Lucene search
K

98 matches found

OSV
OSV
added 2017/01/20 12:0 a.m.2 views

UBUNTU-CVE-2016-9436

parsetagx.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to a tag...

6.5CVSS7AI score0.03325EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/12/15 1:57 p.m.4 views

kernel: Unauthorized access to IPC objects with SysV shm

A race condition flaw was found in the way the Linux kernel's IPC subsystem initialized certain fields in an IPC object structure that were later used for permission checking before inserting the object into a globally visible list. A local, unprivileged user could potentially use this flaw to...

6.9CVSS6.7AI score0.00412EPSS
Exploits1References4
CNVD
CNVD
added 2015/12/07 12:0 a.m.4 views

Google Chrome Denial of Service Vulnerability (CNVD-2015-07975)

Google Chrome is a web browser developed by the American company Google Google. The 'VideoFramePool::PoolImpl::CreateFrame' function in the media/base/videoframepool.cc file in Google Chrome versions prior to 47.0.2526.73 has a security vulnerability. Due to the program failing to properly...

10CVSS6.5AI score0.01349EPSS
Exploits0References1
OSV
OSV
added 2015/12/04 6:21 p.m.3 views

USN-2829-2 linux-lts-vivid vulnerabilities

It was discovered that the SCTP protocol implementation in the Linux kernel performed an incorrect sequence of protocol-initialization steps. A local attacker could use this to cause a denial of service system crash. CVE-2015-5283 Dmitry Vyukov discovered that the Linux kernel's keyring handler...

4.7CVSS6.6AI score0.00549EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2015/11/23 12:56 p.m.4 views

OpenJDK: missing checks for proper initialization in ObjectStreamClass (Serialization, 8103671)

Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serialization...

10CVSS7.2AI score0.06284EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2013/12/23 12:0 a.m.41 views

Amazon Linux AMI : nspr (ALAS-2013-266)

A flaw was found in the way NSS handled invalid handshake packets. A remote attacker could use this flaw to cause a TLS/SSL client using NSS to crash or, possibly, execute arbitrary code with the privileges of the user running the application. CVE-2013-5605 It was found that the fix for...

7.5CVSS7.6AI score0.04399EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2013/11/20 7:34 p.m.3 views

luci: paster hidden untrusted path and "command" (callable association) injection

A flaw was found in the way the luci service was initialized. If a system administrator started the luci service from a directory that was writable to by a local user, that user could use this flaw to execute arbitrary code as the root or luci user...

6.2CVSS6.1AI score0.00378EPSS
Exploits0References4
Mageia
Mageia
added 2013/07/21 9:25 a.m.37 views

Updated python-suds package fixes security vulnerability

An insecure temporary directory use flaw was found in the way python-suds performed initialization of its internal file-based URL cache predictable location was used for directory to store the cached files. A local attacker could use this flaw to conduct symbolic link attacks, possibly leading to...

1.2CVSS1.4AI score0.00558EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2013/06/10 9:6 p.m.31 views

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

Updated kernel packages that fix three security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which...

7.8CVSS6.9AI score0.04189EPSS
Exploits0References5
OSV
OSV
added 2013/06/09 9:55 p.m.1 views

DEBIAN-CVE-2013-4075

epan/dissectors/packet-gmr1bcch.c in the GMR-1 BCCH dissector in Wireshark 1.8.x before 1.8.8 does not properly initialize memory, which allows remote attackers to cause a denial of service application crash via a crafted packet...

5CVSS6.7AI score0.03208EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.35 views

Scientific Linux Security Update : kernel on SL4.x i386/x86_64

This update fixes the following security issues : - A buffer overflow flaw was found in the loadmixervolumes function in the Linux kernel's Open Sound System OSS sound driver. On 64-bit PowerPC systems, a local, unprivileged user could use this flaw to cause a denial of service or escalate their...

7.2CVSS5.6AI score0.00494EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2012/06/05 12:0 a.m.28 views

RedHat Update for kernel RHSA-2011:0007-01

Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2011:0007-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

7.2CVSS0.6AI score0.02939EPSS
Exploits31References2
Prion
Prion
added 2012/01/24 4:3 a.m.18 views

Design/Logic Flaw

Skia, as used in Google Chrome before 16.0.912.77, does not perform all required initialization of values, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

7.5CVSS7.6AI score0.01423EPSS
Exploits0References5Affected Software1
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.36 views

CentOS Update for kernel CESA-2011:0833 centos5 i386

Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2011:0833 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

7.8CVSS0.8AI score0.03411EPSS
Exploits4References2
Cent OS
Cent OS
added 2011/05/31 11:49 p.m.105 views

kernel security update

CentOS Errata and Security Advisory CESA-2011:0833 Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scorin...

7.8CVSS6.7AI score0.03411EPSS
Exploits4References7
RedHat Linux
RedHat Linux
added 2011/05/10 5:16 p.m.62 views

Important: Red Hat Security Advisory: kernel-rt security and bug fix update

Updated kernel-rt packages that fix multiple security issues and various bugs are now available for Red Hat Enterprise MRG 1.3. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

7.8CVSS6.8AI score0.03411EPSS
Exploits9References18
Prion
Prion
added 2011/01/03 8:0 p.m.22 views

Design/Logic Flaw

net/packet/afpacket.c in the Linux kernel before 2.6.37-rc2 does not properly initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory by leveraging the CAPNETRAW capability to read copies of the applicable structures...

1.9CVSS5.9AI score0.00377EPSS
Exploits0References23Affected Software7
OSV
OSV
added 2009/06/09 5:30 p.m.6 views

CVE-2009-0949

The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a scheduler request with two consecutive IPPTAGUNSUPPORTED tags...

7.5CVSS7.3AI score
Exploits0References25
Rows per page
Query Builder