172 matches found
EUVD-2018-4887
Malware in sbrugna...
EUVD-2021-15372
Malware in sbrugna...
EUVD-2019-16196
Malware in sbrugna...
EUVD-2022-45013
Malicious code in bioql PyPI...
EUVD-2022-45012
Malicious code in bioql PyPI...
EUVD-2022-6631
Malicious code in bioql PyPI...
EUVD-2023-1925
Malicious code in bioql PyPI...
PT-2025-30614
Name of the Vulnerable Software and Affected Versions Redis versions through 7.4.3 Description Redis allows excessive memory consumption via a multi-bulk command consisting of numerous bulks sent by an authenticated user. The server allocates memory for command arguments for each bulk, even if th...
[slackware-security] python3
New python3 packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/python3-3.9.23-i586-1slack15.0.txz: Upgraded. This update fixes security issues: gh-135034: CVE-2024-12718 CVE-2025-4138 CVE-2025-433...
CVE-2024-44459
A memory allocation issue in vernemq v2.0.1 allows attackers to cause a Denial of Service DoS via excessive memory consumption...
CVE-2023-28118
kaml provides YAML support for kotlinx.serialization. Prior to version 0.53.0, applications that use kaml to parse untrusted input containing anchors and aliases may consume excessive memory and crash. Version 0.53.0 and later default to refusing to parse YAML documents containing anchors and...
CVE-2025-46656
python-markdownify aka markdownify before 0.14.1 allows large headline prefixes such as in addition to through . This causes memory consumption...
USN-7433-1: GraphicsMagick vulnerabilities
It was discovered that GraphicsMagick did not properly limit image dimensions, which could lead to excessive memory consumption. An attacker could possibly use this issue to cause a denial of service. CVE-2025-27795 It was discovered that GraphicsMagick did not properly handle certain memory...
CBL Mariner 2.0 Security Update: gdb (CVE-2022-48064)
The version of gdb installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-48064 advisory. - GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the functi...
Out Of Memory Error
org.keycloak, keycloak-services is vulnerable to an Out Of Memory Error. The vulnerability is due to unbounded caching of JWT tokens with long expiration times, causing excessive memory consumption and potential system failure. It allows an attacker to cause a Denial of Service DoS by exhausting...
Amazon Linux 2 : runfinch-finch (ALASDOCKER-2025-053)
The version of runfinch-finch installed on the remote host is prior to 1.7.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2DOCKER-2025-053 advisory. SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : skopeo (SUSE-SU-2025:0772-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:0772-1 advisory. - CVE-2025-27144: excessive memory consumption by Go JOSE when parsing compact JWS or JWE input containin...
Linux Distros Unpatched Vulnerability : CVE-2018-12698
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - demangletemplate in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30, allows attackers to trigger excessive memory consumption aka OOM during t...
CVE-2025-27144
Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption JWE, JSON Web Signature JWS, and JSON Web Token JWT standards. In versions on the 4.x branch prior to version 4.0.5, when parsing compact JWS or JWE...
Excessive Memory Consumption
github.com/t2bot/matrix-media-repo is vulnerable to Excessive Memory Consumption. The vulnerability is due to inadequate handling of large JSON responses, allowing an attacker to exhaust system memory and potentially crash the application...