Regular Expression Denial of Service Vulnerability of Date Parsing Methods

Date's parsing methods including Date.parse are using Regexps internally, some of which are vulnerable against regular expression denial of service. Applications and libraries that apply such methods to untrusted input may be affected. The fix limits the input length up to 128 bytes by default...

github.com/ulikunitz/xz fixes readUvarint Denial of Service (DoS)

Impact xz is a compression and decompression library focusing on the xz format completely written in Go. The function readUvarint used to read the xz container format may not terminate a loop provide malicous input. Patches The problem has been fixed in release v0.5.8. Workarounds Limit the size ...

Denial Of Service (DoS)

musl is vulnerable to denial of service DoS. The vulnerability exists through the wcsnrtombs function during the handling of the destination buffer size when limiting the input character count...

The vulnerability of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the drivers/misc/qseecom.c file in Qualcomm’s Android operating system is related to an improper limitation on user input. Exploiting this vulnerability allows a malicious actor to enhance their privileges through a specially created application...