Linux Distros Unpatched Vulnerability : CVE-2012-4460

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The serializing/deserializing functions in the qpid::framing::Buffer class in Apache Qpid 0.20 and earlier allow remote attackers to cause a denial of service...

Linux Distros Unpatched Vulnerability : CVE-2017-8804

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The xdrbytes and xdrstring functions in the GNU C Library aka glibc or libc6 2.25 mishandle failures of buffer deserialization, which allows remote attackers to...

PT-2021-2444

Name of the Vulnerable Software and Affected Versions: Apache Tomcat affected versions not specified Description: The issue is related to a configuration server implementation vulnerability in Apache Tomcat, which involves the recovery of unreliable data in memory due to buffer deserialization. A...

Security Bulletin: IBM MQ Appliance is affected by a GNU C library (glibc) vulnerability (CVE-2017-8804)

Summary IBM MQ Appliance has addressed a vulnerability in GNU C library glibc. Vulnerability Details CVEID: CVE-2017-8804 DESCRIPTION: glibc is vulnerable to a denial of service, caused by improper handling of buffer deserialization in the xdrbytes and xdrstring functions. By sending a...

CVE-2017-8804

DISPUTED The xdrbytes and xdrstring functions in the GNU C Library aka glibc or libc6 2.25 mishandle failures of buffer deserialization, which allows remote attackers to cause a denial of service virtual memory allocation, or memory consumption if an overcommit setting is not used via a crafted U...

Deserialization of untrusted data

DISPUTED The xdrbytes and xdrstring functions in the GNU C Library aka glibc or libc6 2.25 mishandle failures of buffer deserialization, which allows remote attackers to cause a denial of service virtual memory allocation, or memory consumption if an overcommit setting is not used via a crafted U...

CVE-2017-8804

The xdrbytes and xdrstring functions in the GNU C Library aka glibc or libc6 2.25 mishandle failures of buffer deserialization, which allows remote attackers to cause a denial of service virtual memory allocation, or memory consumption if an overcommit setting is not used via a crafted UDP packet...

CVE-2017-8804

The xdrbytes and xdrstring functions in the GNU C Library aka glibc or libc6 2.25 mishandle failures of buffer deserialization, which allows remote attackers to cause a denial of service virtual memory allocation, or memory consumption if an overcommit setting is not used via a crafted UDP packet...

CVE-2017-8804

CVE-2017-8804 affects glibc (libc6) 2.25 and permits denial of service via crafted UDP packets to port 111 due to mishandled failures in xdr_bytes/xdr_string during buffer deserialization. It is related to CVE-2017-8779 (RPC/BIND) which in other sources is described as a memory-exhaustion vulnera...