CVE-2026-43044

In the Linux kernel, the following vulnerability has been resolved: crypto: caam - fix DMA corruption on long hmac keys When a key longer than block size is supplied, it is copied and then hashed into the real key. The memory allocated for the copy needs to be rounded to DMA cache alignment, as...

EUVD-2000-0471

Malware in sbrugna...

EUVD-2006-5124

Malware in sbrugna...

UBUNTU-CVE-2025-22075

In the Linux kernel, the following vulnerability has been resolved: rtnetlink: Allocate vfinfo size for VF GUIDs when supported Commit 30aad41721e0 "net/core: Add support for getting VF GUIDs" added support for getting VF port and node GUIDs in netlink ifinfo messages, but their size was not take...

CLSA-2024-1726773559 Fix of 5 CVEs

Backport upstream's fixes from OpenJDK 11.0.23 release. - CVE-2024-21011: possible crash on long exception message in Hotspot. - CVE-2024-21012: incorrect performing a reverse DNS query in ConnectionPool class. - CVE-2024-21068: incorrect applying an unsigned integer left shift in Hotspot. -...

USN-6813-1 openjdk-21 vulnerabilities

It was discovered that the Hotspot component of OpenJDK 21 incorrectly handled certain exceptions with specially crafted long messages. An attacker could possibly use this issue to cause a denial of service. CVE-2024-21011 It was discovered that OpenJDK 21 incorrectly performed reverse DNS query...

Denial Of Service (DoS)

ncmpc is vulnerable to denial of service DoS. The vulnerability exists through a NULL pointer dereference flaw that occurs if a user uses the chat screen and another client sends a long chat message...

CVE-2019-20502

An issue was discovered in EFS Easy Chat Server 3.1. There is a buffer overflow via a long body2.ghp message parameter...

Buffer overflow

An issue was discovered in EFS Easy Chat Server 3.1. There is a buffer overflow via a long body2.ghp message parameter...

CVE-2019-7629

Stack-based buffer overflow in the stripvt102codes function in TinTin++ 2.01.6 and WinTin++ 2.01.6 allows remote attackers to execute arbitrary code by sending a long message to the client...

UBUNTU-CVE-2018-9240

ncmpc through 0.29 is prone to a NULL pointer dereference flaw. If a user uses the chat screen and another client sends a long chat message, a crash and denial of service could occur...

Code injection

The SIP implementation on the Cisco PGW 2200 Softswitch with software 9.73S before 9.73S11 and 9.73P before 9.73P11 allows remote attackers to cause a denial of service device crash via a long message, aka Bug ID CSCsk44115...

Trellian FTP Client 3.01 PASV Remote Buffer Overflow

This module exploits a buffer overflow in the Trellian 3.01 FTP client that is triggered through an excessively long PASV message. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Trellian FTP...

CVE-2008-3795

Buffer overflow in Ipswitch WSFTP Home client allows remote FTP servers to have an unknown impact via a long "message response."...

CVE-2008-2922

Stack-based buffer overflow in artegic Dana IRC client 1.3 and earlier allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long IRC message...

CVE-2006-5139

Unspecified vulnerability in MkPortal allows remote attackers to corrupt web site content, and possibly have other impact, via a certain long Message that affects "Tables," related to the Urlobox...

Stack overflow

Stack-based buffer overflow in the CmdSayf function in gcmds.c in Alien Arena 2006 Gold Edition 5.00 allows remote attackers possibly authenticated to execute arbitrary code by sending a long message to the server...

CVE-2006-1146

Stack-based buffer overflow in the CmdSayf function in gcmds.c in Alien Arena 2006 Gold Edition 5.00 allows remote attackers possibly authenticated to execute arbitrary code by sending a long message to the server...

[SA17386] SpamAssassin Long Message Header Denial of Service

TITLE: SpamAssassin Long Message Header Denial of Service SECUNIA ADVISORY ID: SA17386 VERIFY ADVISORY: http://secunia.com/advisories/17386/ CRITICAL: Less critical IMPACT: DoS WHERE: From remote SOFTWARE: SpamAssassin 3.x http://secunia.com/product/4506/ DESCRIPTION: A vulnerability has been...

p5-Mail-SpamAssassin -- denial of service vulnerability

Apache SpamAssassin Security Team reports: Apache SpamAssassin 3.0.4 was recently released, and fixes a denial of service vulnerability in versions 3.0.1, 3.0.2, and 3.0.3. The vulnerability allows certain misformatted long message headers to cause spam checking to take a very long time. While th...