Lucene search
K

201 matches found

RedHat Linux
RedHat Linux
added 2024/10/16 3:2 p.m.5 views

JDK: Unbounded allocation leads to out-of-memory error (8331446)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17.0.12, 21.0.4, 23;...

3.7CVSS7.4AI score0.01157EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/10/16 3:1 p.m.27 views

Moderate: Red Hat Security Advisory: OpenJDK 8u432 Security Update for Portable Linux Builds

An update is now available for OpenJDK. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References...

7.1CVSS6.7AI score0.01157EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/10/16 3:1 p.m.4 views

JDK: Unbounded allocation leads to out-of-memory error (8331446)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17.0.12, 21.0.4, 23;...

3.7CVSS7.4AI score0.01157EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/10/16 2:33 p.m.5 views

JDK: Unbounded allocation leads to out-of-memory error (8331446)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17.0.12, 21.0.4, 23;...

3.7CVSS7.4AI score0.01157EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/10/16 12:25 p.m.4 views

JDK: Unbounded allocation leads to out-of-memory error (8331446)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17.0.12, 21.0.4, 23;...

3.7CVSS7.4AI score0.01157EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/10/16 11:16 a.m.6 views

JDK: Unbounded allocation leads to out-of-memory error (8331446)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17.0.12, 21.0.4, 23;...

3.7CVSS7.4AI score0.01157EPSS
Exploits0References4
OSV
OSV
added 2024/10/16 12:0 a.m.18 views

ALSA-2024:8117 Moderate: java-1.8.0-openjdk security update

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function CVE-2023-48161 JDK: Array indexing integer overflow 8328544 CVE-2024-21210 JD...

7.1CVSS6AI score0.01157EPSS
Exploits1References13
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.19 views

RHEL 8 / 9 : java-21-openjdk (RHSA-2024:8127)

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:8127 advisory. The OpenJDK 21 runtime environment. Security Fixes: giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function...

7.1CVSS6.7AI score0.01157EPSS
Exploits1References13
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.20 views

RHEL 7 : java-11-openjdk (RHSA-2024:8120)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:8120 advisory. The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixe...

7.1CVSS6.7AI score0.01157EPSS
Exploits1References13
AlmaLinux
AlmaLinux
added 2024/10/16 12:0 a.m.35 views

Moderate: java-1.8.0-openjdk security update

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function CVE-2023-48161 JDK: Array indexing integer overflow 8328544 CVE-2024-21210 JD...

7.1CVSS7AI score0.01157EPSS
Exploits1References12
AlmaLinux
AlmaLinux
added 2024/10/16 12:0 a.m.32 views

Moderate: java-17-openjdk security update

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixes: giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function CVE-2023-48161 JDK: Array indexing integer overflow 8328544 CVE-2024-21210 JDK...

7.1CVSS7AI score0.01157EPSS
Exploits1References12
RedHat Linux
RedHat Linux
added 2024/08/15 8:11 p.m.7 views

netty-codec-http: Allocation of Resources Without Limits or Throttling

A flaw was found in the io.netty:netty-codec-http package. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling issues due to the accumulation of data in the HttpPostRequestDecoder. The decoder cumulates bytes in the undecodedChunk buffer until ...

5.3CVSS7.2AI score0.0138EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2024/05/14 9:7 a.m.5 views

commons-compress: OutOfMemoryError unpacking broken Pack200 file

An allocation of resources without limits or throttling vulnerability was found in Apache Commons Compress. This issue can lead to an out-of-memory error...

5.5CVSS6.8AI score0.00898EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/04/03 12:0 a.m.4 views

PT-2024-2636 · Unknown · H2 Library

Name of the Vulnerable Software and Affected Versions: h2 library affected versions not specified Description: The issue is related to unbounded resource allocation in the h2 library of the Rust programming language in a Tokio environment. Exploitation of this issue could allow a remote attacker ...

5CVSS7.1AI score
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/05/15 12:0 a.m.37 views

Oracle Linux 9 : Image / Builder (ELSA-2023-2204)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-2204 advisory. cockpit-composer 45-1.0.1 - Make per page documentation links point to Oracle Linux Orabug: 32013095, Orabug:34398922 45-1 - New upstream release 44-1 ...

7.5CVSS7.3AI score0.05623EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2023/05/11 8:32 p.m.32 views

Boxo bitswap/server: DOS unbounded persistent memory leak

Impact An attacker is able allocate arbitrarily many bytes in the Bitswap server by sending many WANTBLOCK and or WANTHAVE requests which are queued in an unbounded queue, with allocations that persist even if the connection is closed. This affects users accepting untrusted connections with the...

8.2CVSS6.3AI score0.00856EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2021/05/26 10:15 p.m.1 views

DEBIAN-CVE-2021-3527

A flaw was found in the USB redirector device usb-redir of QEMU. Small USB packets are combined into a single, large transfer request, to reduce the overhead and improve performance. The combined size of the bulk transfer is used to dynamically allocate a variable length array VLA on the stack...

5.5CVSS6.4AI score0.00371EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/08/15 9:4 a.m.3 views

OpenJDK: Unbounded memory allocation during deserialization in Collections (Utilities, 8213432)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Utilities. Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

5.3CVSS7.3AI score0.04351EPSS
Exploits0References4
OSV
OSV
added 2019/01/11 12:0 a.m.3 views

UBUNTU-CVE-2018-16865

An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when many entries are sent to the journal socket. A local attacker, or a remote one if systemd-journal-remote is used, may use this flaw to crash...

7.8CVSS7AI score0.02958EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2018/10/30 9:42 a.m.6 views

Qemu: memory exhaustion through framebuffer update request message in VNC server

VNC server implementation in Quick Emulator QEMU was found to be vulnerable to an unbounded memory allocation issue, as it did not throttle the framebuffer updates sent to its client. If the client did not consume these updates, VNC server allocates growing memory to hold onto this data. A...

7.8CVSS7.2AI score0.02843EPSS
Exploits0References4
Rows per page
Query Builder