Lucene search
K

28 matches found

OSV
OSV
added 2021/06/11 3:15 p.m.4 views

ALPINE-CVE-2021-28687

HVM soft-reset crashes toolstack libxl requires all data structures passed across its public interface to be initialized before use and disposed of afterwards by calling a specific set of functions. Many internal data structures also require this initialize / dispose discipline, but not all of...

5.5CVSS7AI score0.00314EPSS
Exploits0References1
OSV
OSV
added 2020/09/10 3:15 p.m.4 views

UBUNTU-CVE-2020-6097

An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert call resulting in denial-of-service. An attacker can send a sequence of malicious packets to trigger...

7.5CVSS7.1AI score0.02399EPSS
Exploits1References4
Oracle linux
Oracle linux
added 2020/09/03 12:0 a.m.33 views

dovecot security update

1:2.2.36-6.1 - fix CVE-2020-12100 resource exhaustion via deeply nested MIME parts 1871841 - fix CVE-2020-12673 out of bound reads in dovecot NTLM implementation 1871843 - fix CVE-2020-12674 crash due to assert in RPA implementation 1871842...

7.5CVSS2.4AI score0.06187EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2020/08/14 12:0 a.m.31 views

FreeBSD : mail/dovecot -- multiple vulnerabilities (87a07de1-e55e-4d51-bb64-8d117829a26a)

Aki Tuomi reports : Parsing mails with a large number of MIME parts could have resulted in excessive CPU usage or a crash due to running out of stack memory.. Dovecot's NTLM implementation does not correctly check message buffer size, which leads to reading past allocation which can lead to crash...

7.5CVSS6.6AI score0.08153EPSS
Exploits7References6
CVE
CVE
added 2018/05/24 1:0 p.m.78 views

CVE-2018-1000037

CVE-2018-1000037 affects MuPDF up to 1.12.0 and earlier, where multiple reachable assertions in MuPDF’s PDF parser can be exploited to cause a denial of service (assert crash) via a crafted file. The issue is tied to the PDF parser’s handling of crafted input, enabling a local impact when process...

5.5CVSS5.3AI score0.01553EPSS
Exploits1References14Affected Software1
Vulnrichment
Vulnrichment
added 2018/05/24 1:0 p.m.20 views

CVE-2018-1000037

In Artifex MuPDF 1.12.0 and earlier, multiple reachable assertions in the PDF parser allow an attacker to cause a denial of service assert crash via a crafted file...

6.9AI score0.01553EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2017/01/03 12:0 a.m.36 views

Fedora 25 : 1:dovecot (2016-daf90926d4)

Fixed crash in auth process when auth-policy was configured and authentication was aborted/failed without a username set. - director: If two users had different tags but the same hash, the users may have been redirected to the wrong tag's hosts. - Index files may have been thought incorrectly...

5.9CVSS6.3AI score0.48197EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2011/03/10 8:28 p.m.44 views

Moderate: Red Hat Security Advisory: openldap security and bug fix update

Updated openldap packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

4.6CVSS5.8AI score0.02959EPSS
Exploits0References2
Rows per page
Query Builder