Lucene search
K

11 matches found

OSV
OSV
added 2026/06/02 9:13 a.m.7 views

OPENSUSE-SU-2026:20877-1 Security update for rsync

This update for rsync fixes the following issues - CVE-2025-10158: Out of bounds array access via negative index bsc1254441. - CVE-2026-29518: Symlink-Race TOCTOU in Daemon use chroot = no bsc1264511. - CVE-2026-41035: count of entries mismatch can lead to a use-after-free bsc1262223. -...

8.1CVSS5.8AI score0.0078EPSS
Exploits1References16
AlpineLinux
AlpineLinux
added 2026/01/16 10:45 p.m.4 views

CVE-2026-22816

Gradle is a build automation tool, and its native-platform tool provides Java bindings for native APIs. When resolving dependencies in versions before 9.3.0, some exceptions were not treated as fatal errors and would not cause a repository to be disabled. If a build encountered one of these...

8.6CVSS5.6AI score0.00149EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/04/30 10:40 a.m.3 views

glibc: potential use-after-free in getaddrinfo()

A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the nssgethostbyname2r and nssgetcanonnamer hooks without...

5.9CVSS6.7AI score0.01439EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2023/10/18 3:52 a.m.60 views

CVE-2023-38545

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that host name can be is 255 bytes. If the host na...

9.8CVSS8AI score0.78483EPSS
Exploits6
CNNVD
CNNVD
added 2023/09/12 12:0 a.m.2 views

glibc Resource Management Error Vulnerability

glibc GNU C Library is a C standard library implemented by a GNU project of the GNU community. A resource management error vulnerability exists in glibc, which stems from the fact that when an NSS module implements only the nssgethostbyname2r hooks but not the nssgethostbyname3r hooks, the...

5.9CVSS6.8AI score0.01439EPSS
Exploits0References21
Microsoft CVE
Microsoft CVE
added 2021/11/18 8:0 a.m.3 views

In uClibc and uClibc-ng before 1.0.39 incorrect handling of special characters in domain names returned by DNS servers via gethostbyname getaddrinfo gethostbyaddr and getnameinfo can lead to output of wrong hostnames (leading to domain hijacking) or injection into applications (leading to remote code execution XSS applications crashes etc.). In other words a validation step which is expected in any stub resolver does not occur.

...

9.6CVSS7AI score0.03261EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2016/02/17 12:0 a.m.50 views

Debian DLA-416-1 : eglibc security update

Several vulnerabilities have been fixed in the Debian GNU C Library, eglibc : CVE-2015-7547 The Google Security Team and Red Hat discovered that the glibc host name resolver function, getaddrinfo, when processing AFUNSPEC queries for dual A/AAAA lookups, could mismange its internal buffers, leadi...

9.8CVSS8.7AI score0.89557EPSS
Exploits18References4
Gentoo Linux
Gentoo Linux
added 2016/02/17 12:0 a.m.54 views

GNU C Library: Multiple vulnerabilities

Background The GNU C library is the standard C library used by Gentoo Linux systems. Description Multiple vulnerabilities have been discovered in the GNU C Library: The Google Security Team and Red Hat discovered a stack-based buffer overflow in the senddg and sendvc functions due to a buffer...

9.8CVSS10AI score0.89557EPSS
Exploits25
OSV
OSV
added 2016/02/16 12:0 a.m.61 views

DSA-3481-1 glibc - security update

Bulletin has no description...

9.8CVSS7.8AI score0.89557EPSS
Exploits17
Veeam
Veeam
added 2012/07/11 12:0 a.m.18 views

How to troubleshoot CIM hardware monitoring

Challenge The CIM API allows Veeam products to receive up-to-date information without requesting hardware refreshes, but this requires a separate connection, and if that connection cannot be made, the hardware data will be collected as it was in earlier versions, and request periodic hardware...

6.7AI score
Exploits0
securityvulns
securityvulns
added 2002/04/15 12:0 a.m.42 views

Buffer overflow in webalizer

Buffer overflow in host name resolution during log analizing...

10CVSS2.8AI score0.0199EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder