Lucene search
K

686 matches found

OSV
OSV
added 2015/05/20 10:59 a.m.3 views

UBUNTU-CVE-2015-1252

common/partialcircularbuffer.cc in Google Chrome before 43.0.2357.65 does not properly handle wraps, which allows remote attackers to bypass a sandbox protection mechanism or cause a denial of service out-of-bounds write via vectors that trigger a write operation with a large amount of data,...

7.5CVSS7.3AI score0.01701EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2015/05/20 10:0 a.m.26 views

CVE-2015-1252

Removed by vendor...

7.5CVSS9.4AI score0.01701EPSS
Exploits0
Fedora
Fedora
added 2014/02/22 12:56 a.m.34 views

[SECURITY] Fedora 19 Update: xstream-1.3.1-5.1.fc19

XStream is a simple library to serialize objects to XML and back again. A high level facade is supplied that simplifies common use cases. Custom objects can be serialized without need for specifying mappings. Speed and low memory footprint are a crucial part of the design, making it suitable for...

9.8CVSS0.4AI score0.84362EPSS
Exploits5
RedHat Linux
RedHat Linux
added 2013/10/23 4:26 p.m.4 views

OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous...

5CVSS6.8AI score0.05084EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2013/08/01 12:0 a.m.14 views

Fedora Update for nodejs-json-stringify-safe FEDORA-2013-11780

Check for the Version of nodejs-json-stringify-safe OpenVAS Vulnerability Test Fedora Update for nodejs-json-stringify-safe FEDORA-2013-11780 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

3.3CVSS0.00372EPSS
Exploits0References2
Fedora
Fedora
added 2013/07/23 1:2 a.m.15 views

[SECURITY] Fedora 18 Update: nodejs-json-stringify-safe-5.0.0-1.fc18

This module provides functionality similar to JavaScript's JSON.stringify, but it doesn't blow up when it encounters circular references...

3.3CVSS3.4AI score0.00372EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2013/07/16 5:12 p.m.2 views

OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous...

5CVSS6.8AI score0.05084EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/07/15 8:32 p.m.5 views

OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous...

5CVSS6.8AI score0.05084EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/07/15 8:29 p.m.8 views

OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous...

5CVSS6.8AI score0.05084EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/06/20 2:42 p.m.6 views

OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous...

5CVSS6.8AI score0.05084EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/06/20 12:0 a.m.6 views

OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous...

5CVSS6.8AI score0.05084EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/06/19 11:56 p.m.8 views

OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous...

5CVSS6.8AI score0.05084EPSS
Exploits0References5
CVE
CVE
added 2013/06/18 10:0 p.m.326 views

CVE-2013-2450

CVE-2013-2450 is an unspecified vulnerability in the Java Runtime Environment (JRE) Serialization path reported in MiracleLinux AXSA-2013-553:03. The MiracleLinux advisory indicates affected: MiracleLinux 3 with java-1.6.0-openjdk (OpenJDK 7/6 family as referenced) and lists CVE-2013-1500 through...

5CVSS6.2AI score0.05084EPSS
Exploits0References30Affected Software1
UbuntuCve
UbuntuCve
added 2013/06/18 12:0 a.m.34 views

CVE-2013-2450

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous...

5CVSS6.9AI score0.05084EPSS
Exploits0References6
OSV
OSV
added 2012/10/03 11:2 a.m.1 views

DEBIAN-CVE-2012-3375

The epollctl system call in fs/eventpoll.c in the Linux kernel before 3.2.24 does not properly handle ELOOP errors in EPOLLCTLADD operations, which allows local users to cause a denial of service file-descriptor consumption and system crash via a crafted application that attempts to create a...

4.9CVSS5.4AI score0.0102EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2012/08/08 4:31 p.m.6 views

kernel: epoll: can leak file descriptors when returning -ELOOP

The epollctl system call in fs/eventpoll.c in the Linux kernel before 3.2.24 does not properly handle ELOOP errors in EPOLLCTLADD operations, which allows local users to cause a denial of service file-descriptor consumption and system crash via a crafted application that attempts to create a...

4.9CVSS7.3AI score0.0102EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2012/07/10 11:25 a.m.6 views

kernel: epoll: can leak file descriptors when returning -ELOOP

The epollctl system call in fs/eventpoll.c in the Linux kernel before 3.2.24 does not properly handle ELOOP errors in EPOLLCTLADD operations, which allows local users to cause a denial of service file-descriptor consumption and system crash via a crafted application that attempts to create a...

4.9CVSS7.3AI score0.0102EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2012/07/04 12:0 a.m.4 views

PT-2012-1190 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.2.24 Description: The epoll ctl system call in fs/eventpoll.c does not properly handle ELOOP errors in EPOLL CTL ADD operations, allowing local users to cause a denial of service file-descriptor consumption an...

7.6CVSS7.3AI score0.08738EPSS
Exploits3References107
OSV
OSV
added 2012/07/04 12:0 a.m.4 views

UBUNTU-CVE-2012-3375

The epollctl system call in fs/eventpoll.c in the Linux kernel before 3.2.24 does not properly handle ELOOP errors in EPOLLCTLADD operations, which allows local users to cause a denial of service file-descriptor consumption and system crash via a crafted application that attempts to create a...

4.9CVSS5.8AI score0.0102EPSS
Exploits2References8
RedHat Linux
RedHat Linux
added 2011/06/21 11:44 p.m.5 views

kernel: potential kernel deadlock when creating circular epoll file structures

fs/eventpoll.c in the Linux kernel before 2.6.38 places epoll file descriptors within other epoll data structures without properly checking for 1 closed loops or 2 deep chains, which allows local users to cause a denial of service deadlock or stack memory consumption via a crafted application tha...

4.9CVSS5.8AI score0.00778EPSS
Exploits2References4
Rows per page
Query Builder