Lucene search
K

125 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:1 a.m.4 views

SUSE CVE-2009-3888

The dommappgoff function in mm/nommu.c in the Linux kernel before 2.6.31.6, when the CPU lacks a memory management unit, allows local users to cause a denial of service OOPS via an application that attempts to allocate a large amount of memory...

4.9CVSS6.2AI score0.00749EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:12 a.m.8 views

SUSE CVE-2019-11487

The Linux kernel before 5.1-rc5 allows page-refcount reference count overflow, with resultant use-after-free issues, if about 140 GiB of RAM exists. This is related to fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipefsi.h, kernel/trace/trace.c, mm/gup.c, and...

7.8CVSS6.9AI score0.00708EPSS
Exploits1References25
CNNVD
CNNVD
added 2022/11/01 12:0 a.m.7 views

Xen 安全漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. Xen Xenstore suffers from a security...

6.5CVSS6.4AI score0.00245EPSS
Exploits0References15
Positive Technologies
Positive Technologies
added 2022/01/01 12:0 a.m.4 views

PT-2025-53969

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.0.0-rc1home lulu 2452 lulu7 vhost+ Description The Linux kernel contains a flaw within the vhost vdpa component related to unmapping large memory regions. During testing with vIOMMU, a crash could occur when a...

6.7AI score0.00198EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/10/30 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for libplist (EulerOS-SA-2020-2288)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.02926EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2020/07/20 12:0 a.m.2 views

VulnCheck KEV: CVE-2020-11261

Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

7.8CVSS7AI score0.01772EPSS
Exploits0References1
OSV
OSV
added 2020/05/24 12:0 a.m.3 views

UBUNTU-CVE-2005-1514

commands.c in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long SMTP command without a space character, which causes an array to be referenced with a negative index...

5CVSS7.5AI score0.06572EPSS
Exploits2References5
Debian
Debian
added 2020/04/02 8:2 a.m.82 views

[SECURITY] [DLA 2168-1] libplist security update

Package : libplist Version : 1.11-3+deb8u1 CVE ID : CVE-2017-5209 CVE-2017-5545 CVE-2017-5834 CVE-2017-5835 CVE-2017-6435 CVE-2017-6436 CVE-2017-6439 CVE-2017-7982 Debian Bug : 851196 852385 854000 860945 libplist is a library for reading and writing the Apple binary and XML property lists format...

9.1CVSS7.6AI score0.03768EPSS
Exploits3
Prion
Prion
added 2020/03/10 9:15 p.m.25 views

Design/Logic Flaw

C++ Facebook Thrift servers would not error upon receiving messages declaring containers of sizes larger than the payload. As a result, malicious clients could send short messages which would result in a large memory allocation, potentially leading to denial of service. This issue affects Faceboo...

5CVSS7.3AI score0.02076EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2019/10/08 2:15 p.m.27 views

Memory corruption

The ASN.1 parser in Bouncy Castle Crypto aka BC Java 1.63 can trigger a large attempted memory allocation, and resultant OutOfMemoryError error, via crafted ASN.1 data. This is fixed in 1.64...

5CVSS8.1AI score0.08878EPSS
Exploits0References16Affected Software18
OSV
OSV
added 2019/04/23 10:29 p.m.2 views

DEBIAN-CVE-2019-11487

The Linux kernel before 5.1-rc5 allows page-refcount reference count overflow, with resultant use-after-free issues, if about 140 GiB of RAM exists. This is related to fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipefsi.h, kernel/trace/trace.c, mm/gup.c, and...

7.8CVSS6.6AI score0.00708EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2018/08/20 7:31 p.m.38 views

CVE-2018-1000656

The Pallets Project flask version Before 0.12.3 contains a CWE-20: Improper Input Validation vulnerability in flask that can result in Large amount of memory usage possibly leading to denial of service. This attack appear to be exploitable via Attacker provides JSON data in incorrect encoding. Th...

7.5CVSS6.7AI score0.03855EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2018/06/21 6:0 p.m.34 views

CVE-2018-12617

qmpguestfileread in qga/commands-posix.c and qga/commands-win32.c in qemu-ga aka QEMU Guest Agent in QEMU 2.12.50 has an integer overflow causing a gmalloc0 call to trigger a segmentation fault when trying to allocate a large memory chunk. The vulnerability can be exploited by sending a crafted Q...

7.5CVSS6.9AI score0.25348EPSS
Exploits5
UbuntuCve
UbuntuCve
added 2018/06/21 12:0 a.m.28 views

CVE-2018-12617

qmpguestfileread in qga/commands-posix.c and qga/commands-win32.c in qemu-ga aka QEMU Guest Agent in QEMU 2.12.50 has an integer overflow causing a gmalloc0 call to trigger a segmentation fault when trying to allocate a large memory chunk. The vulnerability can be exploited by sending a crafted Q...

7.5CVSS6.8AI score0.25348EPSS
Exploits5References4
OSV
OSV
added 2018/06/21 12:0 a.m.2 views

UBUNTU-CVE-2018-12617

qmpguestfileread in qga/commands-posix.c and qga/commands-win32.c in qemu-ga aka QEMU Guest Agent in QEMU 2.12.50 has an integer overflow causing a gmalloc0 call to trigger a segmentation fault when trying to allocate a large memory chunk. The vulnerability can be exploited by sending a crafted Q...

7.5CVSS6.8AI score0.25348EPSS
Exploits5References5
OSV
OSV
added 2018/04/16 10:29 p.m.6 views

CVE-2018-10172

7-Zip through 18.01 on Windows implements the "Large memory pages" option by calling the LsaAddAccountRights function to add the SeLockMemoryPrivilege privilege to the user's account, which makes it easier for attackers to bypass intended access restrictions by using this privilege in the context...

8.8CVSS5.7AI score0.00383EPSS
Exploits0References1
Prion
Prion
added 2018/04/16 10:29 p.m.28 views

Code injection

7-Zip through 18.01 on Windows implements the "Large memory pages" option by calling the LsaAddAccountRights function to add the SeLockMemoryPrivilege privilege to the user's account, which makes it easier for attackers to bypass intended access restrictions by using this privilege in the context...

7.2CVSS8.6AI score0.00383EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2018/04/16 10:29 p.m.19 views

CVE-2018-10172

7-Zip through 18.01 on Windows implements the "Large memory pages" option by calling the LsaAddAccountRights function to add the SeLockMemoryPrivilege privilege to the user's account, which makes it easier for attackers to bypass intended access restrictions by using this privilege in the context...

8.8CVSS8.7AI score0.00383EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/04/16 10:0 p.m.22 views

CVE-2018-10172

7-Zip through 18.01 on Windows implements the "Large memory pages" option by calling the LsaAddAccountRights function to add the SeLockMemoryPrivilege privilege to the user's account, which makes it easier for attackers to bypass intended access restrictions by using this privilege in the context...

8.8AI score0.00383EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2018/04/02 12:0 a.m.5 views

PT-2018-1287 · Igor Pavlov · 7-Zip

Name of the Vulnerable Software and Affected Versions: 7-Zip versions prior to 18.02 Description: The issue is related to the implementation of the "Large memory pages" option in 7-Zip, which uses the LsaAddAccountRights function to add the SeLockMemoryPrivilege privilege to the user's account...

8.8CVSS9.4AI score0.00383EPSS
Exploits0References4
Rows per page
Query Builder