Lucene search
K

44 matches found

Vulnrichment
Vulnrichment
added 2025/12/04 12:0 a.m.3 views

CVE-2025-65637

A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer to log a single-line payload larger than 64KB without newline characters. Due to limitations in the internal bufio.Scanner, the read fails with "token too long" and the writer pipe is closed, leaving...

6.3AI score0.00585EPSS
Exploits1References8
Packet Storm News
Packet Storm News
added 2025/09/30 12:0 a.m.5 views

From Trace to Line: LLM Agent for Real-World OSS Vulnerability Localization

Large language models show promise for vulnerability discovery, yet prevailing methods inspect code in isolation, struggle with long contexts, and focus on coarse function- or file-level detections - offering limited actionable guidance to engineers who need precise line-level localization and...

7AI score
Exploits0
Snyk
Snyk
added 2025/08/06 1:44 p.m.2 views

Heap-based Buffer Overflow

Overview nvidia-pytriton is a PyTriton - Flask/FastAPI-like interface to simplify Triton's deployment in Python environments. Affected versions of this package are vulnerable to Heap-based Buffer Overflow through the HTTP/Sagemaker request handler components when parsing chunked HTTP bodies. An...

9.8CVSS6.3AI score0.0196EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.3 views

PT-2025-49116

Name of the Vulnerable Software and Affected Versions logrus versions prior to 1.8.3 logrus versions 1.9.0 logrus versions 1.9.2 Description A denial-of-service issue exists in logrus when utilizing Entry.Writer to log a single-line payload exceeding 64KB without newline characters. The internal...

8.7CVSS6.5AI score0.00585EPSS
Exploits1References40
OSV
OSV
added 2024/08/02 11:8 a.m.4 views

OESA-2024-1927 exim security update

Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...

7.5CVSS6.6AI score0.03661EPSS
Exploits1References3
OSV
OSV
added 2024/08/02 11:8 a.m.5 views

OESA-2024-1928 exim security update

Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...

5.3CVSS6.8AI score0.01072EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2024/06/26 1:32 p.m.5 views

Astra Linux – Vulnerability in exim4

Before version 4.97.1, Exim allowed SMTP smuggling in certain pipeline/chunking configurations. Remote attackers could use a known exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, thereby bypassing an SPF protection mechanism. This issue arises because Exim...

5.3CVSS6.8AI score0.01072EPSS
Exploits1References3
OSV
OSV
added 2024/06/04 3:19 p.m.25 views

GO-2024-2597 Integer overflow in chunking helper causes dispatching to miss elements or panic in github.com/authzed/spicedb

Integer overflow in chunking helper causes dispatching to miss elements or panic in github.com/authzed/spicedb...

9.1CVSS7.1AI score0.00456EPSS
Exploits0References3
OSV
OSV
added 2024/03/01 11:32 p.m.16 views

GHSA-H3M7-RQC4-7H9P Integer overflow in chunking helper causes dispatching to miss elements or panic

Any SpiceDB cluster with any schema where a resource being checked has more than 65535 relationships for the same resource and subject type is affected by this problem. The issue may also lead to a panic rendering the server unavailable The following API methods are affected: - CheckPermission -...

7.3CVSS7AI score0.00456EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2024/03/01 11:32 p.m.29 views

Integer overflow in chunking helper causes dispatching to miss elements or panic

Any SpiceDB cluster with any schema where a resource being checked has more than 65535 relationships for the same resource and subject type is affected by this problem. The issue may also lead to a panic rendering the server unavailable The following API methods are affected: - CheckPermission -...

9.1CVSS7AI score0.00456EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2024/03/01 9:15 p.m.27 views

Integer overflow

SpiceDB is an open source, Google Zanzibar-inspired database for creating and managing security-critical application permissions. Integer overflow in chunking helper causes dispatching to miss elements or panic. Any SpiceDB cluster with any schema where a resource being checked has more than 6553...

3.2CVSS7.5AI score0.00456EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/01 9:1 p.m.16 views

CVE-2024-27101 Integer overflow in chunking helper causes dispatching to miss elements or panic

SpiceDB is an open source, Google Zanzibar-inspired database for creating and managing security-critical application permissions. Integer overflow in chunking helper causes dispatching to miss elements or panic. Any SpiceDB cluster with any schema where a resource being checked has more than 6553...

7.3CVSS6.8AI score0.00456EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/03/01 9:1 p.m.53 views

CVE-2024-27101 Integer overflow in chunking helper causes dispatching to miss elements or panic

SpiceDB is an open source, Google Zanzibar-inspired database for creating and managing security-critical application permissions. Integer overflow in chunking helper causes dispatching to miss elements or panic. Any SpiceDB cluster with any schema where a resource being checked has more than 6553...

7.3CVSS7.3AI score0.00456EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/11 12:0 a.m.41 views

Fedora 38 : exim (2024-e0841c83bb)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-e0841c83bb advisory. Security fix for CVE-2023-51766. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...

5.3CVSS7.3AI score0.01072EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/12/25 2:10 a.m.3 views

SUSE CVE-2023-51766

Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports . but...

5.3CVSS6.9AI score0.01072EPSS
Exploits1References5
OSV
OSV
added 2023/12/24 6:15 a.m.2 views

DEBIAN-CVE-2023-51766

Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports . but...

5.3CVSS7.2AI score0.01072EPSS
Exploits1References1
OSV
OSV
added 2023/12/24 6:15 a.m.4 views

UBUNTU-CVE-2023-51766

Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports . but...

5.3CVSS7.3AI score0.01072EPSS
Exploits1References10
CNNVD
CNNVD
added 2023/10/19 12:0 a.m.3 views

Squid security vulnerability

Squid is a suite of proxy server and web caching server software. The software provides features such as caching the World Wide Web, filtering traffic, and proxying the Internet. A security vulnerability exists in versions prior to Squid 6.4, which stems from improper handling of the chunking...

9.3CVSS6.7AI score0.05255EPSS
Exploits0References13
Fedora
Fedora
added 2022/05/05 7:3 a.m.27 views

[SECURITY] Fedora 34 Update: zchunk-1.2.2-1.fc34

zchunk is a compressed file format that splits the file into independent chunks. This allows you to only download the differences when downloading a new version of the file, and also makes zchunk files efficient over rsync. zchunk files are protected with strong checksums to verify that the file...

3.3AI score
Exploits0
CNVD
CNVD
added 2019/10/21 12:0 a.m.1 views

Website Security Dog suffers from post chunking transfer bypass vulnerability

Website Security Dog is a server security protection software, is for IDC operators, web hosting service providers, enterprise hosts, server administrators and other users to provide server security prevention of the practical system, is a combination of website content security protection, websi...

7.1AI score
Exploits0
Rows per page
Query Builder