Lucene search
K

20 matches found

RedHat Linux
RedHat Linux
added 4 days ago8 views

389-ds-base: 389-ds-base: Heap buffer overflow in sasl_io_recv() via padded SASL UNBIND

A heap buffer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. After a successful SASL bind with integrity protection SSF 0, an authenticated attacker can send a specially crafted oversized LDAP UNBIND packet that is copied into a 512-byte heap receive buffer...

8.8CVSS6.1AI score0.00627EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/25 7:28 p.m.7 views

CVE-2026-42055

A flaw was found in NGINX. When NGINX is configured to proxy HTTP/2 traffic using the ngxhttpproxyv2module or ngxhttpgrpcmodule with specific settings, a remote, unauthenticated attacker can send specially crafted large headers. This can trigger a heap-based buffer overflow, leading to a restart ...

9.2CVSS6.5AI score0.03459EPSS
Exploits1References4
OSV
OSV
added 2026/06/22 5:47 a.m.3 views

BIT-NGINX-GATEWAY-2026-42055 NGINX ngx_http_proxy_v2_module and ngx_http_grpc_module vulnerability

NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttpproxyv2module and ngxhttpgrpcmodule modules. This vulnerability exists when the proxyhttpversion to 2 or grpcpass directives are used to proxy HTTP/2 traffic, the ignoreinvalidheaders directive is set to off, and the...

9.2CVSS6.3AI score0.03459EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/06/05 7:16 p.m.15 views

CVE-2026-42583

Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, Lz4FrameDecoder allocates a ByteBuf of size decompressedLength up to 32 MB per block before LZ4 runs. A peer only needs a 21-byte header plus compressedLength payload bytes - 22 bytes if...

7.5CVSS6.8AI score0.00429EPSS
Exploits1References1
OSV
OSV
added 2026/05/13 7:17 p.m.7 views

DEBIAN-CVE-2026-42583

Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, Lz4FrameDecoder allocates a ByteBuf of size decompressedLength up to 32 MB per block before LZ4 runs. A peer only needs a 21-byte header plus compressedLength payload bytes - 22 bytes if...

7.5CVSS5.8AI score0.00429EPSS
Exploits1References1
NVD
NVD
added 2026/02/14 4:15 p.m.4 views

CVE-2026-23157

In the Linux kernel, the following vulnerability has been resolved: btrfs: do not strictly require dirty metadata threshold for metadata writepages BUG There is an internal report that over 1000 processes are waiting at the ioscheduletimeout of balancedirtypages, causing a system hang and trigger...

5.5CVSS0.00125EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2025/11/29 12:23 a.m.5 views

SUSE CVE-2025-66382

In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time...

4CVSS6.8AI score0.00183EPSS
Exploits0References3
EUVD
EUVD
added 2025/11/28 9:30 a.m.5 views

EUVD-2025-199862

In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time...

2.9CVSS6.3AI score0.00183EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/11/28 8:46 a.m.4 views

CVE-2025-66382

A flaw was found in libexpat. This vulnerability allows a denial of service DoS by processing a crafted file with an approximate size of 2 MiB, leading to dozens of seconds of processing time...

5.5CVSS6.3AI score0.00183EPSS
Exploits0References4
OSV
OSV
added 2025/11/28 7:15 a.m.6 views

AZL-71054 CVE-2025-66382 affecting package expat 2.6.4-4

In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time...

5.5CVSS5.8AI score0.00183EPSS
Exploits0References1
OSV
OSV
added 2025/11/28 12:0 a.m.3 views

CVE-2025-66382

In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time...

2.9CVSS6.7AI score0.00183EPSS
Exploits0References6
OSV
OSV
added 2024/10/21 7:15 p.m.1 views

UBUNTU-CVE-2024-50017

In the Linux kernel, the following vulnerability has been resolved: x86/mm/identmap: Use gbpages only where full GB page should be mapped. When identpudinit uses only GB pages to create identity maps, large ranges of addresses not actually requested can be included in the resulting table; a 4K...

5.5CVSS6.2AI score0.0022EPSS
Exploits0References21
RedHat Linux
RedHat Linux
added 2023/11/29 1:51 p.m.4 views

squid: Denial of Service in HTTP Digest Authentication

Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication...

8.6CVSS6.1AI score0.85944EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/13 8:57 a.m.4 views

squid: Denial of Service in HTTP Digest Authentication

Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication...

8.6CVSS6.1AI score0.85944EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/08 10:27 a.m.2 views

squid: Denial of Service in HTTP Digest Authentication

Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication...

8.6CVSS6.1AI score0.85944EPSS
Exploits0References5
OSV
OSV
added 2023/11/03 8:15 a.m.6 views

AZL-31902 CVE-2023-46847 affecting package squid 5.7-5

Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication...

7.5CVSS7.6AI score0.85944EPSS
Exploits0References1
OSV
OSV
added 2023/11/03 8:15 a.m.2 views

DEBIAN-CVE-2023-46847

Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication...

7.5CVSS7.6AI score0.85944EPSS
Exploits0References1
OSV
OSV
added 2023/11/03 8:15 a.m.3 views

UBUNTU-CVE-2023-46847

Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication...

8.6CVSS7.5AI score0.85944EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2023/11/02 9:59 a.m.16 views

squid: Denial of Service in HTTP Digest Authentication

Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication...

8.6CVSS6.1AI score0.85944EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/02 9:40 a.m.12 views

squid: Denial of Service in HTTP Digest Authentication

Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication...

8.6CVSS6.1AI score0.85944EPSS
Exploits0References5
Rows per page
Query Builder