4 matches found
net/http: Denial of service due to improper 100-continue handling in net/http
A flaw was found in Go. The net/http module mishandles specific server responses from HTTP/1.1 client requests. This issue may render a connection invalid and cause a denial of service...
ALPINE-CVE-2023-46842
Unlike 32-bit PV guests, HVM guests may switch freely between 64-bit and other modes. This in particular means that they may set registers used to pass 32-bit-mode hypercall arguments to values outside of the range 32-bit code would be able to set them to. When processing of hypercalls takes a...
kernel: nfsd: don't replace page in rq_pages if it's a continuation of last page
In the Linux kernel, the following vulnerability has been resolved: nfsd: don't replace page in rqpages if it's a continuation of last page The splice read calls nfsdspliceactor to put the pages containing file data into the svcrqst-rqpages array. It's possible however to get a splice result that...
Fedora 31 : xen (2020-295ed0b1e0)
multiple xenoprof issues XSA-313, CVE-2020-11740, CVE-2020-11741 1823912, 1823914 Missing memory barriers in read-write unlock paths XSA-314, CVE-2020-11739 1823784 Bad error path in GNTTABOPmapgrant XSA-316, CVE-2020-11743 1823926 Bad continuation handling in GNTTABOPcopy XSA-318, CVE-2020-11742...