CVE-2023-50269 SQUID-2023:10 Denial of Service in HTTP Request parsing

Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1 through 5.9, and versions 6.0.1 through 6.5, Squid may be vulnerable to a Denial of Service attack against HTTP Request parsing. This problem allows a remote client to...

CVE-2023-50269 SQUID-2023:10 Denial of Service in HTTP Request parsing

Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1 through 5.9, and versions 6.0.1 through 6.5, Squid may be vulnerable to a Denial of Service attack against HTTP Request parsing. This problem allows a remote client to...

CVE-2023-50269

Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1 through 5.9, and versions 6.0.1 through 6.5, Squid may be vulnerable to a Denial of Service attack against HTTP Request parsing. This problem allows a remote client to...

CVE-2023-50269 SQUID-2023:10 Denial of Service in HTTP Request parsing

Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1 through 5.9, and versions 6.0.1 through 6.5, Squid may be vulnerable to a Denial of Service attack against HTTP Request parsing. This problem allows a remote client to...

Moderate: Red Hat Security Advisory: Migration Toolkit for Runtimes bug fix, enhancement and security update

Migration Toolkit for Runtimes 1.2.3 release Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

SUSE-SU-2023:4562-1 Security update for poppler

This update for poppler fixes the following issues: - CVE-2019-9545: Fixed an uncontrolled recursion issue that could cause a crash bsc1128114. - CVE-2022-37052: Fixed a crash that could be triggered when opening a crafted file bsc1214726. - CVE-2020-36023: Fixed a stack bugger overflow in...

Security Bulletin: IBM Storage Fusion may be vulnerable to Denial of Service via use of golang.org/x/net, x/crypto, and x/text (CVE-2022-30633, CVE-2022-27664, CVE-2022-28131, CVE-2022-41721, CVE-2021-43565, CVE-2022-27191, CVE-2022-32149)

Summary Golang's x/net, x/crypto and x/text are used by IBM Storage Fusion for networking, cryptography and internationalization. Vulnerabilities in these libraries include Inconsistent Interpretation of HTTP Requests, Uncontrolled Recursion, and Missing Release of Resource that could lead to a...

The vulnerability of the Catalog::findDestInTree() function in PDF viewing software called Xpdf, which allows a hacker to cause a service failure.

The vulnerability of the Catalog::findDestInTree function in PDF viewing software called Xpdf is related to an uncontrolled recursion. Exploiting this vulnerability allows attackers to cause service failures...

The vulnerability of the `find_abstract_instance` function in the `bfd/dwarf2.c` component of the GNU Binutils development environment allows a attacker to cause a service failure.

The vulnerability of the findabstractinstance function in the bfd/dwarf2.c component of the GNU Binutils development environment is related to an uncontrolled recursion. Exploiting this vulnerability allows a malicious actor to trigger a service failure using a specially created ELF file...

The vulnerability of the libiberty/cp-demangle.c component of the GNU Binutils development environment, related to an uncontrolled recursion, allows a attacker to cause a service failure.

The vulnerability of the libiberty/cp-demangle.c component of the GNU Binutils development environment is related to an uncontrolled recursion. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

The vulnerability in the cr parser_parse_any_core function of the cr-parser.c library, which is used for working with cascade CSS2 Libcroco tables, allows a attacker to compromise the integrity of data and also cause service failures.

The vulnerability of the cr parserparseanycore function in the cr-parser.c library, which is used for working with cascading CSS2 Libcroco tables, is related to an uncontrolled recursion. Exploiting this vulnerability could allow a malicious actor to compromise data integrity and cause service...

The vulnerability of the OpenImageIO image processing library, related to uncontrolled recursion, allows a hacker to cause a service failure.

The vulnerability of the OpenImageIO image processing library is related to uncontrolled recursion. Exploiting this vulnerability could allow a malicious actor to cause service interruptions through the use of a specially created image file...

Squid DoS Vulnerability (GHSA-72c2-c3wm-8qxc, SQUID-2024:1)

Squid is prone to a denial of service DoS vulnerability in the HTTP Chunked Decoding. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

The vulnerability of the `FoFiType1C::convertToType1` function in the Poppler PDF rendering library allows a attacker to cause a service failure.

The vulnerability of the FoFiType1C::convertToType1 function in the Poppler PDF rendering library is related to an uncontrolled recursion. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the Poppler library for rendering PDF files, related to uncontrolled recursion, allows attackers to trigger service interruptions.

The vulnerability of the Poppler library for rendering PDF files is related to uncontrolled recursion. Exploiting this vulnerability could allow an attacker, operating remotely, to cause service interruptions...

SUSE SLES15: libpoppler-cpp0 / libpoppler-devel / libpoppler-glib-devel / etc (SUSE-SU-2023:3983-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3983-1 advisory. - CVE-2020-23804: Fixed uncontrolled recursion in pdfinfo and pdftops bsc1215422. - CVE-2020-36024: Fixed NULL Pointe...

SUSE-SU-2023:3981-1 Security update for poppler

This update for poppler fixes the following issues: - CVE-2020-23804: Fixed uncontrolled recursion in pdfinfo and pdftops bsc1215422. - CVE-2020-36024: Fixed NULL Pointer Deference in FoFiType1C:convertToType1 bsc1214257. - CVE-2022-37050: Fixed denial-of-service via savePageAs in PDFDoc.c...

The vulnerability of the DNS-server BIND daemon, which allows a hacker to cause a service failure.

The vulnerability of the DNS-server BIND daemon is related to the escape of operations beyond the buffer in memory due to uncontrolled recursion during the processing of incoming packets. Exploiting this vulnerability allows a malicious actor to cause service failures by sending specially crafted...

The vulnerability of the Wireshark traffic analyzer, caused by uncontrolled recursion, allows a hacker to trigger a service failure.

The vulnerability of the Wireshark traffic analyzer is caused by an uncontrolled recursion. Exploiting this vulnerability allows a malicious actor to cause service interruptions remotely...

The vulnerability of the Netty network programming framework is related to an uncontrolled recursion, which allows attackers to cause service failures.

The vulnerability of the Netty network programming framework is related to an uncontrolled recursion. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause service failures...