53 matches found
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A buffer overflow vulnerability exists in the Linux kernel. The vulnerability stems from a lack of boundary checking of the DEFAULT table in the verifydfa function, which can b...
Linux Distros Unpatched Vulnerability : CVE-2026-23269
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - apparmor: validate DFA start states are in bounds in unpackpdb Start states are read from untrusted data and used as indexes into the DFA state tables. The...
UBUNTU-CVE-2026-23269
In the Linux kernel, the following vulnerability has been resolved: apparmor: validate DFA start states are in bounds in unpackpdb Start states are read from untrusted data and used as indexes into the DFA state tables. The aadfanext function call in unpackpdb will access dfa-tablesYYTDIDBASEstar...
CVE-2026-23269 apparmor: validate DFA start states are in bounds in unpack_pdb
In the Linux kernel, the following vulnerability has been resolved: apparmor: validate DFA start states are in bounds in unpackpdb Start states are read from untrusted data and used as indexes into the DFA state tables. The aadfanext function call in unpackpdb will access dfa-tablesYYTDIDBASEstar...
CVE-2026-23269
In the Linux kernel, the following vulnerability has been resolved: apparmor: validate DFA start states are in bounds in unpackpdb Start states are read from untrusted data and used as indexes into the DFA state tables. The aadfanext function call in unpackpdb will access dfa-tablesYYTDIDBASEstar...
PT-2026-29490
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.19.0-rc7-next-20260127 Description The Linux kernel contains a flaw within the AppArmor subsystem, specifically in the verify dfa function. This function lacks a bounds check on the DEFAULT table when handling...
Hyperflex: A SIMD-Based DFA Model for Deep Packet Inspection
Deep Packet Inspection DPI has been extensively employed for network security. It examines traffic payloads by searching for regular expressions regex with the Deterministic Finite Automaton DFA model. However, as the network bandwidth and ruleset size are increasing rapidly, the conventional DFA...
Malicious code in guras-nutra-dfa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f65507dde608e7d3a41cf39581570ed9e5b79a1159f5c024089b26b81dc55ce7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-155432 Malicious code in guras-nutra-dfa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f65507dde608e7d3a41cf39581570ed9e5b79a1159f5c024089b26b81dc55ce7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-23722
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2017-9992
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based buffer overflow in the decodedds1 function in libavcodec/dfa.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, a...
CVE-2025-54630
:Vulnerability of insufficient data length verification in the DFA module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2025-54630
:Vulnerability of insufficient data length verification in the DFA module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2025-54630
:Vulnerability of insufficient data length verification in the DFA module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2025-54630
:Vulnerability of insufficient data length verification in the DFA module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2025-54630
:Vulnerability of insufficient data length verification in the DFA module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2025-54630
Huawei HarmonyOS is identified in multiple sources with CVE-2025-54630 describing a vulnerability in the DFA module where insufficient data length verification can lead to a heap/buffer overflow, impacting availability. Connected sources indicate an availability impact, with non-public details on...
Integer Overflow to Buffer Overflow
Overview Affected versions of this package are vulnerable to Integer Overflow to Buffer Overflow vi DFAContentModel::countLeafNodes and DFAContentModel::buildDFA. An attacker can cause out-of-bound access by sending a specially crafted HTTP request. Remediation Upgrade xerces-c to version 3.2.4 o...
CVE-2022-23901
A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...
CVE-2022-23901
CVE-2022-23901 describes a stack overflow in re2c 2.2 due to infinite recursion in src/dfa/dead_rules.cc. Connected advisories show affected environments (e.g., Amazon Linux 2/ALAS2023-2344 and ALAS2023-438; Azure Linux security update) and fixes upgrading to re2c 3.1.x (e.g., 3.1-2) or later. Th...