Lucene search
+L

130 matches found

RedHat Linux
RedHat Linux
added 2019/04/17 4:17 p.m.6 views

OpenJDK: Slow conversion of BigDecimal to long (Libraries, 8211936)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

7.5CVSS7.3AI score0.07437EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/04/17 3:51 p.m.9 views

OpenJDK: Slow conversion of BigDecimal to long (Libraries, 8211936)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

7.5CVSS7.3AI score0.07437EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/04/17 3:44 p.m.8 views

OpenJDK: Slow conversion of BigDecimal to long (Libraries, 8211936)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

7.5CVSS7.3AI score0.07437EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/04/17 3:44 p.m.110 views

Important: Red Hat Security Advisory: java-1.8.0-openjdk security and bug fix update

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.1CVSS6.7AI score0.37618EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2019/02/13 12:0 a.m.276 views

openSUSE Security Update : java-11-openjdk (openSUSE-2019-161)

This update for java-11-openjdk to version 11.0.2+7 fixes the following issues : Security issues fixed : - CVE-2019-2422: Better FileChannel transfer performance bsc1122293 - CVE-2019-2426: Improve web server connections - CVE-2018-11212: Improve JPEG processing bsc1122299 - Better route routing ...

6.5CVSS7AI score0.05074EPSS
Exploits1References6
OPENSUSE Linux
OPENSUSE Linux
added 2019/02/12 12:0 a.m.183 views

Security update for java-11-openjdk (important)

openSUSE Security Update: Security update for java-11-openjdk Announcement ID: openSUSE-SU-2019:0161-1 Rating: important References: 1120431 1122293 1122299 Cross-References: CVE-2018-11212 CVE-2019-2422 CVE-2019-2426 Affected Products: openSUSE Leap 15.0 An update that fixes three vulnerabilitie...

6.5CVSS8.3AI score0.05074EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.30 views

openSUSE Security Update : ruby (openSUSE-SU-2011:0556-1)

A memory corruption in the BigDecimal class potentially allowed attackers to execute arbitrary code CVE-2011-0188. Affects 64bit platforms only. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

6.8CVSS6.3AI score0.03025EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2012/09/10 12:0 a.m.26 views

Slackware: Security Advisory (SSA:2009-170-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS9.5AI score0.08375EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.42 views

Scientific Linux Security Update : ruby on SL4.x, SL5.x i386/x86_64

A flaw was found in the way the Ruby POP module processed certain APOP authentication requests. By sending certain responses when the Ruby APOP module attempted to authenticate using APOP against a POP server, a remote attacker could, potentially, acquire certain portions of a user's authenticati...

6.8CVSS6.9AI score0.08375EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2012/02/28 12:0 a.m.24 views

Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : ruby1.8 vulnerabilities (USN-1377-1)

Drew Yao discovered that the WEBrick HTTP server was vulnerable to cross-site scripting attacks when displaying error pages. A remote attacker could use this flaw to run arbitrary web script. CVE-2010-0541 Drew Yao discovered that Ruby's BigDecimal module did not properly allocate memory on 64-bi...

7.8CVSS7AI score0.04246EPSS
Exploits5References8
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.40 views

CentOS Update for ruby CESA-2009:1140 centos5 i386

Check for the Version of ruby OpenVAS Vulnerability Test CentOS Update for ruby CESA-2009:1140 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

6.8CVSS9AI score0.08375EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2011/07/08 12:0 a.m.27 views

RedHat Update for ruby RHSA-2011:0908-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.5CVSS7.2AI score0.15684EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2011/06/29 12:0 a.m.57 views

RHEL 5 : ruby (RHSA-2011:0909)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0909 advisory. - ruby WEBrick log escape sequence CVE-2009-4492 - Ruby WEBrick javascript injection flaw CVE-2010-0541 - ruby: memory corruption in...

7.5CVSS6.8AI score0.15684EPSS
Exploits4References17
RedHat Linux
RedHat Linux
added 2011/06/28 5:30 p.m.3 views

ruby: memory corruption in BigDecimal on 64bit platforms

The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and earlier, as used on Apple Mac OS X before 10.6.7 and other platforms, does not properly allocate memory, which allows context-dependent attackers to execute arbitrary code or cause a denial of service applicati...

6.8CVSS6.8AI score0.03025EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2011/06/28 5:27 p.m.6 views

ruby: memory corruption in BigDecimal on 64bit platforms

The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and earlier, as used on Apple Mac OS X before 10.6.7 and other platforms, does not properly allocate memory, which allows context-dependent attackers to execute arbitrary code or cause a denial of service applicati...

6.8CVSS6.8AI score0.03025EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2011/06/28 5:21 p.m.6 views

ruby: memory corruption in BigDecimal on 64bit platforms

The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and earlier, as used on Apple Mac OS X before 10.6.7 and other platforms, does not properly allocate memory, which allows context-dependent attackers to execute arbitrary code or cause a denial of service applicati...

6.8CVSS6.8AI score0.03025EPSS
Exploits0References4
NVD
NVD
added 2011/03/23 2:0 a.m.32 views

CVE-2011-0188

The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and earlier, as used on Apple Mac OS X before 10.6.7 and other platforms, does not properly allocate memory, which allows context-dependent attackers to execute arbitrary code or cause a denial of service applicati...

6.8CVSS7.2AI score0.03025EPSS
Exploits0References10
Prion
Prion
added 2011/03/23 2:0 a.m.30 views

Integer overflow

The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and earlier, as used on Apple Mac OS X before 10.6.7 and other platforms, does not properly allocate memory, which allows context-dependent attackers to execute arbitrary code or cause a denial of service applicati...

6.8CVSS7.8AI score0.03025EPSS
Exploits0References10Affected Software1
CVE
CVE
added 2011/03/23 1:0 a.m.117 views

CVE-2011-0188

CVE-2011-0188 concerns memory allocation in the BigDecimal implementation (bigdecimal.c) for Ruby 1.9.2-p136 and earlier, used on macOS before 10.6.7 and other platforms. The issue is that VpMemAlloc may misallocate memory for very large BigDecimal values in 64-bit processes, enabling context-dep...

6.8CVSS5.7AI score0.03025EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2011/03/23 1:0 a.m.21 views

CVE-2011-0188

The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and earlier, as used on Apple Mac OS X before 10.6.7 and other platforms, does not properly allocate memory, which allows context-dependent attackers to execute arbitrary code or cause a denial of service applicati...

5.8AI score0.03025EPSS
Exploits0References10
Rows per page
Query Builder