Lucene search
K

107 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.43 views

Ubuntu 24.04 LTS : klibc vulnerabilities (USN-6736-2)

The remote Ubuntu 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6736-2 advisory. USN-6736-1 fixed vulnerabilities in klibc. This update provides the corresponding updates for Ubuntu 24.04 LTS. Tenable has extracted the preceding...

9.8CVSS7.6AI score0.51733EPSS
Exploits2References5
Cloud Foundry
Cloud Foundry
added 2024/05/23 12:0 a.m.34 views

USN-6736-1: klibc vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Canonical Ubuntu 22.04 Description It was discovered that zlib, vendored in klibc, incorrectly handled pointer arithmetic. An attacker could use this issue to cause klibc to crash or to possibl...

9.8CVSS9.5AI score0.51733EPSS
Exploits2Affected Software2
OpenVAS
OpenVAS
added 2024/04/17 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-6736-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.4AI score0.51733EPSS
Exploits2References2
OSV
OSV
added 2024/04/16 11:43 a.m.7 views

USN-6736-1 klibc vulnerabilities

It was discovered that zlib, vendored in klibc, incorrectly handled pointer arithmetic. An attacker could use this issue to cause klibc to crash or to possibly execute arbitrary code. CVE-2016-9840, CVE-2016-9841 Danilo Ramos discovered that zlib, vendored in klibc, incorrectly handled memory whe...

9.8CVSS7.1AI score0.51733EPSS
Exploits2References5
Ubuntu
Ubuntu
added 2024/04/16 11:43 a.m.499 views

USN-6736-1: klibc vulnerabilities

It was discovered that zlib, vendored in klibc, incorrectly handled pointer arithmetic. An attacker could use this issue to cause klibc to crash or to possibly execute arbitrary code. CVE-2016-9840, CVE-2016-9841 Danilo Ramos discovered that zlib, vendored in klibc, incorrectly handled memory whe...

9.8CVSS7.9AI score0.51733EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2024/04/16 12:0 a.m.57 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 : klibc vulnerabilities (USN-6736-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6736-1 advisory. It was discovered that zlib, vendored in klibc, incorrectly handled pointer arithmetic. An attack...

9.8CVSS8.1AI score0.51733EPSS
Exploits2References5
Veracode
Veracode
added 2023/07/10 10:17 a.m.17 views

Integer Overflow

Klibc is vulnerable to Integer Overflow. The vulnerability exists in the 'cpio' command because it does not properly validate input, allowing an attacker to trigger a buffer overflow...

9.8CVSS7AI score0.02059EPSS
Exploits0References6Affected Software1
Veracode
Veracode
added 2023/07/10 10:17 a.m.24 views

Integer Overflow

Klibc is vulnerable to Integer Overflow. This vulnerability exists because of a segmentation fault in the malloc function, which allows an attacker to exhaust memory, causing an overflow...

9.8CVSS6.7AI score0.02147EPSS
Exploits0References7Affected Software1
Veracode
Veracode
added 2023/07/10 10:4 a.m.26 views

Integer Overflow

klibc is vulnerable to Integer Overflow. The vulnerability occurs due to the multiplication in the calloc function in klibc which could result in heap-based buffer overflow...

9.8CVSS6.9AI score0.02059EPSS
Exploits0References6Affected Software1
Cloud Foundry
Cloud Foundry
added 2022/05/23 12:0 a.m.24 views

USN-5379-1: klibc vulnerabilities | Cloud Foundry

Severity Low Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description It was discovered that klibc did not properly perform some mathematical operations, leading to an integer overflow. An attacker could possibly use this issue to cause a crash, resultin...

9.8CVSS9.1AI score0.02147EPSS
Exploits0Affected Software3
OpenVAS
OpenVAS
added 2022/04/19 12:0 a.m.56 views

Ubuntu: Security Advisory (USN-5379-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.02147EPSS
Exploits0References2
OSV
OSV
added 2022/04/18 11:37 a.m.3 views

USN-5379-1 klibc vulnerabilities

It was discovered that klibc did not properly perform some mathematical operations, leading to an integer overflow. An attacker could possibly use this issue to cause a crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2021-31870 It was discovered that klibc did not...

9.8CVSS7.4AI score0.02147EPSS
Exploits0References5
Ubuntu
Ubuntu
added 2022/04/18 11:37 a.m.100 views

USN-5379-1: klibc vulnerabilities

It was discovered that klibc did not properly perform some mathematical operations, leading to an integer overflow. An attacker could possibly use this issue to cause a crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2021-31870 It was discovered that klibc did not...

9.8CVSS8.4AI score0.02147EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/04/18 12:0 a.m.48 views

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : klibc vulnerabilities (USN-5379-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5379-1 advisory. It was discovered that klibc did not properly perform some mathematical operations, leading to an integer overflow. An attacker...

9.8CVSS8.6AI score0.02147EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/11/02 12:0 a.m.5 views

The vulnerability of the cpio command in the Klibc environment library on 32-bit systems, related to integer overflow, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the cpio command in the Klibc environment library on 32-bit systems is related to integer overflow. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

9.8CVSS7.9AI score0.02059EPSS
Exploits0References9Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/10/29 12:0 a.m.7 views

The vulnerability of the malloc() function in the Klibc environment library, related to integer overflow, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the malloc function in the Klibc environment library is related to integer overflow. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

9.8CVSS7.8AI score0.02147EPSS
Exploits0References9Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/10/29 12:0 a.m.6 views

The vulnerability of the calloc() function in the Klibc environment library, related to integer overflow, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the calloc function in the Klibc environment library is related to integer overflow. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and even cause service failures...

9.8CVSS7.8AI score0.02059EPSS
Exploits0References9Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/10/29 12:0 a.m.6 views

The vulnerability of the cpio command in the Klibc environment library on 64-bit systems, related to integer overflow, allows a attacker to cause a service failure.

The vulnerability of the cpio command in the Klibc environment library on 64-bit systems is related to integer overflow. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

7.5CVSS7.3AI score0.0186EPSS
Exploits0References8Affected Software4
Tenable Nessus
Tenable Nessus
added 2021/07/03 12:0 a.m.52 views

Debian DLA-2695-1 : klibc - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2695 advisory. - An issue was discovered in klibc before 2.0.9. Multiplication in the calloc function may result in an integer overflow and a subsequent heap buffer overflow...

9.8CVSS8.6AI score0.02147EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2021/06/29 12:0 a.m.48 views

Debian: Security Advisory (DLA-2695-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.02147EPSS
Exploits0References4
Rows per page
Query Builder