CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3686 matches found

CNNVD•added 2024/05/19 12:0 a.m.•8 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from a high degree of memory fragmentation that does not allow memory compression or reclamation...

5.5CVSS6.3AI score0.0021EPSS

Exploits0References7

OSV•added 2024/05/17 2:40 p.m.•13 views

CVE-2024-35844 f2fs: compress: fix reserve_cblocks counting error when out of space

In the Linux kernel, the following vulnerability has been resolved: f2fs: compress: fix reservecblocks counting error when out of space When a file only needs one directnode, performing the following operations will cause the file to be unrepairable: unisoc ./f2fsio compress test.apk unisoc df -h...

5.5CVSS6AI score0.00243EPSS

Exploits0References11

Vulnrichment•added 2024/05/17 2:24 p.m.•22 views

CVE-2023-52682 f2fs: fix to wait on block writeback for post_read case

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to wait on block writeback for postread case If inode is compressed, but not encrypted, it missed to call f2fswaitonblockwriteback to wait for GCed page writeback in IPU write path. Thread A GC-Thread - f2fsgc -...

6.8AI score0.0023EPSS

Exploits0References5

Positive Technologies•added 2024/05/17 12:0 a.m.•11 views

PT-2024-14691

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue arises when an inode is compressed but not encrypted, and the system fails to call f2fs wait on block writeback to wait for GCed page writeback in the IPU write path. This can...

7.8CVSS5.6AI score0.00286EPSS

Exploits0References188

RedHat Linux•added 2024/05/16 6:36 p.m.•5 views

jose-go: improper handling of highly compressed data

A vulnerability was found in Jose due to improper handling of highly compressed data. This issue could allow an attacker to send a JWE containing compressed data that uses large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti...

4.3CVSS6.7AI score0.01956EPSS

Exploits0References5

Tenable Nessus•added 2024/05/11 12:0 a.m.•23 views

RHEL 6 : elfutils (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - elfutils: eu-size cannot handle recursive ar files CVE-2018-18520 - elfutils: heap-based buffer over-read...

8.3AI score0.02791EPSS

Exploits16References19

OSV•added 2024/05/10 11:7 a.m.•2 views

OESA-2024-1543 skopeo security update

A command line utility that performs various operations on container images and image repositories Security Fixes: A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small...

7.5CVSS6.8AI score0.04561EPSS

Exploits0References2

OSV•added 2024/05/10 11:7 a.m.•4 views

OESA-2024-1530 ignition security update

Ignition is a utility used to manipulate systems during the initramfs. This includes partitioning disks, formatting partitions, writing files regular files, systemd units, etc., and configuring users. On first boot, Ignition reads its configuration from a source of truth remote URL, network...

7.5CVSS6.7AI score0.04561EPSS

Exploits0References2

OSV•added 2024/05/10 11:7 a.m.•3 views

OESA-2024-1529 ignition security update

7.5CVSS6.7AI score0.04561EPSS

Exploits0References2

Oracle linux•added 2024/05/07 12:0 a.m.•87 views

python-jwcrypto security update

0.8-5 - Address potential DoS with high compression ratio Resolves: RHEL-28698...

6.8CVSS6.6AI score0.0098EPSS

Exploits1

Fedora•added 2024/05/05 1:16 a.m.•41 views

[SECURITY] Fedora 39 Update: gdcm-3.0.23-5.fc39

Grassroots DiCoM GDCM is a C++ library for DICOM medical files. It supports ACR-NEMA version 1 and 2 huffman compression is not supported, RAW, JPEG, JPEG 2000, JPEG-LS, RLE and deflated transfer syntax. It comes with a super fast scanner implementation to quickly scan hundreds of DICOM files. It...

9.8CVSS7.3AI score0.01474EPSS

Exploits3

SUSE CVE•added 2024/05/03 2:9 a.m.•2 views

SUSE CVE-2024-27034

In the Linux kernel, the following vulnerability has been resolved: f2fs: compress: fix to cover normal cluster write with cprwsem When we overwrite compressed cluster w/ normal cluster, we should not unlock cprwsem during f2fswriterawpages, otherwise data will be corrupted if partial blocks were...

5.5CVSS6.7AI score0.00273EPSS

Exploits0References3

SUSE CVE•added 2024/05/03 2:9 a.m.•2 views

SUSE CVE-2024-27035

In the Linux kernel, the following vulnerability has been resolved: f2fs: compress: fix to guarantee persisting compressed blocks by CP If data block in compressed cluster is not persisted with metadata during checkpoint, after SPOR, the data may be corrupted, let's guarantee to write compressed...

5.5CVSS7.6AI score0.00272EPSS

Exploits0References3