Lucene search
K

53 matches found

CNNVD
CNNVD
added 2026/04/01 12:0 a.m.8 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A buffer overflow vulnerability exists in the Linux kernel. The vulnerability stems from a lack of boundary checking of the DEFAULT table in the verifydfa function, which can b...

7.8CVSS6AI score0.00181EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-23269

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - apparmor: validate DFA start states are in bounds in unpackpdb Start states are read from untrusted data and used as indexes into the DFA state tables. The...

7.1CVSS6.3AI score0.00131EPSS
Exploits0References2
OSV
OSV
added 2026/03/18 6:16 p.m.5 views

UBUNTU-CVE-2026-23269

In the Linux kernel, the following vulnerability has been resolved: apparmor: validate DFA start states are in bounds in unpackpdb Start states are read from untrusted data and used as indexes into the DFA state tables. The aadfanext function call in unpackpdb will access dfa-tablesYYTDIDBASEstar...

7.1CVSS5.7AI score0.00131EPSS
Exploits0References18
Cvelist
Cvelist
added 2026/03/18 5:54 p.m.22 views

CVE-2026-23269 apparmor: validate DFA start states are in bounds in unpack_pdb

In the Linux kernel, the following vulnerability has been resolved: apparmor: validate DFA start states are in bounds in unpackpdb Start states are read from untrusted data and used as indexes into the DFA state tables. The aadfanext function call in unpackpdb will access dfa-tablesYYTDIDBASEstar...

7.1CVSS0.00131EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2026/03/18 12:0 a.m.6 views

CVE-2026-23269

In the Linux kernel, the following vulnerability has been resolved: apparmor: validate DFA start states are in bounds in unpackpdb Start states are read from untrusted data and used as indexes into the DFA state tables. The aadfanext function call in unpackpdb will access dfa-tablesYYTDIDBASEstar...

7.1CVSS5.7AI score0.00131EPSS
Exploits0References17
Positive Technologies
Positive Technologies
added 2026/01/29 12:0 a.m.10 views

PT-2026-29490

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.19.0-rc7-next-20260127 Description The Linux kernel contains a flaw within the AppArmor subsystem, specifically in the verify dfa function. This function lacks a bounds check on the DEFAULT table when handling...

7.8CVSS6.7AI score0.00181EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2025/12/07 12:0 a.m.18 views

Hyperflex: A SIMD-Based DFA Model for Deep Packet Inspection

Deep Packet Inspection DPI has been extensively employed for network security. It examines traffic payloads by searching for regular expressions regex with the Deterministic Finite Automaton DFA model. However, as the network bandwidth and ruleset size are increasing rapidly, the conventional DFA...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:47 p.m.4 views

Malicious code in guras-nutra-dfa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f65507dde608e7d3a41cf39581570ed9e5b79a1159f5c024089b26b81dc55ce7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/12 4:47 p.m.3 views

MAL-2025-155432 Malicious code in guras-nutra-dfa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f65507dde608e7d3a41cf39581570ed9e5b79a1159f5c024089b26b81dc55ce7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-23722

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00233EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-9992

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based buffer overflow in the decodedds1 function in libavcodec/dfa.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, a...

8.8CVSS8.4AI score0.02771EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/08 2:32 a.m.7 views

CVE-2025-54630

:Vulnerability of insufficient data length verification in the DFA module. Impact: Successful exploitation of this vulnerability may affect availability...

7.5CVSS6.4AI score0.00233EPSS
Exploits0References1
NVD
NVD
added 2025/08/06 3:15 a.m.5 views

CVE-2025-54630

:Vulnerability of insufficient data length verification in the DFA module. Impact: Successful exploitation of this vulnerability may affect availability...

7.5CVSS0.00233EPSS
Exploits0References1
OSV
OSV
added 2025/08/06 3:15 a.m.3 views

CVE-2025-54630

:Vulnerability of insufficient data length verification in the DFA module. Impact: Successful exploitation of this vulnerability may affect availability...

7.5CVSS5.8AI score0.00233EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/06 2:15 a.m.3 views

CVE-2025-54630

:Vulnerability of insufficient data length verification in the DFA module. Impact: Successful exploitation of this vulnerability may affect availability...

6.8CVSS6.5AI score0.00233EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/06 2:15 a.m.6 views

CVE-2025-54630

:Vulnerability of insufficient data length verification in the DFA module. Impact: Successful exploitation of this vulnerability may affect availability...

6.8CVSS0.00233EPSS
Exploits0References1
CVE
CVE
added 2025/08/06 2:15 a.m.21 views

CVE-2025-54630

Huawei HarmonyOS is identified in multiple sources with CVE-2025-54630 describing a vulnerability in the DFA module where insufficient data length verification can lead to a heap/buffer overflow, impacting availability. Connected sources indicate an availability impact, with non-public details on...

7.5CVSS6.5AI score0.00233EPSS
Exploits0References1Affected Software1
Snyk
Snyk
added 2023/10/11 12:0 a.m.2 views

Integer Overflow to Buffer Overflow

Overview Affected versions of this package are vulnerable to Integer Overflow to Buffer Overflow vi DFAContentModel::countLeafNodes and DFAContentModel::buildDFA. An attacker can cause out-of-bound access by sending a specially crafted HTTP request. Remediation Upgrade xerces-c to version 3.2.4 o...

8.8CVSS7AI score0.01381EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/03/29 12:15 p.m.30 views

CVE-2022-23901

A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...

9.8CVSS7.2AI score0.01563EPSS
Exploits1References4
CVE
CVE
added 2022/03/29 11:12 a.m.66 views

CVE-2022-23901

CVE-2022-23901 describes a stack overflow in re2c 2.2 due to infinite recursion in src/dfa/dead_rules.cc. Connected advisories show affected environments (e.g., Amazon Linux 2/ALAS2023-2344 and ALAS2023-438; Azure Linux security update) and fixes upgrading to re2c 3.1.x (e.g., 3.1-2) or later. Th...

9.8CVSS9.4AI score0.01563EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder