Lucene search
K

3291 matches found

RedHat Linux
RedHat Linux
added 2023/05/09 10:1 a.m.17 views

gstreamer-plugins-good: Potential heap overwrite in mkv demuxing using bz2 decompression

A flaw was found in GStreamer. An integer overflow can lead to a heap-based buffer overflow in the mkv demuxer when processing a specially crafted Matroska/WebM file using bzip decompression. This vulnerability can result in application crash, memory corruption, and code execution...

7.8CVSS6.1AI score0.00409EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:1 a.m.29 views

gstreamer-plugins-good: Potential heap overwrite in mkv demuxing using HEADERSTRIP decompression

A flaw was found in GStreamer. An integer overflow can lead to a heap-based buffer overflow in the mkv demuxer when processing a specially crafted Matroska/WebM file using HEADERSTRIP decompression. This vulnerability can result in application crash, memory corruption, and code execution...

7.8CVSS6.1AI score0.00445EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:1 a.m.5 views

gstreamer-plugins-good: Potential heap overwrite in mp4 demuxing using zlib decompression

A flaw was found in GStreamer. An integer overflow can lead to a heap-based buffer overflow in the qt demuxer when processing a specially crafted QuickTime/MP4 file using zlib decompression. This vulnerability can result in application crash, memory corruption, and code execution...

7.8CVSS6.1AI score0.00437EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/05/09 12:0 a.m.6 views

MaraDNS 数字错误漏洞

MaraDNS is an open source implementation of the Domain Name System by the individual developer Sam Trenholme that can be used as a caching, recursive or authoritative name server. A numeric error vulnerability exists in MaraDNS 3.5.0024 and earlier versions, which stems from a remotely exploitabl...

7.5CVSS7.2AI score0.01143EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2023/04/25 10:26 a.m.17 views

Important: Red Hat Security Advisory: qatzip security and bug fix update

An update for qatzip is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS7.1AI score0.00251EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2023/04/23 12:0 a.m.10 views

Fedora: Security Advisory for suricata (FEDORA-2023-43ac51ee44)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2023/04/23 12:0 a.m.7 views

Fedora: Security Advisory for suricata (FEDORA-2023-8febb13d07)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2023/04/23 12:0 a.m.10 views

Fedora: Security Advisory for suricata (FEDORA-2023-c91ab14186)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2023/04/22 1:12 a.m.12 views

[SECURITY] Fedora 36 Update: suricata-6.0.11-1.fc36

The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...

6.7AI score
Exploits0
Fedora
Fedora
added 2023/04/22 12:56 a.m.17 views

[SECURITY] Fedora 37 Update: suricata-6.0.11-1.fc37

The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...

6.7AI score
Exploits0
Fedora
Fedora
added 2023/04/22 12:49 a.m.15 views

[SECURITY] Fedora 38 Update: suricata-6.0.11-1.fc38

The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...

6.7AI score
Exploits0
Ubuntu
Ubuntu
added 2023/04/19 1:17 a.m.77 views

USN-6024-1: Linux kernel vulnerabilities

It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-1281 Lin Ma discovered a race condition in t...

7.8CVSS7.2AI score0.00964EPSS
Exploits4
OSV
OSV
added 2023/04/19 1:17 a.m.4 views

USN-6024-1 linux, linux-aws, linux-azure, linux-gcp, linux-hwe-5.19, linux-kvm, linux-lowlatency, linux-oracle, linux-raspi vulnerabilities

It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-1281 Lin Ma discovered a race condition in t...

7.8CVSS6.9AI score0.00964EPSS
Exploits4References11
Positive Technologies
Positive Technologies
added 2023/04/16 12:0 a.m.5 views

PT-2023-35779 · Zstd · Zstd

Name of the Vulnerable Software and Affected Versions: ZSTD affected versions not specified Description: The issue is related to a heap-buffer-overflow read, which occurs in the ZSTD decompressSequencesLong bmi2 function, specifically when calling ZSTD decompressSequencesLong and ZSTD...

6.8AI score
Exploits0References2
Fedora
Fedora
added 2023/04/15 2:17 a.m.67 views

[SECURITY] Fedora 38 Update: bzip3-1.3.0-1.fc38

These are tools for compressing, decompressing, printing, and searching bzip3 files. bzip3 features higher compression ratios and better performance than bzip2 thanks to an order-0 context mixing entropy coder, a fast Burrows-Wheeler transform code making use of suffix arrays and a run-length...

8.8CVSS7AI score0.00916EPSS
Exploits6
OpenVAS
OpenVAS
added 2023/04/15 12:0 a.m.21 views

Fedora: Security Advisory for bzip3 (FEDORA-2023-3a821e6e73)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.00916EPSS
Exploits7References2
OpenVAS
OpenVAS
added 2023/04/15 12:0 a.m.16 views

Fedora: Security Advisory for bzip3 (FEDORA-2023-c08f9dfc16)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.00916EPSS
Exploits7References2
Fedora
Fedora
added 2023/04/14 1:5 a.m.52 views

[SECURITY] Fedora 37 Update: bzip3-1.3.0-1.fc37

These are tools for compressing, decompressing, printing, and searching bzip3 files. bzip3 features higher compression ratios and better performance than bzip2 thanks to an order-0 context mixing entropy coder, a fast Burrows-Wheeler transform code making use of suffix arrays and a run-length...

8.8CVSS7AI score0.00916EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2023/04/13 12:0 a.m.48 views

EulerOS 2.0 SP8 : curl (EulerOS-SA-2023-1590)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An allocation of resources without limits or throttling vulnerability exists in curl v7.88.0 based on the 'chained' HTTP compression algorithms,...

6.5CVSS6.7AI score0.01703EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/04/11 12:0 a.m.39 views

RHEL 9 : curl (RHSA-2023:1701)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1701 advisory. The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, a...

6.5CVSS6.7AI score0.01703EPSS
Exploits1References5
Rows per page
Query Builder