Lucene search
K

613 matches found

RedhatCVE
RedhatCVE
added 2024/10/22 2:9 p.m.10 views

CVE-2024-49902

In the Linux kernel, the following vulnerability has been resolved: jfs: check if leafidx greater than num leaves per dmap tree syzbot report a out of bounds in dbSplit, it because dmtleafidx greater than num leaves per dmap tree, add a checking for dmtleafidx in dbFindLeaf. Shaggy: Modified sani...

5.5CVSS6.9AI score0.00277EPSS
Exploits0References4
OSV
OSV
added 2024/10/21 6:15 p.m.2 views

DEBIAN-CVE-2024-49902

In the Linux kernel, the following vulnerability has been resolved: jfs: check if leafidx greater than num leaves per dmap tree syzbot report a out of bounds in dbSplit, it because dmtleafidx greater than num leaves per dmap tree, add a checking for dmtleafidx in dbFindLeaf. Shaggy: Modified sani...

5.5CVSS5.7AI score0.00277EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 6:15 p.m.7 views

AZL-52922 CVE-2024-49902 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: jfs: check if leafidx greater than num leaves per dmap tree syzbot report a out of bounds in dbSplit, it because dmtleafidx greater than num leaves per dmap tree, add a checking for dmtleafidx in dbFindLeaf. Shaggy: Modified sani...

5.5CVSS6.7AI score0.00277EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 6:15 p.m.7 views

AZL-51489 CVE-2024-49889 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: ext4: avoid use-after-free in ext4extshowleaf In ext4findextent, path may be freed by error or be reallocated, so using a previously saved ppath may have been freed and thus may trigger use-after-free, as follows: ext4splitextent...

7.8CVSS6.5AI score0.00256EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/10/21 6:15 p.m.10 views

CVE-2024-49902

In the Linux kernel, the following vulnerability has been resolved: jfs: check if leafidx greater than num leaves per dmap tree syzbot report a out of bounds in dbSplit, it because dmtleafidx greater than num leaves per dmap tree, add a checking for dmtleafidx in dbFindLeaf. Shaggy: Modified sani...

5.5CVSS6.4AI score0.00277EPSS
Exploits0References48
OSV
OSV
added 2024/10/21 6:15 p.m.1 views

UBUNTU-CVE-2024-49902

In the Linux kernel, the following vulnerability has been resolved: jfs: check if leafidx greater than num leaves per dmap tree syzbot report a out of bounds in dbSplit, it because dmtleafidx greater than num leaves per dmap tree, add a checking for dmtleafidx in dbFindLeaf. Shaggy: Modified sani...

5.5CVSS6.2AI score0.00277EPSS
Exploits0References49
OSV
OSV
added 2024/10/21 6:15 p.m.2 views

UBUNTU-CVE-2024-49889

In the Linux kernel, the following vulnerability has been resolved: ext4: avoid use-after-free in ext4extshowleaf In ext4findextent, path may be freed by error or be reallocated, so using a previously saved ppath may have been freed and thus may trigger use-after-free, as follows: ext4splitextent...

7.8CVSS6.3AI score0.00256EPSS
Exploits0References32
Cvelist
Cvelist
added 2024/09/20 7:4 p.m.24 views

CVE-2024-47061 Arbitrary DOM attributes in element.attributes and leaf.attributes in Platejs

Plate is a javascript toolkit that makes it easier for you to develop with Slate, a popular framework for building text editors. One longstanding feature of Plate is the ability to add custom DOM attributes to any element or leaf using the attributes property. These attributes are passed to the...

8.3CVSS0.00515EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/08/26 11:20 a.m.35 views

CVE-2024-44939 jfs: fix null ptr deref in dtInsertEntry

In the Linux kernel, the following vulnerability has been resolved: jfs: fix null ptr deref in dtInsertEntry syzbot reported general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 1 PREEMPT SMP KASAN PTI KASAN: null-ptr-deref in range...

