Lucene search
K

14 matches found

AlpineLinux
AlpineLinux
added 2026/05/20 9:21 a.m.10 views

CVE-2026-44390

NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability when handling replies with very large RRsets that Unbound needs to perform name compression for. Malicious upstream responses with very large RRsets with records that don't share a suffix above the root can cause Unbound to...

7.5CVSS5.8AI score0.00806EPSS
Exploits0References4
OSV
OSV
added 2026/01/26 11:10 a.m.8 views

CLSA-2026-1769424072 unbound: Fix of CVE-2024-8508

CVE-2024-8508: limit number of name compression calculations per packet to prevent CPU locking and potential denial of service...

5.3CVSS6.8AI score0.00806EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/06/09 12:0 a.m.6 views

NewStart CGSL MAIN 7.02 : unbound Vulnerability (NS-SA-2025-0089)

The remote NewStart CGSL host, running version MAIN 7.02, has unbound packages installed that are affected by a vulnerability: - NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with very large RRsets that it needs to perform name compression fo...

5.3CVSS6.7AI score0.00806EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/01/13 12:0 a.m.65 views

EulerOS 2.0 SP10 : unbound (EulerOS-SA-2025-1015)

According to the versions of the unbound packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The DNS protocol in RFC 1035 and updates allows remote attackers to cause a denial of service resource consumption by arranging for DNS queries t...

7.5CVSS6.8AI score0.01729EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.3 views

kernel: Linux kernel (x86/xen): Memory leak in CPU lock initialization leading to denial of service.

A flaw was found in the Linux kernel's x86/xen component. A local user could exploit a memory leak vulnerability during the initialization of the CPU lock in the xeninitlockcpu function. If a specific internal function fails after memory allocation, the allocated memory is not properly released...

5.8AI score0.00243EPSS
Exploits0References5
OSV
OSV
added 2024/10/03 5:15 p.m.3 views

DEBIAN-CVE-2024-8508

NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with very large RRsets that it needs to perform name compression for. Malicious upstreams responses with very large RRsets can cause Unbound to spend a considerable time applying name compression ...

5.3CVSS6.5AI score0.00806EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/10/03 4:27 p.m.15 views

CVE-2024-8508

NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with very large RRsets that it needs to perform name compression for. Malicious upstreams responses with very large RRsets can cause Unbound to spend a considerable time applying name compression ...

5.3CVSS6.5AI score0.00806EPSS
Exploits0
OSV
OSV
added 2024/01/05 5:15 p.m.1 views

DEBIAN-CVE-2023-34328

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. AMD CPUs since 2014 have extensions to normal x86 debugging functionality. Xen supports guests using these extensions. Unfortunately there are errors in Xen's handling of...

5.5CVSS5.7AI score0.00256EPSS
Exploits0References1
NVD
NVD
added 2024/01/05 5:15 p.m.30 views

CVE-2023-34328

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. AMD CPUs since 2014 have extensions to normal x86 debugging functionality. Xen supports guests using these extensions. Unfortunately there are errors in Xen's handling of...

5.5CVSS5.8AI score0.00256EPSS
Exploits0References2
OSV
OSV
added 2024/01/05 5:15 p.m.4 views

UBUNTU-CVE-2023-34328

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. AMD CPUs since 2014 have extensions to normal x86 debugging functionality. Xen supports guests using these extensions. Unfortunately there are errors in Xen's handling of...

5.5CVSS6AI score0.00256EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.6 views

kernel: net: openvswitch: fix race on port output

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix race on port output assume the following setup on a single machine: 1. An openvswitch instance with one bridge and default flows 2. two network namespaces "server" and "client" 3. two ovs interfaces "server"...

4.7CVSS5.7AI score0.00104EPSS
Exploits0References5
OSV
OSV
added 2020/12/15 5:15 p.m.0 views

DEBIAN-CVE-2020-29567

An issue was discovered in Xen 4.14.x. When moving IRQs between CPUs to distribute the load of IRQ handling, IRQ vectors are dynamically allocated and de-allocated on the relevant CPUs. De-allocation has to happen when certain constraints are met. If these conditions are not met when first checke...

6.2CVSS7.5AI score0.0036EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2011/08/31 12:0 a.m.37 views

Fedora 15 : xen-4.1.1-3.fc15 (2011-10942)

untrusted guest controlling PCIE device can lock up host CPU CVE-2011-3131 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducin...

4.6CVSS5.3AI score0.0044EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2011/08/24 12:0 a.m.33 views

Fedora 16 : xen-4.1.1-3.fc16 (2011-10834)

untrusted guest controlling PCIE device can lock up host CPU CVE-2011-3131 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducin...

4.6CVSS5.3AI score0.0044EPSS
Exploits1References1
Rows per page
Query Builder