5CVSS6.8AI score0.00286EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/24 12:53 a.m.1 views

python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service

A flaw was found in Python's zipfile module. When iterating over the entries of a zip archive, the process can enter into an infinite loop state and become unresponsive. This flaw allows an attacker to craft a malicious ZIP archive, leading to a denial of service from the application consuming th...

8.7CVSS7.1AI score0.01275EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2024/09/24 12:49 a.m.10 views

kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()

A vulnerability was found in the Linux kernel's networking subsystem in the actapi implementation within the tcfidrcheckalloc function, which lead to a possible infinite loop when multiple actions with the same index are added, causing the second request to block indefinitely while holding the...

5.5CVSS6.8AI score0.00286EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/24 12:40 a.m.3 views

kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()

A vulnerability was found in the Linux kernel's networking subsystem in the actapi implementation within the tcfidrcheckalloc function, which lead to a possible infinite loop when multiple actions with the same index are added, causing the second request to block indefinitely while holding the...

5.5CVSS6.8AI score0.00286EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/24 12:27 a.m.13 views

kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()

A vulnerability was found in the Linux kernel's networking subsystem in the actapi implementation within the tcfidrcheckalloc function, which lead to a possible infinite loop when multiple actions with the same index are added, causing the second request to block indefinitely while holding the...

5.5CVSS6.8AI score0.00286EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2024/09/21 12:0 a.m.41 views

openSUSE: Security Advisory for kubernetes1.23 (SUSE-SU-2024:3341-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS8.5AI score0.99999EPSS
Exploits21References4
RedHat Linux
RedHat Linux
added 2024/09/18 4:7 p.m.4 views

golang: net: malformed DNS message can cause infinite loop

A flaw was found in the net package of the Go stdlib. When a malformed DNS message is received as a response to a query, the Lookup functions within the net package can get stuck in an infinite loop. This issue can lead to resource exhaustion and denial of service DoS conditions...

5.9CVSS7.3AI score0.01001EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/09/13 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from mapping shared memory as WC instead of WB, which could lead to a security outage and an infinite loop in the...

5.5CVSS6.3AI score0.00235EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/09/13 12:0 a.m.5 views

PT-2024-34100

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue arises when the caller supplies an iocb-ki pos value close to the filesystem upper limit, and an iterator with a count that causes an overflow of that limit, resulting in...

5.5CVSS5.5AI score0.00246EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/09/12 12:0 a.m.24 views

EulerOS 2.0 SP9 : elfutils (EulerOS-SA-2024-2386)

According to the versions of the elfutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In elfutils 0.183, an infinite loop was found in the function handlesymtab in readelf.c .Which allows attackers to cause a denial of service...

5.5CVSS6.1AI score0.00269EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2024/09/12 12:0 a.m.6 views

The vulnerability of the Dynamic Capability Handler component of the networking routing implementation software on Unix-like systems allows a attacker to cause a service failure.

The vulnerability of the Dynamic Capability Handler component in the software implementation for network routing on Unix-like systems is related to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability can allow a malicious actor to cause service failures...

7.8CVSS6.9AI score0.007EPSS
Exploits0References6Affected Software4
OSV
OSV
added 2024/09/11 12:49 p.m.7 views

CLSA-2024-1726058957 java-1.8.0-openjdk: Fix of 6 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u422-b05. That fixes following CVEs: - CVE-2024-21131: UTF8 size overflow - CVE-2024-21138: Infinite loop vunlerability in SymbolTable - CVE-2024-21140: Int overflow/underflow in Range Check Elimination RCE - CVE-2024-21144: Invalid header...

7.4CVSS6.7AI score0.01257EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.4 views

ext4: fix infinite loop when replaying fast_commit

...

5.5CVSS6.6AI score0.00231EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.1 views

can: mcp251xfd: fix infinite loop when xmit fails

...

5.5CVSS7.3AI score0.00227EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.2 views

Rustls vulnerable to an infinite loop in rustls::conn::ConnectionCommon::complete_io() with proper client input

...

7.5CVSS7AI score0.00949EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.2 views

net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()

...

5.5CVSS7.3AI score0.00286EPSS
Exploits0
Rows per page
Query Builder