Lucene search
K

123 matches found

Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.42 views

Scientific Linux Security Update : glibc on SL5.x,SL6.x i386/x86_64

The glibc packages contain the standard C libraries used by multiple programs on the system. These packages contain the standard C and the standard math libraries. Without these two libraries, a Linux system cannot function properly. The fix for CVE-2010-3847 introduced a regression in the way th...

6.9CVSS7.4AI score0.14323EPSS
Exploits22References5
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.31 views

Scientific Linux Security Update : glibc on SL4.x i386/x86_64 (20120213)

The glibc packages contain the standard C libraries used by multiple programs on the system. These packages contain the standard C and the standard math libraries. Without these two libraries, a Linux system cannot function properly. An integer overflow flaw, leading to a heap-based buffer...

7.2CVSS7.8AI score0.14323EPSS
Exploits6References9
OpenVAS
OpenVAS
added 2012/07/30 12:0 a.m.40 views

CentOS Update for glibc CESA-2011:0412 centos5 x86_64

Check for the Version of glibc OpenVAS Vulnerability Test CentOS Update for glibc CESA-2011:0412 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

7.2CVSS8.2AI score0.14323EPSS
Exploits23References2
OpenVAS
OpenVAS
added 2012/07/30 12:0 a.m.38 views

CentOS Update for glibc CESA-2012:0125 centos4

Check for the Version of glibc OpenVAS Vulnerability Test CentOS Update for glibc CESA-2012:0125 centos4 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

7.2CVSS8.2AI score0.14323EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2012/07/30 12:0 a.m.49 views

CentOS Update for glibc CESA-2012:0125 centos4

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.9CVSS6.8AI score0.00543EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2012/03/12 12:0 a.m.37 views

Ubuntu Update for eglibc USN-1396-1

Ubuntu Update for Linux kernel vulnerabilities USN-1396-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13961.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for eglibc USN-1396-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

7.5CVSS0.7AI score0.14323EPSS
Exploits15References2
Ubuntu
Ubuntu
added 2012/03/09 5:58 p.m.73 views

USN-1396-1: GNU C Library vulnerabilities

It was discovered that the GNU C Library did not properly handle integer overflows in the timezone handling code. An attacker could use this to possibly execute arbitrary code by convincing an application to load a maliciously constructed tzfile. CVE-2009-5029 It was discovered that the GNU C...

7.5CVSS7.9AI score0.14323EPSS
Exploits15
Cent OS
Cent OS
added 2012/02/14 2:9 a.m.92 views

glibc, nptl, nscd security update

CentOS Errata and Security Advisory CESA-2012:0125 Updated glibc packages that fix multiple security issues and one bug are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring Syste...

7.2CVSS7.5AI score0.14323EPSS
Exploits6References7
RedHat Linux
RedHat Linux
added 2012/02/13 8:30 p.m.4 views

glibc: fnmatch() alloca()-based memory corruption flaw

Integer overflow in posix/fnmatch.c in the GNU C Library aka glibc or libc6 2.13 and earlier allows context-dependent attackers to cause a denial of service application crash via a long UTF8 string that is used in an fnmatch call with a crafted pattern argument, a different vulnerability than...

5CVSS6.2AI score0.02856EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2012/02/13 8:30 p.m.8 views

glibc: fnmatch() alloca()-based memory corruption flaw

The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a "stack extension attack," a related issue to...

5.1CVSS6.5AI score0.14323EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2011/06/22 11:31 p.m.6 views

apr: unconstrained recursion in apr_fnmatch

Stack consumption vulnerability in the fnmatch implementation in aprfnmatch.c in the Apache Portable Runtime APR library before 1.4.3 and the Apache HTTP Server before 2.2.18, and in fnmatch.c in libc in NetBSD 5.1, OpenBSD 4.8, FreeBSD, Apple Mac OS X 10.6, Oracle Solaris 10, and Android, allows...

4.3CVSS7.2AI score0.30406EPSS
Exploits5References4
RedHat Linux
RedHat Linux
added 2011/06/22 11:14 p.m.7 views

apr: unconstrained recursion in apr_fnmatch

Stack consumption vulnerability in the fnmatch implementation in aprfnmatch.c in the Apache Portable Runtime APR library before 1.4.3 and the Apache HTTP Server before 2.2.18, and in fnmatch.c in libc in NetBSD 5.1, OpenBSD 4.8, FreeBSD, Apple Mac OS X 10.6, Oracle Solaris 10, and Android, allows...

