19 matches found
EUVD-2023-3125
Malicious code in bioql PyPI...
EUVD-2022-6087
Malicious code in bioql PyPI...
CVE-2025-1194 Regular Expression Denial of Service (ReDoS) in huggingface/transformers
A Regular Expression Denial of Service ReDoS vulnerability was identified in the huggingface/transformers library, specifically in the file tokenizationgptneoxjapanese.py of the GPT-NeoX-Japanese model. The vulnerability occurs in the SubWordJapaneseTokenizer class, where regular expressions...
CVE-2022-3283
A potential DOS vulnerability was discovered in GitLab CE/EE affecting all versions before before 15.2.5, all versions starting from 15.3 before 15.3.4, all versions starting from 15.4 before 15.4.1 While cloning an issue with special crafted content added to the description could have been used ...
CVE-2024-28871
LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Version 0.5.46 may parse malformed request traffic, leading to excessive CPU usage. Version 0.5.47 contains a patch for the issue. No known workarounds are available...
Medium: nerdctl
Issue Overview: 2023-10-11: The severity level was changed from Important to Medium. Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to = 8192...
SUSE-SU-2023:0088-2 Security update for python-wheel
This update for python-wheel fixes the following issues: - CVE-2022-40898: Fixed an excessive use of CPU that could be triggered via a crafted regular expression bsc1206670...
SUSE-SU-2023:0202-1 Security update for python39-setuptools
This update for python39-setuptools fixes the following issues: - CVE-2022-40897: Fixed an excessive CPU usage that could be triggered by fetching a malicious HTML document bsc1206667...
SUSE-SU-2023:0159-1 Security update for python-setuptools
This update for python-setuptools fixes the following issues: - CVE-2022-40897: Fixed an excessive CPU usage that could be triggered by fetching a malicious HTML document bsc1206667...
SUSE-SU-2023:0094-1 Security update for python36-setuptools
This update for python36-setuptools fixes the following issues: - CVE-2022-40897: Fixed an excessive CPU usage that could be triggered by fetching a malicious HTML document bsc1206667...
SUSE-SU-2023:0089-1 Security update for python-wheel
This update for python-wheel fixes the following issues: - CVE-2022-40898: Fixed an excessive use of CPU that could be triggered via a crafted regular expression bsc1206670...
SUSE-SU-2023:0088-1 Security update for python-wheel
This update for python-wheel fixes the following issues: - CVE-2022-40898: Fixed an excessive use of CPU that could be triggered via a crafted regular expression bsc1206670...
SUSE-SU-2023:0079-1 Security update for python-future
This update for python-future fixes the following issues: - CVE-2022-40899: Fixed an issue that could allow attackers to cause an excessive CPU usage via a crafted Set-Cookie header bsc1206673...
OPENSUSE-SU-2020:1063-1 Security update for tomcat
This update for tomcat fixes the following issues: Tomcat was updated to 9.0.36 See changelog at - CVE-2020-11996: Fixed an issue which by sending a specially crafted sequence of HTTP/2 requests could have triggered high CPU usage for several seconds making potentially the server unresponsive...
SUSE-SU-2020:1913-1 Security update for samba
This update for samba fixes the following issues: - CVE-2020-10745: Fixed an issue which parsing and packing of NBT and DNS packets containing dots could potentially have consumed excessive CPU bsc1173160. - CVE-2020-14303: Fixed an endless loop when receiving at AD DC empty UDP packets bsc117335...
OPENSUSE-SU-2019:2120-1 Security update for nginx
This update for nginx fixes the following issues: Security issues fixed: - CVE-2019-9511: Fixed a denial of service by manipulating the window size and stream prioritization bsc1145579. - CVE-2019-9513: Fixed a denial of service caused by resource loops bsc1145580. - CVE-2019-9516: Fixed a denial...
psyBNC <= 2.3 Denial of Service Exploit
Exploit for unknown platform in category dos / poc ======================================= psyBNC include include include include include...
MS00-029: NT IP Fragment Reassembly Patch Not Applied (jolt2) (259728)
The hotfix for the 'IP Fragment Reassembly' vulnerability has not been applied on the remote Windows host. This vulnerability allows an attacker to send malformed packets, which will utilize 100% of the computer CPU, making it nearly unusable for the legitimate users. C Tenable Network Security,...
oracle-8-NERP-DoS.txt
Date: Thu, 7 Jan 1999 17:31:13 -0800 From: Jason Ackley To: [email protected] Subject: Re: Fw:"NERP" DoS attack possible in Oracle On Wed, 6 Jan 1999, Paul Schenk wrote: In fact, on HP-UX 10.20, Oracle 7.3.3, in listener.log you get: 06-JAN-99 16:15:45 12569 TNS-12569: TNS:packet checksum...