Lucene search
+L

31 matches found

OSV
OSV
added 2023/10/06 10:15 p.m.2 views

DEBIAN-CVE-2023-45322

libxml2 through 2.11.5 has a use-after-free that can only occur after a certain memory allocation fails. This occurs in xmlUnlinkNode in tree.c. NOTE: the vendor's position is "I don't think these issues are critical enough to warrant a CVE ID ... because an attacker typically can't control when...

6.5CVSS6.8AI score0.00826EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2018-0027)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.3AI score0.02126EPSS
Exploits7References12
OSV
OSV
added 2019/05/28 3:29 a.m.2 views

UBUNTU-CVE-2019-12380

DISPUTED An issue was discovered in the efi subsystem in the Linux kernel through 5.1.5. physefisetvirtualaddressmap in arch/x86/platform/efi/efi.c and eficallphysprolog in arch/x86/platform/efi/efi64.c mishandle memory allocation failures. NOTE: This id is disputed as not being an issue because...

5.5CVSS6.7AI score0.00487EPSS
Exploits0References5
OSV
OSV
added 2019/05/28 3:29 a.m.2 views

DEBIAN-CVE-2019-12380

DISPUTED An issue was discovered in the efi subsystem in the Linux kernel through 5.1.5. physefisetvirtualaddressmap in arch/x86/platform/efi/efi.c and eficallphysprolog in arch/x86/platform/efi/efi64.c mishandle memory allocation failures. NOTE: This id is disputed as not being an issue because...

5.5CVSS6.5AI score0.00487EPSS
Exploits0References1
CVE
CVE
added 2019/05/28 2:5 a.m.361 views

CVE-2019-12380

CVE-2019-12380 is documented in multiple advisories referencing the Linux kernel EFI handling code. The connected sources specify that the vulnerability arises from how the EFI subsystem handles memory allocation failures in the x86 EFI path: phys_efi_set_virtual_address_map in arch/x86/platform/...

5.5CVSS7AI score0.00487EPSS
Exploits0References11Affected Software1
OSV
OSV
added 2018/01/03 10:32 a.m.7 views

MGASA-2018-0027 Updated elfutils packages fix security vulnerabilities

The elfutils package has been updated to version 0.169 to fix several bugs that can lead to memory allocation failures or heap overflows CVE-2016-10254, CVE-2016-10255, CVE-2017-7607, CVE-2017-7608, CVE-2017-7609, CVE-2017-7610, CVE-2017-7611, CVE-2017-7612, CVE-2017-7613...

5.5CVSS5.8AI score0.02126EPSS
Exploits7References11
RedHat Linux
RedHat Linux
added 2017/06/07 5:54 p.m.6 views

httpd: DoS vulnerability in mod_auth_digest

It was discovered that the modauthdigest module of httpd did not properly check for memory allocation failures. A remote attacker could use this flaw to cause httpd child processes to repeatedly crash if the server used HTTP digest authentication...

7.5CVSS7.2AI score0.20952EPSS
Exploits0References5
Prion
Prion
added 2017/02/15 3:59 p.m.13 views

Authentication flaw

The telnetd service in FreeBSD 9.3, 10.1, 10.2, 10.3, and 11.0 allows remote attackers to inject arguments to login and bypass authentication via vectors involving a "sequence of memory allocation failures."...

5CVSS7.3AI score0.01875EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/09/21 12:0 a.m.36 views

FreeBSD : ffmpeg -- multiple vulnerabilities (3d950687-b4c9-4a86-8478-c56743547af8)

NVD reports : The decodeihdrchunk function in libavcodec/pngdec.c in FFmpeg before 2.7.2 does not enforce uniqueness of the IHDR aka image header chunk in a PNG image, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact v...

7.5CVSS8AI score0.02482EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2014/10/11 12:0 a.m.59 views

Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2378-1)

Steven Vittitoe reported multiple stack buffer overflows in Linux kernel's magicmouse HID driver. A physically proximate attacker could exploit this flaw to cause a denial of service system crash or possibly execute arbitrary code via specially crafted devices. CVE-2014-3181 Ben Hawkes reported...

7.8CVSS7.5AI score0.06167EPSS
Exploits8References10
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.39 views

Ubuntu Update for ruby1.9 vulnerability USN-691-1

Ubuntu Update for Linux kernel vulnerabilities USN-691-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6911.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for ruby1.9 vulnerability USN-691-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

5CVSS7AI score0.15678EPSS
Exploits2References2
Rows per page
Query Builder