94 matches found
PYSEC-2024-299
Reachable Assertion in BPv7 parser in µD3TN v0.14.0 allows attacker to disrupt service via malformed Extension Block...
MGASA-2024-0307 Updated clamav packages fix security vulnerabilities
Fixed a possible out-of-bounds read bug in the PDF file parser that could cause a denial-of-service DoS condition. CVE-2024-20505 Changed the logging module to disable following symlinks on Linux and Unix systems so as to prevent an attacker with existing access to the 'clamd' or 'freshclam'...
JSON-java: parser confusion leads to OOM
A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...
JSON-java: parser confusion leads to OOM
A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...
JSON-java: parser confusion leads to OOM
A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...
PT-2024-25937 · Unknown · Faucet Sdn Ryu
Name of the Vulnerable Software and Affected Versions: Faucet SDN Ryu version 4.34 Description: The issue allows attackers to cause a denial of service infinite loop via inst.length=0 in OFPFlowStats in parser.py. Recommendations: For version 4.34, consider disabling the OFPFlowStats function in...
Security Bulletin: IBM Datapower Operations Dashboard is vulnerable to a denial of service caused by a bug in the parser [CVE-2023-5072]
Summary JSON-java is used by the IBM Datapower Operations Dashboard in its parsing infrastructure. Vulnerability Details CVEID:CVE-2023-5072 DESCRIPTION: JSON-java is vulnerable to a denial of service, caused by a bug in the parser. By sending a specially crafted request, a remote attacker could...
JSON-java: parser confusion leads to OOM
A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...
JSON-java: parser confusion leads to OOM
A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...
JSON-java: parser confusion leads to OOM
A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...
JSON-java: parser confusion leads to OOM
A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...
JSON-java: parser confusion leads to OOM
A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...
Java: DoS Vulnerability in JSON-JAVA
Summary A denial of service vulnerability in JSON-Java was discovered by ClusterFuzz. A bug in the parser means that an input string of modest size can lead to indefinite amounts of memory being used. There are two issues: 1 the parser bug can be used to circumvent a check that is supposed to...
PYSEC-2023-246
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. The HTTP parser in AIOHTTP has numerous problems with header parsing, which could lead to request smuggling. This parser is only used when AIOHTTPNOEXTENSIONS is enabled or not using a prebuilt wheel. These bugs have...
CVE-2023-5072
A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS. Mitigation No current mitigation is available for this flaw...
UBUNTU-CVE-2023-5072
Denial of Service in JSON-Java versions up to and including 20230618. A bug in the parser means that an input string of modest size can lead to indefinite amounts of memory being used...
Input validation
Denial of Service in JSON-Java versions up to and including 20230618. A bug in the parser means that an input string of modest size can lead to indefinite amounts of memory being used...
SUSE-SU-2023:1686-2 Security update for libmicrohttpd
This update for libmicrohttpd fixes the following issues: - CVE-2023-27371: Fixed a parser bug that could be used to crash servers using the MHDPostProcessor bsc1208745...
SUSE-SU-2023:1944-1 Security update for libmicrohttpd
This update for libmicrohttpd fixes the following issues: - CVE-2023-27371: Fixed parser bug that could be used to crash servers using the MHDPostProcessor bsc1208745...
SUSE CVE-2016-7931
The MPLS parser in tcpdump before 4.9.0 has a buffer overflow in print-mpls.c:mplsprint...