1055 matches found
CVE-2023-50269
Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1 through 5.9, and versions 6.0.1 through 6.5, Squid may be vulnerable to a Denial of Service attack against HTTP Request parsing. This problem allows a remote client to...
CVE-2023-50269
Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1 through 5.9, and versions 6.0.1 through 6.5, Squid may be vulnerable to a Denial of Service attack against HTTP Request parsing. This problem allows a remote client to...
Moderate: Red Hat Security Advisory: Migration Toolkit for Runtimes bug fix, enhancement and security update
Migration Toolkit for Runtimes 1.2.3 release Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...
SUSE-SU-2023:4562-1 Security update for poppler
This update for poppler fixes the following issues: - CVE-2019-9545: Fixed an uncontrolled recursion issue that could cause a crash bsc1128114. - CVE-2022-37052: Fixed a crash that could be triggered when opening a crafted file bsc1214726. - CVE-2020-36023: Fixed a stack bugger overflow in...
Security Bulletin: IBM Storage Fusion may be vulnerable to Denial of Service via use of golang.org/x/net, x/crypto, and x/text (CVE-2022-30633, CVE-2022-27664, CVE-2022-28131, CVE-2022-41721, CVE-2021-43565, CVE-2022-27191, CVE-2022-32149)
Summary Golang's x/net, x/crypto and x/text are used by IBM Storage Fusion for networking, cryptography and internationalization. Vulnerabilities in these libraries include Inconsistent Interpretation of HTTP Requests, Uncontrolled Recursion, and Missing Release of Resource that could lead to a...
Squid DoS Vulnerability (GHSA-72c2-c3wm-8qxc, SQUID-2024:1)
Squid is prone to a denial of service DoS vulnerability in the HTTP Chunked Decoding. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
SUSE SLES15 / openSUSE 15 Security Update : poppler (SUSE-SU-2023:3983-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3983-1 advisory. - Uncontrolled Recursion in pdfinfo, and pdftops in poppler 0.89.0 allows remote attackers to cause a denial of servi...
SUSE-SU-2023:3981-1 Security update for poppler
This update for poppler fixes the following issues: - CVE-2020-23804: Fixed uncontrolled recursion in pdfinfo and pdftops bsc1215422. - CVE-2020-36024: Fixed NULL Pointer Deference in FoFiType1C:convertToType1 bsc1214257. - CVE-2022-37050: Fixed denial-of-service via savePageAs in PDFDoc.c...
CVE-2020-23804
A vulnerability was found in Poppler, where a uncontrolled recursion in pdfinfo, and pdftops allows remote attackers to cause a denial of service via crafted input...
CVE-2023-4512 Uncontrolled Recursion in Wireshark
CBOR dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or crafted capture file...
DEBIAN-CVE-2020-23804
Uncontrolled Recursion in pdfinfo, and pdftops in poppler 0.89.0 allows remote attackers to cause a denial of service via crafted input...
CVE-2020-23804
Uncontrolled Recursion in pdfinfo, and pdftops in poppler 0.89.0 allows remote attackers to cause a denial of service via crafted input...
Input validation
Uncontrolled Recursion in pdfinfo, and pdftops in poppler 0.89.0 allows remote attackers to cause a denial of service via crafted input...
CVE-2020-23804
Uncontrolled Recursion in pdfinfo, and pdftops in poppler 0.89.0 allows remote attackers to cause a denial of service via crafted input...
CVE-2020-23804
Uncontrolled Recursion in pdfinfo, and pdftops in poppler 0.89.0 allows remote attackers to cause a denial of service via crafted input...
CVE-2020-23804
CVE-2020-23804 affects the poppler PDF rendering library (pdfinfo/pdfops) with an uncontrolled recursion/stack overflow in the XRef::readXRefTable path, enabling a remote attacker to cause denial of service via crafted PDFs. The issue is present in Poppler 0.89.0 and related lines of the release ...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : re2c (SUSE-SU-2023:3353-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:3353-1 advisory. - re2c before 2.0 has uncontrolled recursion that causes stack consumption in findfixedtags. CVE-2018-212...
SUSE-SU-2023:3353-1 Security update for re2c
This update for re2c fixes the following issues: - CVE-2018-21232: Fixed excess stack consumption due to uncontrolled recursion in findfixedtags bsc1170890...
PT-2023-5943 · Poppler +10 · Poppler +10
Name of the Vulnerable Software and Affected Versions: poppler version 20.12.1 Description: The issue is related to the FoFiType1C::convertToType1 function in the poppler library for rendering PDF files. It is associated with uncontrolled recursion, which can be exploited by attackers to cause a...
Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform security update
An update is now available for Red Hat JBoss Enterprise Application Platform 7.4 on RHEL 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...