263 matches found
CVE-2024-33862
Concisely, CVE-2024-33862 affects OPCFoundation.NetStandard.Opc.Ua.Core prior to 1.05.374.54. The issue is a buffer-management vulnerability that can be triggered by receiving an excessive number of messages from a remote source, potentially exhausting memory resources and causing a DoS. The in-s...
CVE-2024-33862
A buffer-management vulnerability in OPC Foundation OPCFoundation.NetStandard.Opc.Ua.Core before 1.05.374.54 could allow remote attackers to exhaust memory resources. It is triggered when the system receives an excessive number of messages from a remote source. This could potentially lead to a...
PT-2024-24281 · Ibm · Ibm Mq
Name of the Vulnerable Software and Affected Versions: IBM MQ versions 9.0 LTS through 9.3 CD Description: The issue is caused by an error processing messages when an API Exit using MQBUFMH is used, leading to a denial of service attack in certain configurations. Recommendations: For IBM MQ...
UBUNTU-CVE-2021-47561
In the Linux kernel, the following vulnerability has been resolved: i2c: virtio: disable timeout handling If a timeout is hit, it can result is incorrect data on the I2C bus and/or memory corruptions in the guest since the device can still be operating on the buffers it was given while the guest...
SUSE CVE-2022-48669
In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: Fix potential memleak in paprgetattr buf is allocated in paprgetattr, and krealloc of buf could fail. We need to free the original buf in the case of failure...
CVE-2024-2397
Due to a bug in packet data buffers management, the PPP printer in tcpdump can enter an infinite loop when reading a crafted DLTPPPSERIAL .pcap savefile. This problem does not affect any tcpdump release, but it affected the git master branch from 2023-06-05 to 2024-03-21...
CVE-2024-2397
Due to a bug in packet data buffers management, the PPP printer in tcpdump can enter an infinite loop when reading a crafted DLTPPPSERIAL .pcap savefile. This problem does not affect any tcpdump release, but it affected the git master branch from 2023-06-05 to 2024-03-21...
Rocky Linux 8 : squid:4 (RLSA-2021:4292)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:4292 advisory. - An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to a buffer-management bug, it allows a denial of service. When resolving a...
Amazon Linux 2 : squid (ALASSQUID4-2023-003)
The version of squid installed on the remote host is prior to 4.15-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2SQUID4-2023-003 advisory. In Squid 3.x through 3.5.28, 4.x through 4.17, and 5.x before 5.6, due to improper buffer management, a Denial of Service can occ...
Important: squid
Issue Overview: In Squid 3.x through 3.5.28, 4.x through 4.17, and 5.x before 5.6, due to improper buffer management, a Denial of Service can occur when processing long Gopher server responses. CVE-2021-46784 Affected Packages: squid Note: This advisory is applicable to Amazon Linux 2 - Squid4...
The vulnerability of the do_journal_end() function in the fs/reiserfs/journal.c file of the reiserfs file system in the RED OS kernel allows a attacker to cause a service failure.
The vulnerability of the dojournalend function in the fs/reiserfs/journal.c file of the reiserfs file system in the RED OS kernel is related to the failure to manage the allocated buffer after it is released. Exploiting this vulnerability could allow an attacker to cause a service failure...
USN-6167-1: QEMU vulnerabilities
It was discovered that QEMU did not properly manage the guest drivers when shared buffers are not allocated. A malicious guest driver could use this issue to cause QEMU to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 20.04 LTS, Ubunt...
AlmaLinux 8 : wayland (ALSA-2023:2786)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:2786 advisory. - An internal reference count is held on the buffer pool, incremented every time a new buffer is created from the pool. The reference count is maintained as an int...
Juniper Junos OS DoS (JSA70195)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA70195 advisory. - When sFlow is enabled and it monitors a packet forwarded via ECMP, a buffer management vulnerability in the dcpfe process of Juniper Networks Junos OS on QFX10K Series...
Amazon Linux AMI : squid (ALAS-2023-1687)
The version of squid installed on the remote host is prior to 3.5.20-17.44. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1687 advisory. An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to a buffer-management bug, it allows a denial of...
Medium: squid
Issue Overview: An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to a buffer-management bug, it allows a denial of service. When resolving a request with the urn: scheme, the parser leaks a small amount of memory. However, there is an unspecified attack methodology that can...
Amazon Linux 2 : squid (ALAS-2023-1950)
The version of squid installed on the remote host is prior to 3.5.20-17. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-1950 advisory. An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to a buffer-management bug, it allows a denial of...
K3066: OpenSSH buffer management vulnerability CA-2003-24
Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...
Medium: squid
Issue Overview: An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to a buffer-management bug, it allows a denial of service. When resolving a request with the urn: scheme, the parser leaks a small amount of memory. However, there is an unspecified attack methodology that can...
SUSE CVE-2003-0693
A "buffer management error" in bufferappendspace of buffer.c for OpenSSH before 3.7 may allow remote attackers to execute arbitrary code by causing an incorrect amount of memory to be freed and corrupting the heap, a different vulnerability than CVE-2003-0695...