Lucene search
+L

29 matches found

CVE
CVE
added 2024/03/05 12:0 a.m.72 views

CVE-2024-25817

Affected software: eza (before v0.18.2). Root cause / vulnerability: Buffer overflow allowing local attackers to execute arbitrary code through .git/HEAD, .git/refs, and .git/objects components.** Impact:** Local code execution with high impact as described in multiple advisories. References from...

8.4CVSS7.5AI score0.00267EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2024/03/05 12:0 a.m.62 views

CVE-2024-25817

Buffer Overflow vulnerability in eza before version 0.18.2, allows local attackers to execute arbitrary code via the .git/HEAD, .git/refs, and .git/objects components...

8.4CVSS9.4AI score0.00267EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/02/23 12:0 a.m.22 views

Fedora: Security Advisory for rust-eza (FEDORA-2024-993d3a78dd)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.01546EPSS
Exploits0References2
Fedora
Fedora
added 2024/02/22 2:43 a.m.20 views

[SECURITY] Fedora 38 Update: rust-eza-0.17.3-2.fc38

A modern replacement for ls...

9.8CVSS9.6AI score0.01546EPSS
Exploits0
Fedora
Fedora
added 2024/02/20 1:40 a.m.24 views

[SECURITY] Fedora 39 Update: rust-eza-0.17.3-2.fc39

A modern replacement for ls...

9.8CVSS7.4AI score0.01546EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/02/20 12:0 a.m.8 views

Fedora: Security Advisory for rust-eza (FEDORA-2024-8ba389815f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.01546EPSS
Exploits0References2
OSV
OSV
added 2024/02/08 6:47 p.m.18 views

GHSA-3QX3-6HXR-J2CH eza Potential Heap Overflow Vulnerability for AArch64

Summary In eza, there exists a potential heap overflow vulnerability, first seen when using Ubuntu for Raspberry Pi series system, on ubuntu-raspi kernel, relating to the .git directory. Details The vulnerability seems to be triggered by the .git directory in some projects. This issue may be...

8.4CVSS7.8AI score0.00267EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/02/08 6:47 p.m.28 views

eza Potential Heap Overflow Vulnerability for AArch64

Summary In eza, there exists a potential heap overflow vulnerability, first seen when using Ubuntu for Raspberry Pi series system, on ubuntu-raspi kernel, relating to the .git directory. Details The vulnerability seems to be triggered by the .git directory in some projects. This issue may be...

8.4CVSS7.5AI score0.00267EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/02/08 12:0 a.m.3 views

PT-2024-21143 · Eza · Eza

Name of the Vulnerable Software and Affected Versions: eza versions prior to 0.18.2 Description: The issue is a Buffer Overflow vulnerability that allows local attackers to execute arbitrary code via the .git/HEAD, .git/refs, and .git/objects components. This vulnerability seems to be triggered b...

8.4CVSS7.5AI score0.00267EPSS
Exploits0References16
Rows per page
Query Builder