11150 matches found
MGASA-2024-0317 Updated python3 packages fix security vulnerabilities
A defect was discovered in the Python “ssl” module where there is a memory race condition with the ssl.SSLContext methods “certstorestats” and “getcacerts”. The race condition can be triggered if the methods are called at the same time as certificates are loaded into the SSLContext, such as durin...
Infinite loop when iterating over zip archive entry names from zipfile.Path
...
USN-7037-1 openjpeg2 vulnerability
It was discovered that OpenJPEG could enter a large loop and continuously print warning messages when given specially crafted input. An attacker could potentially use this issue to cause a denial of service...
kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
A vulnerability was found in the Linux kernel's networking subsystem in the actapi implementation within the tcfidrcheckalloc function, which lead to a possible infinite loop when multiple actions with the same index are added, causing the second request to block indefinitely while holding the...
kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
A vulnerability was found in the Linux kernel's networking subsystem in the actapi implementation within the tcfidrcheckalloc function, which lead to a possible infinite loop when multiple actions with the same index are added, causing the second request to block indefinitely while holding the...
python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service
A flaw was found in Python's zipfile module. When iterating over the entries of a zip archive, the process can enter into an infinite loop state and become unresponsive. This flaw allows an attacker to craft a malicious ZIP archive, leading to a denial of service from the application consuming th...
kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
A vulnerability was found in the Linux kernel's networking subsystem in the actapi implementation within the tcfidrcheckalloc function, which lead to a possible infinite loop when multiple actions with the same index are added, causing the second request to block indefinitely while holding the...
kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
A vulnerability was found in the Linux kernel's networking subsystem in the actapi implementation within the tcfidrcheckalloc function, which lead to a possible infinite loop when multiple actions with the same index are added, causing the second request to block indefinitely while holding the...
kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
A vulnerability was found in the Linux kernel's networking subsystem in the actapi implementation within the tcfidrcheckalloc function, which lead to a possible infinite loop when multiple actions with the same index are added, causing the second request to block indefinitely while holding the...
openSUSE: Security Advisory for kubernetes1.23 (SUSE-SU-2024:3341-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
golang: net: malformed DNS message can cause infinite loop
A flaw was found in the net package of the Go stdlib. When a malformed DNS message is received as a response to a query, the Lookup functions within the net package can get stuck in an infinite loop. This issue can lead to resource exhaustion and denial of service DoS conditions...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from mapping shared memory as WC instead of WB, which could lead to a security outage and an infinite loop in the...
PT-2024-34100
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue arises when the caller supplies an iocb-ki pos value close to the filesystem upper limit, and an iterator with a count that causes an overflow of that limit, resulting in...
EulerOS 2.0 SP9 : elfutils (EulerOS-SA-2024-2386)
According to the versions of the elfutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In elfutils 0.183, an infinite loop was found in the function handlesymtab in readelf.c .Which allows attackers to cause a denial of service...
The vulnerability of the Dynamic Capability Handler component of the networking routing implementation software on Unix-like systems allows a attacker to cause a service failure.
The vulnerability of the Dynamic Capability Handler component in the software implementation for network routing on Unix-like systems is related to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability can allow a malicious actor to cause service failures...
CLSA-2024-1726058957 java-1.8.0-openjdk: Fix of 6 CVEs
Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u422-b05. That fixes following CVEs: - CVE-2024-21131: UTF8 size overflow - CVE-2024-21138: Infinite loop vunlerability in SymbolTable - CVE-2024-21140: Int overflow/underflow in Range Check Elimination RCE - CVE-2024-21144: Invalid header...
ext4: fix infinite loop when replaying fast_commit
...
can: mcp251xfd: fix infinite loop when xmit fails
...
Rustls vulnerable to an infinite loop in rustls::conn::ConnectionCommon::complete_io() with proper client input
...
net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
...