21 matches found
NVIDIA Triton Inference Server EVBufferToJson Uncaught Exception Denial-of-Service Vulnerability
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of NVIDIA Triton Inference Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the EVBufferToJson method. The issue results from the lack ...
Improper Validation of Specified Quantity in Input
Overview nvidia-pytriton is a PyTriton - Flask/FastAPI-like interface to simplify Triton's deployment in Python environments. Affected versions of this package are vulnerable to Improper Validation of Specified Quantity in Input n the EVBufferToJson function in the HTTP server component. An...
SUSE CVE-2014-6272
Multiple integer overflows in the evbuffer API in Libevent 1.4.x before 1.4.15, 2.0.x before 2.0.22, and 2.1.x before 2.1.5-beta allow context-dependent attackers to cause a denial of service or possibly have other unspecified impact via "insanely large inputs" to the 1 evbufferadd, 2...
SUSE CVE-2015-6525
Multiple integer overflows in the evbuffer API in Libevent 2.0.x before 2.0.22 and 2.1.x before 2.1.5-beta allow context-dependent attackers to cause a denial of service or possibly have other unspecified impact via "insanely large inputs" to the 1 evbufferadd, 2 evbufferprepend, 3 evbufferexpand...
Huawei EulerOS: Security Advisory for libevent (EulerOS-SA-2018-1164)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Medium: libevent
Issue Overview: Multiple integer overflows in the evbuffer API in Libevent 1.4.x before 1.4.15, 2.0.x before 2.0.22, and 2.1.x before 2.1.5-beta allow context-dependent attackers to cause a denial of service or possibly have other unspecified impact via "insanely large inputs" to the 1 evbufferad...
Vulnerabilities in the Libevent library, which allow a hacker to cause a service failure
The multiple vulnerabilities in the evbuffer programming interface of the Libevent library are caused by integer overflows. Exploiting these vulnerabilities allows an attacker to cause a service failure by using large input data in functions such as evbufferadd, evbufferexpand, and buffereventwri...
Vulnerabilities in the Libevent library, which allow a hacker to cause a service failure
The multiple vulnerabilities of the evbuffer software interface functions evbufferadd, evbufferprepend, evbufferexpand, exbufferreservespace, or evbufferread in the Libevent library are caused by integer overflows, which lead to overflow of buffers in dynamic memory or circularization. Exploitati...
Libevent evbuffer API Integer Overflow Vulnerability
Libevent is a library of asynchronous event processing software developed by software developers Nick Mathewson and Niels Provos, which allows you to set up functions to be executed when certain events occur through an application programming interface API. An integer overflow vulnerability exist...
DEBIAN-CVE-2015-6525
Multiple integer overflows in the evbuffer API in Libevent 2.0.x before 2.0.22 and 2.1.x before 2.1.5-beta allow context-dependent attackers to cause a denial of service or possibly have other unspecified impact via "insanely large inputs" to the 1 evbufferadd, 2 evbufferprepend, 3 evbufferexpand...
DEBIAN-CVE-2014-6272
Multiple integer overflows in the evbuffer API in Libevent 1.4.x before 1.4.15, 2.0.x before 2.0.22, and 2.1.x before 2.1.5-beta allow context-dependent attackers to cause a denial of service or possibly have other unspecified impact via "insanely large inputs" to the 1 evbufferadd, 2...
UBUNTU-CVE-2015-6525
Multiple integer overflows in the evbuffer API in Libevent 2.0.x before 2.0.22 and 2.1.x before 2.1.5-beta allow context-dependent attackers to cause a denial of service or possibly have other unspecified impact via "insanely large inputs" to the 1 evbufferadd, 2 evbufferprepend, 3 evbufferexpand...
Integer overflow
Multiple integer overflows in the evbuffer API in Libevent 2.0.x before 2.0.22 and 2.1.x before 2.1.5-beta allow context-dependent attackers to cause a denial of service or possibly have other unspecified impact via "insanely large inputs" to the 1 evbufferadd, 2 evbufferprepend, 3 evbufferexpand...
CVE-2014-6272
Libevent’s evbuffer API contains multiple integer overflows in affected versions: 1.4.x before 1.4.15, 2.0.x before 2.0.22, and 2.1.x before 2.1.5-beta. An attacker providing insanely large inputs to evbuffer_add, evbuffer_expand, or bufferevent_write can trigger a heap-based buffer overflow or a...
GLSA-201502-07 : libevent: User-assisted execution of arbitrary code
The remote host is affected by the vulnerability described in GLSA-201502-07 libevent: User-assisted execution of arbitrary code Multiple integer overflow errors in libevent could cause a heap-based buffer overflow. Impact : A context-dependent attacker could cause an application linked against...
USN-2477-1: libevent vulnerability
Andrew Bartlett discovered that libevent incorrectly handled large inputs to the evbuffer API. A remote attacker could possibly use this issue with an application that uses libevent to cause a denial of service, or possibly execute arbitrary code...
USN-2477-1 libevent vulnerability
Andrew Bartlett discovered that libevent incorrectly handled large inputs to the evbuffer API. A remote attacker could possibly use this issue with an application that uses libevent to cause a denial of service, or possibly execute arbitrary code...
libevent: heap overflow
A defect in the libevent evbuffer API could possibly leave some programs that use the evbuffer API open to potential heap overflows. A program using the evbufferadd, evbufferprepend, evbufferexpand, exbufferreservespace, or evbufferread functions may be vulnerable if an attacker is able to coax t...
FreeBSD : libevent -- integer overflow in evbuffers (daa8a49b-99b9-11e4-8f66-3085a9a4510d)
Debian Security Team reports : Andrew Bartlett of Catalyst reported a defect affecting certain applications using the Libevent evbuffer API. This defect leaves applications which pass insanely large inputs to evbuffers open to a possible heap overflow or infinite loop. In order to exploit this...
DSA-3119-1 libevent - security update
Bulletin has no description...