0.00225EPSS
Exploits0References5
OSV
OSV
added 2024/05/20 10:15 a.m.5 views

AZL-73004 CVE-2024-35949 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: btrfs: make sure that WRITTEN is set on all metadata blocks We previously would call btrfscheckleaf if we had the check integrity code enabled, which meant that we could only run the extended leaf checks if we had WRITTEN set on...

7.8CVSS6.4AI score0.00239EPSS
Exploits0References1
OSV
OSV
added 2024/05/20 10:15 a.m.4 views

UBUNTU-CVE-2024-35949

In the Linux kernel, the following vulnerability has been resolved: btrfs: make sure that WRITTEN is set on all metadata blocks We previously would call btrfscheckleaf if we had the check integrity code enabled, which meant that we could only run the extended leaf checks if we had WRITTEN set on...

7.8CVSS6.4AI score0.00239EPSS
Exploits0References10
Broadcom
Broadcom
added 2024/04/17 12:0 a.m.7 views

OpenSSL Security Advisory [28th March 2023] (CVE-2023-0465, CVE-2023-0466)

Multiple OpenSSL Vulnerabilities released on28th March 2023 Invalid certificate policies in leaf certificates are silently ignored CVE-2023-0465 ========================================================= Applications that use a non-default option when verifying certificates may be vulnerable to an...

5.3CVSS6.9AI score0.01629EPSS
Exploits0
Openbugbounty
Openbugbounty
added 2024/04/08 1:52 p.m.5 views

leafresources.com.au Cross Site Scripting vulnerability OBB-3909749

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
OSV
OSV
added 2024/03/15 9:15 p.m.2 views

CVE-2021-47125

In the Linux kernel, the following vulnerability has been resolved: schhtb: fix refcount leak in htbparenttoleafoffload The commit ae81feb7338c "schhtb: fix null pointer dereference on a null newq" fixes a NULL pointer dereference bug, but it is not correct. Because htbgrafthelper properly handle...

5.5CVSS5.6AI score0.00193EPSS
Exploits0References2
Openbugbounty
Openbugbounty
added 2024/01/17 9:14 p.m.9 views

thebayleaf.ie Improper Access Control vulnerability OBB-3837167

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Code423n4
Code423n4
added 2023/12/21 12:0 a.m.11 views

Incorrect Termination Condition

Lines of code Vulnerability details The provided termination condition if pos = size / 2 && pos = size is incorrect. This condition is not suitable for terminating the maxHeapify function. It should instead be based on comparing values in the heap to ensure the max heap property. The condition if...

7.2AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/11 9:45 a.m.42 views

Security Bulletin: IBM Spectrum Control is vulnerable to multiple weaknesses related to OpenSSL

Summary Vulnerabilities in OpenSSL such as remote attacker bypass security restrictions, denial of service may affect IBM Spectrum Control. These vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2023-0466 DESCRIPTION: OpenSSL could allow a remote attacker to bypass security...

7.8CVSS7.5AI score0.05533EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2023/12/07 1:55 p.m.2 views

openssl: Invalid certificate policies in leaf certificates are silently ignored

A flaw was found in OpenSSL. Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. OpenSSL and other certificate policy checks silently ignore invalid certificate policies in leaf certificates that a...

5.3CVSS6.5AI score0.01583EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/12/07 1:53 p.m.0 views

openssl: Invalid certificate policies in leaf certificates are silently ignored

A flaw was found in OpenSSL. Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. OpenSSL and other certificate policy checks silently ignore invalid certificate policies in leaf certificates that a...

5.3CVSS6.5AI score0.01583EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/12/07 12:21 p.m.4 views

openssl: Invalid certificate policies in leaf certificates are silently ignored

A flaw was found in OpenSSL. Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. OpenSSL and other certificate policy checks silently ignore invalid certificate policies in leaf certificates that a...

5.3CVSS6.5AI score0.01583EPSS
Exploits0References5
Rows per page
Query Builder