Lucene search
K

4 matches found

CVE
CVE
added yesterday18 views

CVE-2026-54896

Oj Optimized JSON is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, when in object mode, Oj.dump is vulnerable to a heap buffer overflow when serializing Exception objects with a large :indent value. The serializer allocates a buffer sized for the object'...

2.1CVSS6AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/06/19 7:36 p.m.11 views

Oj: Heap Buffer Overflow in Oj.dump Exception Serialization via Large Indent

Summary Oj.dump in object mode is vulnerable to a heap buffer overflow when serializing Exception objects with a large :indent value. The serializer allocates a buffer sized for the object's attributes but does not account for the indent bytes added on each write. With indent: 5000, the...

2.1CVSS6.2AI score
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2024/12/28 2:59 a.m.38 views

CVE-2024-56644

In the Linux kernel, the following vulnerability has been resolved: net/ipv6: release expired exception dst cached in socket Dst objects get leaked in ip6negativeadvice when this function is executed for an expired IPv6 route located in the exception table. There are several conditions that must ...

4.7CVSS6.8AI score0.00231EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2016/06/09 12:0 a.m.5 views

The vulnerability of the PHP interpreter, which allows a hacker to trigger a service failure

The vulnerability of the function in the Zend/zendexceptions.c interpreter of PHP exists due to the lack of checks for certain Exception objects. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause a service failure such as reassigning a null pointer or...

7.5CVSS7.4AI score0.07705EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder