Lucene search
K

17001 matches found

OpenVAS
OpenVAS
added 2019/05/03 12:0 a.m.25 views

openSUSE: Security Advisory for libsoup (openSUSE-SU-2019:1310-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.7AI score0.04188EPSS
Exploits0References2
Veracode
Veracode
added 2019/05/02 6:44 a.m.29 views

Denial Of Service (DoS)

GNU Libtasn1 is vulnerable to denial of service attacks. A remote unauthenticated attacker could exploit the vulnerable asn1extractderoctet function to cause an out-of-bounds heap read via a crafted certificate leading to a system crash...

4.3CVSS5.5AI score0.33094EPSS
Exploits1References30Affected Software1
Veracode
Veracode
added 2019/05/02 6:37 a.m.26 views

Arbitrary Code Execution

GNU Wget is vulnerable to arbitrary code execution. By tricking an unsuspecting user into connecting to a malicious HTTP server, an attacker could exploit this flaw to potentially execute arbitrary code...

8.8CVSS8.9AI score0.36563EPSS
Exploits0References9Affected Software1
Veracode
Veracode
added 2019/05/02 6:35 a.m.30 views

Arbitrary Code Execution

GNU C Library is vulnerable to arbitrary code execution. An attacker could use the unsanitized LDPOINTERGUARD environment variable to bypass the pointer guarding protection on set-user-ID or set-group-ID programs to execute arbitrary code with the permissions of the user running the application...

5.5CVSS8.2AI score0.0057EPSS
Exploits1References36Affected Software1
Veracode
Veracode
added 2019/05/02 5:51 a.m.23 views

Denial Of Service (DoS)

GNU C Library is vulnerable to denial of service DoS attacks. Use of a long catalog name in the catopen function may cause a stack-based buffer overflow allowing a context-dependent attacker to cause denial of service via an application crash or possible execution of arbitrary code...

9.8CVSS9.3AI score0.05966EPSS
Exploits1References28Affected Software1
Veracode
Veracode
added 2019/05/02 5:51 a.m.42 views

Arbitrary Code Execution And Denial Of Service (DoS)

GNU C Library is vulnerable to arbitrary code execution and denial of service. An context-dependent attacker could trigger an out-of-bounds heap-memory access via the size argument to the hcreater function to cause a denial of service or possibly execute arbitrary code...

9.8CVSS9.8AI score0.05515EPSS
Exploits1References28Affected Software1
Veracode
Veracode
added 2019/05/02 5:51 a.m.25 views

Denial Of Service (DoS)

GNU C Library is vulnerable to denial of service DoS attacks. An out-of-range time values passed to the strftime function could result in an out-of-bounds memory access allowing attackers to cause a application crash or possibly obtain sensitive information...

9.1CVSS9AI score0.04613EPSS
Exploits0References28Affected Software1
Veracode
Veracode
added 2019/05/02 5:41 a.m.24 views

Denial Of Service (DoS) Through Heap Out-of-Bounds (OOB) Read

The grep utility searches through textual input for lines that contain a match to a specified pattern and then prints the matching lines. The GNU grep utilities include grep, egrep, and fgrep. An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way grep parsed larg...

4.4CVSS7AI score0.01022EPSS
Exploits7References14Affected Software1
Veracode
Veracode
added 2019/05/02 4:59 a.m.26 views

Denial Of Service (DoS)

The coreutils package contains the core GNU utilities. It is a combination of the old GNU fileutils, sh-utils, and textutils packages. It was discovered that the sort, uniq, and join utilities did not properly restrict the use of the alloca function. An attacker could use this flaw to crash those...

4.3CVSS5.7AI score0.07238EPSS
Exploits2References17Affected Software1
Veracode
Veracode
added 2019/05/02 4:59 a.m.27 views

Denial Of Service (DoS)

The coreutils package contains the core GNU utilities. It is a combination of the old GNU fileutils, sh-utils, and textutils packages. It was discovered that the sort, uniq, and join utilities did not properly restrict the use of the alloca function. An attacker could use this flaw to crash those...

4.3CVSS5.7AI score0.07238EPSS
Exploits2References17Affected Software1
NVD
NVD
added 2019/05/01 6:29 p.m.19 views

CVE-2019-11639

An issue was discovered in GNU recutils 1.8. There is a stack-based buffer overflow in the function rectypecheckenum at rec-types.c in librec.a...

8.8CVSS8.9AI score0.0189EPSS
Exploits1References2
NVD
NVD
added 2019/05/01 6:29 p.m.29 views

CVE-2019-11637

An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recrsetgetprops at rec-rset.c in librec.a, leading to a crash...

6.5CVSS6.3AI score0.01411EPSS
Exploits1References2
NVD
NVD
added 2019/05/01 6:29 p.m.19 views

CVE-2019-11640

An issue was discovered in GNU recutils 1.8. There is a heap-based buffer overflow in the function recfexparsestrsimple at rec-fex.c in librec.a...

8.8CVSS8.9AI score0.0189EPSS
Exploits1References2
OSV
OSV
added 2019/05/01 6:29 p.m.7 views

CVE-2019-11639

An issue was discovered in GNU recutils 1.8. There is a stack-based buffer overflow in the function rectypecheckenum at rec-types.c in librec.a...

8.8CVSS7.2AI score
Exploits0References2
OSV
OSV
added 2019/05/01 6:29 p.m.4 views

CVE-2019-11640

An issue was discovered in GNU recutils 1.8. There is a heap-based buffer overflow in the function recfexparsestrsimple at rec-fex.c in librec.a...

8.8CVSS7.2AI score
Exploits0References2
OSV
OSV
added 2019/05/01 6:29 p.m.4 views

DEBIAN-CVE-2019-11640

An issue was discovered in GNU recutils 1.8. There is a heap-based buffer overflow in the function recfexparsestrsimple at rec-fex.c in librec.a...

8.8CVSS7.5AI score0.0189EPSS
Exploits1References1
NVD
NVD
added 2019/05/01 6:29 p.m.15 views

CVE-2019-11638

An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recfieldnameequalp at rec-field-name.c in librec.a, leading to a crash...

6.5CVSS6.3AI score0.01411EPSS
Exploits1References2
OSV
OSV
added 2019/05/01 6:29 p.m.8 views

CVE-2019-11637

An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recrsetgetprops at rec-rset.c in librec.a, leading to a crash...

6.5CVSS6.5AI score
Exploits0References2
OSV
OSV
added 2019/05/01 6:29 p.m.2 views

DEBIAN-CVE-2019-11638

An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recfieldnameequalp at rec-field-name.c in librec.a, leading to a crash...

6.5CVSS8.6AI score0.01411EPSS
Exploits1References1
OSV
OSV
added 2019/05/01 6:29 p.m.5 views

CVE-2019-11638

An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recfieldnameequalp at rec-field-name.c in librec.a, leading to a crash...

6.5CVSS6.5AI score
Exploits0References2
Rows per page
Query Builder