5279 matches found
UBUNTU-CVE-2024-3248
In Xpdf 4.05 and earlier, a PDF object loop in the attachments leads to infinite recursion and a stack overflow...
CVE-2024-3248
In Xpdf 4.05 and earlier, a PDF object loop in the attachments leads to infinite recursion and a stack overflow...
CVE-2024-3248 Stack overflow in Xpdf 4.05 due to object loop in attachments
In Xpdf 4.05 and earlier, a PDF object loop in the attachments leads to infinite recursion and a stack overflow...
CVE-2024-3247
In Xpdf 4.05 and earlier, a PDF object loop in an object stream leads to infinite recursion and a stack overflow...
CVE-2024-3247
CVE-2024-3247 affects Xpdf up to version 4.05 (and earlier). The issue is a PDF object loop in an object stream that can trigger infinite recursion and a stack overflow, enabling a local attack surface and potential denial-of-service when processing crafted PDFs. Fedora advisories indicate remedi...
CVE-2024-3247
In Xpdf 4.05 and earlier, a PDF object loop in an object stream leads to infinite recursion and a stack overflow...
Xpdf 安全漏洞
Xpdf is a free PDF viewer and toolkit from Xpdf, Inc. that includes a text extractor, image converter, HTML converter, and more. A security vulnerability exists in Xpdf version 4.05 and earlier versions, which stems from a PDF object loop that can lead to infinite recursion and stack overflow...
Xpdf 安全漏洞
Xpdf is a free PDF viewer and toolkit from Xpdf, Inc. that includes a text extractor, image converter, HTML converter, and more. A security vulnerability exists in Xpdf version 4.05 and earlier versions, which stems from a PDF object loop that can lead to infinite recursion and stack overflow...
expat security update
2.5.0-1.1 - CVE-2023-52425: Fix parsing of large tokens - CVE-2024-28757: Reject direct parameter entity recursion - Resolves: RHEL-29698 - Resolves: RHEL-29695...
squid: Denial of Service in HTTP Chunked Decoding
A flaw was found in Squid. This issue may allow a remote attacker to trigger an uncontrolled recursion bug when sending a specially crafted, chunked, encoded HTTP Message, resulting in a denial of service...
Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2024-1423)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 8 : squid:4 (ELSA-2024-1375)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-1375 advisory. - Resolves: RHEL-19551 - squid:4/squid: denial of service in HTTP request parsing CVE-2023-50269 - Resolves: RHEL-28611 - squid:4/squid: Denial of...
Oracle Linux 9 : squid (ELSA-2024-1376)
The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-1376 advisory. - Resolves: RHEL-19555 - squid: denial of service in HTTP request parsing CVE-2023-50269 - Resolves: RHEL-28614 - squid: Denial of Service in HTTP...
Debian dsa-5642 : php-dompdf-svg-lib - security update
The remote Debian 12 host has a package installed that is affected by multiple vulnerabilities as referenced in the dsa-5642 advisory. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5642-1...
squid: denial of service in HTTP request parsing
A flaw was found in Squid, which is susceptible to a Denial of Service DoS due to an Uncontrolled Recursion bug, specifically targeting HTTP Request parsing. Exploiting this issue involves a remote client initiating a DoS attack by sending an oversized X-Forwarded-For header when the...
squid: denial of service in HTTP request parsing
A flaw was found in Squid, which is susceptible to a Denial of Service DoS due to an Uncontrolled Recursion bug, specifically targeting HTTP Request parsing. Exploiting this issue involves a remote client initiating a DoS attack by sending an oversized X-Forwarded-For header when the...
squid: Denial of Service in HTTP Chunked Decoding
A flaw was found in Squid. This issue may allow a remote attacker to trigger an uncontrolled recursion bug when sending a specially crafted, chunked, encoded HTTP Message, resulting in a denial of service...
RHEL 8 : squid:4 (RHSA-2024:1375)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1375 advisory. Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: deni...
CVE-2024-26639
A vulnerability was found in mm, kmsan Kernel Memory Sanitizer component of Linux Kernel, causing infinite recursion due to a RCU Read-Copy Update critical section when accessing memory metadata. This recursion led to system instability and leads to DoS. Mitigation Red Hat has investigated whethe...
CVE-2024-26639
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...