7041 matches found
CVE-2025-0395
When the assert function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size...
CVE-2025-0395
When the assert function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size...
CVE-2025-0395
When the assert function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size...
CVE-2025-0395
When the assert function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size...
CVE-2025-0395
Summary (CVE-2025-0395) : The GNU C Library (glibc) versions 2.13 to 2.40 contain a buffer overflow in the assert() failure path where the failure message and size information are not allocated sufficiently, potentially overflowing the heap if the message size aligns to a page boundary. Connected...
redis: Integer overflow in the Redis HRANDFIELD and ZRANDMEMBER commands may lead to denial-of-service
A flaw was found in Redis, an in-memory database that persists on disk. This flaw allows authenticated users to issue an HRANDFIELD or ZRANDMEMBER command with specially crafted arguments to trigger a denial of service by crashing Redis with an assertion failure...
Signature Bypass
github.com/dexidp/dex is vulnerable to Signature Bypass. The vulnerability is due to issues with XML encoding in the underlying Go library by using the xml-roundtrip-validator from Mattermost, which allows an attacker to bypass the signature verification process in SAML assertions...
CVE-2024-24430
A reachable assertion in the mmeuefindbyimsi function of Open5GS = 2.6.4 allows attackers to cause a Denial of Service DoS via a crafted NAS packet...
CVE-2023-37005
Open5GS MME <= 2.6.4 is affected by an assertion that can be remotely triggered via a malformed ASN.1 packet on the S1AP interface. An attacker can send an Initial Context Setup Failure message missing the required MME_UE_S1AP_ID field, which may repeatedly crash the MME and cause denial of se...
CVE-2023-37022
Open5GS MME versions = 2.6.4 contain a reachable assertion in the UE Context Release Request packet handler. A packet containing an invalid MMEUES1APID field causes Open5gs to crash; an attacker may repeatedly send such packets to cause denial of service...
CVE-2023-37023
Open5GS MME versions = 2.6.4 contain a reachable assertion in the Uplink NAS Transport packet handler. A packet missing its MMEUES1APID field causes Open5gs to crash; an attacker may repeatedly send such packets to cause denial of service...
CVE-2023-37023
Open5GS MME versions
CVE-2023-37023
Open5GS MME versions = 2.6.4 contain a reachable assertion in the Uplink NAS Transport packet handler. A packet missing its MMEUES1APID field causes Open5gs to crash; an attacker may repeatedly send such packets to cause denial of service...
CVE-2023-37009
Open5GS MME versions = 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a Handover Notification message missing a required MMEUES1APID field to repeatedly crash the MME, resulting in denial of service...
CVE-2024-24427
A reachable assertion in the amfuesetsuci function of Open5GS = 2.6.4 allows attackers to cause a Denial of Service DoS via a crafted NAS packet...
CVE-2024-24427
A reachable assertion in the amfuesetsuci function of Open5GS = 2.6.4 allows attackers to cause a Denial of Service DoS via a crafted NAS packet...
CVE-2023-37029
Magma CVE-2023-37029 affects Magma MME in versions
CVE-2024-24420
A reachable assertion in the decodelinkedtiie function of Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows attackers to cause a Denial of Service DoS via a crafted NAS packet...
CVE-2024-57923
In the Linux kernel, the following vulnerability has been resolved: btrfs: zlib: fix availin bytes for s390 zlib HW compression path Since the input data length passed to zlibcompressfolios can be arbitrary, always setting strm.availin to a multiple of PAGESIZE may cause read-in bytes to exceed t...
CVE-2024-57924
In the Linux kernel, the following vulnerability has been resolved: fs: relax assertions on failure to encode file handles Encoding file handles is usually performed by a filesystem encodefh method that may fail for various reasons. The legacy users of exportfsencodefh, namely, nfsd and...