44 matches found
GHSA-3F84-RPWH-47G6 Waitress vulnerable to DoS leading to high CPU usage/resource exhaustion
Impact When a remote client closes the connection before waitress has had the opportunity to call getpeername waitress won't correctly clean up the connection leading to the main thread attempting to write to a socket that no longer exists, but not removing it from the list of sockets to attempt ...
Waitress 安全漏洞
Waitress is a production-quality, pure Python WSGI server from the Pylons project. A security vulnerability existed prior to Waitress version 3.0.1, which stemmed from the fact that if a remote client closed a connection before waitress called getpeername, waitress would fail to clean up the...
PT-2023-9786
Name of the Vulnerable Software and Affected Versions: Waitress versions prior to 3.0.1 Description: The issue is related to the getpeername function in the Waitress WSGI server for Python. When a remote client closes the connection before Waitress has the opportunity to call getpeername, it fail...
kernel: scsi: iscsi: iscsi_tcp: Fix null-ptr-deref while calling getpeername()
In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi: iscsitcp: Fix null-ptr-deref while calling getpeername Fix a NULL pointer crash that occurs when we are freeing the socket at the same time we access it via sysfs. The problem is that: 1. iscsiswtcpconngetparam and...
SUSE CVE-2006-1342
net/ipv4/afinet.c in Linux kernel 2.4 does not clear sockaddrin.sinzero before returning IPv4 socket names from the 1 getsockname, 2 getpeername, and 3 accept functions, which allows local users to obtain portions of potentially sensitive memory...
GSD-2022-1007259 scsi: iscsi: iscsi_tcp: Fix null-ptr-deref while calling getpeername()
scsi: iscsi: iscsitcp: Fix null-ptr-deref while calling getpeername This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.150 by commit...
GSD-2022-1007058 scsi: iscsi: iscsi_tcp: Fix null-ptr-deref while calling getpeername()
scsi: iscsi: iscsitcp: Fix null-ptr-deref while calling getpeername This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...
PT-2022-35053 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.3 Description: The issue is related to a null pointer dereference while calling getpeername in the iscsi tcp component of the Linux Kernel. The actual impact and attack plausibility have not yet been proven...
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in pyftpdlib
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service daemon outage by establishing and then immediately closing a TCP connection, leading to the getpeername function having an ENOTCONN error, a different vulnerabilit...
Perl Denial of Service Vulnerability (Windows)
The host is installed with Perl and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: gbperldosvulnwin.nasl 7029 2017-08-31 11:51:40Z teissa $ Perl Denial of Service Vulnerability Windows Authors: Madhuri D Copyright: Copyright c 2011 Greenbone Networks GmbH,...
Python: SMTP proxy RFC 2821 module DoS (uncaught exception) (Issue #9129)
Multiple race conditions in smtpd.py in the smtpd module in Python 2.6, 2.7, 3.1, and 3.2 alpha allow remote attackers to cause a denial of service daemon outage by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return value of None...
CVE-2011-0761
Perl 5.10.x allows context-dependent attackers to cause a denial of service NULL pointer dereference and application crash by leveraging an ability to inject arguments into a 1 getpeername, 2 readdir, 3 closedir, 4 getsockname, 5 rewinddir, 6 tell, or 7 telldir function call...
Null pointer dereference
Perl 5.10.x allows context-dependent attackers to cause a denial of service NULL pointer dereference and application crash by leveraging an ability to inject arguments into a 1 getpeername, 2 readdir, 3 closedir, 4 getsockname, 5 rewinddir, 6 tell, or 7 telldir function call...
CVE-2011-0761
Perl 5.10.x allows context-dependent attackers to cause a denial of service NULL pointer dereference and application crash by leveraging an ability to inject arguments into a 1 getpeername, 2 readdir, 3 closedir, 4 getsockname, 5 rewinddir, 6 tell, or 7 telldir function call...
Python: SMTP proxy RFC 2821 module DoS (uncaught exception) (Issue #9129)
Multiple race conditions in smtpd.py in the smtpd module in Python 2.6, 2.7, 3.1, and 3.2 alpha allow remote attackers to cause a denial of service daemon outage by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return value of None...
CVE-2009-5011
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service daemon outage by establishing and then immediately closing a TCP connection, leading to the getpeername function having an ENOTCONN error, a different vulnerabilit...
DEBIAN-CVE-2009-5011
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service daemon outage by establishing and then immediately closing a TCP connection, leading to the getpeername function having an ENOTCONN error, a different vulnerabilit...
CVE-2009-5011
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service daemon outage by establishing and then immediately closing a TCP connection, leading to the getpeername function having an ENOTCONN error, a different vulnerabilit...
CVE-2009-5011
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service daemon outage by establishing and then immediately closing a TCP connection, leading to the getpeername function having an ENOTCONN error, a different vulnerabilit...
Race condition
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service daemon outage by establishing and then immediately closing a TCP connection, leading to the getpeername function having an ENOTCONN error, a different vulnerabilit...