4.3CVSS7.2AI score0.30406EPSS
Exploits5References4
Tenable Nessus
Tenable Nessus
added 2011/06/06 12:0 a.m.35 views

Fedora 13 : apr-1.4.5-1.fc13 (2011-7340)

Move to 1.4.x branch. Various bug fixes since 1.4.2. Security: CVE-2011-0419 Reimplement aprfnmatch from scratch using a non-recursive algorithm; now has improved compliance with the fnmatch spec. Note: 1.4.3 was never officially released. Fix CVE-2011-1928 introduced in 1.4.4. Note that Tenable...

4.3CVSS7.6AI score0.30406EPSS
Exploits5References5
Tenable Nessus
Tenable Nessus
added 2011/06/03 12:0 a.m.27 views

Fedora 15 : apr-1.4.5-1.fc15 (2011-6750)

Various bug fixes since 1.4.2. Security: CVE-2011-0419 Reimplement aprfnmatch from scratch using a non-recursive algorithm; now has improved compliance with the fnmatch spec. Note: 1.4.3 was never officially released. Release -2 should fix topbuilddir problem from -1. Fix CVE-2011-1928 introduced...

4.3CVSS7.6AI score0.30406EPSS
Exploits5References6
CVE
CVE
added 2011/05/24 11:0 p.m.119 views

CVE-2011-1928

The CVE-2011-1928 issue affects the APR library’s fnmatch implementation (apr_fnmatch.c) in APR 1.4.3/1.4.4 and Apache HTTP Server 2.2.18, causing an infinite-loop DoS when processing certain URIs due to an incorrect fix for CVE-2011-0419. Connected advisories note the problem is triggered by wil...

4.3CVSS6.7AI score0.10322EPSS
Exploits0References17Affected Software2
OSV
OSV
added 2011/05/16 5:55 p.m.1 views

DEBIAN-CVE-2011-0419

Stack consumption vulnerability in the fnmatch implementation in aprfnmatch.c in the Apache Portable Runtime APR library before 1.4.3 and the Apache HTTP Server before 2.2.18, and in fnmatch.c in libc in NetBSD 5.1, OpenBSD 4.8, FreeBSD, Apple Mac OS X 10.6, Oracle Solaris 10, and Android, allows...

4.3CVSS6.5AI score0.30406EPSS
Exploits5References1
NVD
NVD
added 2011/05/16 5:55 p.m.19 views

CVE-2011-0419

Stack consumption vulnerability in the fnmatch implementation in aprfnmatch.c in the Apache Portable Runtime APR library before 1.4.3 and the Apache HTTP Server before 2.2.18, and in fnmatch.c in libc in NetBSD 5.1, OpenBSD 4.8, FreeBSD, Apple Mac OS X 10.6, Oracle Solaris 10, and Android, allows...

4.3CVSS5.8AI score0.30406EPSS
Exploits5References58
CVE
CVE
added 2011/05/16 5:0 p.m.756 views

CVE-2011-0419

CVE-2011-0419 is a stack consumption/DoS vulnerability in the APR library’s fnmatch implementation (apr_fnmatch.c) and, for some platforms, in libc’s fnmatch.c. It affects APR < 1.4.3 and Apache HTTP Server

4.3CVSS7.7AI score0.30406EPSS
Exploits5References58Affected Software1
RedHat Linux
RedHat Linux
added 2011/05/11 10:23 p.m.6 views

apr: unconstrained recursion in apr_fnmatch

Stack consumption vulnerability in the fnmatch implementation in aprfnmatch.c in the Apache Portable Runtime APR library before 1.4.3 and the Apache HTTP Server before 2.2.18, and in fnmatch.c in libc in NetBSD 5.1, OpenBSD 4.8, FreeBSD, Apple Mac OS X 10.6, Oracle Solaris 10, and Android, allows...

4.3CVSS7.2AI score0.30406EPSS
Exploits5References4
seebug.org
seebug.org
added 2011/04/28 12:0 a.m.14 views

php 5.2.x<5.2.14,5.3.x<5.3.3 fnmatch 函数拒绝服务漏洞

No description provided by source...

7.1AI score
Exploits0
Rows per page
Query Builder