5221 matches found
CVE-2020-13800
An infinite recursion flaw was found in the ati-vga emulator of the QEMU. The issue occurs in atimmread/write routines while accessing VGA registers, for certain values of the 'mmindex' variable. This flaw allows a guest user or process to crash the QEMU process, resulting in a denial of service...
Amazon Linux AMI : bind (ALAS-2020-1369)
The version of bind installed on the remote host is prior to 9.8.2-0.68.rc1.64. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1369 advisory. A malicious actor who intentionally exploits this lack of effective limitation on the number of fetches performed wh...
Amazon Linux 2 : xorg-x11-server (ALAS-2020-1433)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1433 advisory. It was discovered that libX11 does not properly validate input coming from the server, causing XListExtensions and XGetFontPath functions to produce an invalid list of elements that in turn make...
CVE-2018-21232
re2c before 2.0 has uncontrolled recursion that causes stack consumption in findfixedtags...
UBUNTU-CVE-2020-13164
In Wireshark 3.2.0 to 3.2.3, 3.0.0 to 3.0.10, and 2.6.0 to 2.6.16, the NFS dissector could crash. This was addressed in epan/dissectors/packet-nfs.c by preventing excessive recursion, such as for a cycle in the directory graph on a filesystem...
CVE-2020-13164
Wireshark vulnerable component: NFS dissector (packet-nfs.c) can crash due to excessive recursion in the NFS graph traversal. Affected versions include Wireshark 3.2.0–3.2.3, 3.0.0–3.0.10, and 2.6.0–2.6.16. The root cause is unbounded recursion when encountering cycles in the directory graph on a...
CVE-2020-13164
In Wireshark 3.2.0 to 3.2.3, 3.0.0 to 3.0.10, and 2.6.0 to 2.6.16, the NFS dissector could crash. This was addressed in epan/dissectors/packet-nfs.c by preventing excessive recursion, such as for a cycle in the directory graph on a filesystem...
CVE-2020-12825
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
CVE-2020-12825
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
AZL-36948 CVE-2020-12825 affecting package libcroco 0.6.13-6
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
AZL-11365 CVE-2020-12825 affecting package libcroco 0.6.13-6
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
Stack overflow
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
CVE-2020-12825
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
CVE-2020-12825
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
CVE-2020-12825
Removed by vendor...
CVE-2020-12825
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
CVE-2020-12825
CVE-2020-12825 affects libcroco
PT-2020-6929
Name of the Vulnerable Software and Affected Versions libcroco versions 0.6.13 and earlier Description The issue is related to the cr parser parse any core function in the cr-parser.c component of the libcroco library, which is used for working with cascading style sheets css2. It is associated...
PT-2020-6861 · Linux +5 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.8 Description: The issue is related to uncontrolled recursion in the lib/nlattr.c component of the Linux kernel. This can be exploited by attackers to cause a denial of service via a nested Netlink policy with...
CVE-2018-21232
re2c before 2.0 has uncontrolled recursion that causes stack consumption in findfixedtags...