Lucene search
K

113 matches found

OSV
OSV
added 2020/08/07 12:54 p.m.7 views

SUSE-SU-2020:2167-1 Security update for LibVNCServer

This update for LibVNCServer fixes the following issues: - security update fix CVE-2018-21247 bsc1173874, uninitialized memory contents are vulnerable to Information leak fix CVE-2019-20839 bsc1173875, buffer overflow in ConnectClientToUnixSock fix CVE-2019-20840 bsc1173876, unaligned accesses in...

9.8CVSS6.8AI score0.03589EPSS
Exploits0References23
OSV
OSV
added 2020/07/14 3:41 p.m.6 views

SUSE-SU-2020:1913-1 Security update for samba

This update for samba fixes the following issues: - CVE-2020-10745: Fixed an issue which parsing and packing of NBT and DNS packets containing dots could potentially have consumed excessive CPU bsc1173160. - CVE-2020-14303: Fixed an endless loop when receiving at AD DC empty UDP packets bsc117335...

7.8CVSS6.9AI score0.03874EPSS
Exploits0References11
NVD
NVD
added 2020/07/05 11:15 a.m.14 views

CVE-2020-15466

In Wireshark 3.2.0 to 3.2.4, the GVCP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gvcp.c by ensuring that an offset increases in all situations...

7.5CVSS0.03101EPSS
Exploits0References7
OSV
OSV
added 2020/05/22 4:17 p.m.7 views

OPENSUSE-SU-2020:0681-1 Security update for libxml2

This update for libxml2 fixes the following issues: - CVE-2019-20388: Fixed a memory leak in xmlSchemaPreRun bsc1161521. - CVE-2019-19956: Fixed a memory leak bsc1159928. - CVE-2020-7595: Fixed an infinite loop in an EOF situation bsc1161517. This update was imported from the SUSE:SLE-15:Update...

7.5CVSS7.7AI score0.07836EPSS
Exploits0References7
Mageia
Mageia
added 2020/01/05 3:37 p.m.30 views

Updated dia packages fix security vulnerability

Updated dia package fixes security vulnerability: An endless loop on filenames with invalid encoding CVE-2019-19451...

5.5CVSS2.9AI score0.0037EPSS
Exploits0References2
OSV
OSV
added 2019/11/07 4:52 p.m.10 views

SUSE-SU-2019:2930-1 Security update for SUSE Manager Server 4.0

This update fixes the following issues: cobbler: - Fix for install loop caused autoinstallation profiles bsc1151875 - Update module config description to match new parameters - Add config migration script and runs it in post-install script - Fix for config backups in post install script bsc114907...

8.8CVSS7.4AI score0.0484EPSS
Exploits0References63
OSV
OSV
added 2018/11/22 3:25 p.m.6 views

SUSE-SU-2018:3866-1 Security update for openssl

This update for openssl fixes the following issues: Security issues fixed: - CVE-2018-0734: Fixed timing vulnerability in DSA signature generation bsc1113652. - CVE-2018-5407: Fixed elliptic curve scalar multiplication timing attack defenses bsc1113534. - Add missing timing side channel patch for...

5.9CVSS5.7AI score0.12154EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2018/05/29 12:0 a.m.36 views

openSUSE Security Update : GraphicsMagick (openSUSE-2018-533)

This update for GraphicsMagick fixes the following issues : - CVE-2017-18271: An infinite loop in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service was fixed. boo1094204 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

7.1CVSS6.7AI score0.02241EPSS
Exploits0References2
OSV
OSV
added 2018/05/09 8:33 a.m.15 views

SUSE-SU-2018:1176-1 Security update for php7

This update for php7 fixes the following issues: Security issues fixed: - CVE-2018-10545: Fix access controls in FPM child processes bsc1091367. - CVE-2018-10547: Fix Reflected XSS on the PHAR 403 and 404 error pages bsc1091362. - CVE-2018-10546: Fix an infinite loop exists in ext/iconv/iconv.c...

7.5CVSS6.1AI score0.10564EPSS
Exploits0References9
NVD
NVD
added 2018/04/04 7:29 a.m.24 views

CVE-2018-9257

In Wireshark 2.4.0 to 2.4.5, the CQL dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-cql.c by checking for a nonzero number of columns...

7.5CVSS7.3AI score0.01858EPSS
Exploits1References3
OSV
OSV
added 2018/02/23 10:29 p.m.0 views

DEBIAN-CVE-2018-7323

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-wccp.c had a large loop that was addressed by ensuring that a calculated length was monotonically increasing...

7.5CVSS6.8AI score0.02454EPSS
Exploits0References1
OSV
OSV
added 2018/02/23 10:29 p.m.19 views

CVE-2018-7322

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-dcm.c had an infinite loop that was addressed by checking for integer wraparound...

7.5CVSS7.7AI score
Exploits0References6
Prion
Prion
added 2018/02/23 10:29 p.m.19 views

Design/Logic Flaw

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpki-rtr.c had an infinite loop that was addressed by validating a length field...

5CVSS7.3AI score0.02385EPSS
Exploits0References5Affected Software2
CVE
CVE
added 2018/02/23 10:0 p.m.122 views

CVE-2018-7329

Wireshark vulnerability CVE-2018-7329 affects Wireshark 2.4.0–2.4.4 and 2.2.0–2.2.12 due to an infinite loop in epan/dissectors/packet-s7comm.c caused by off-by-one errors. This can lead to high CPU usage and unresponsiveness; remote attackers could exploit malformed packets. Connected advisories...

7.5CVSS7.2AI score0.02171EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2018/02/23 10:0 p.m.34 views

CVE-2018-7322

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-dcm.c had an infinite loop that was addressed by checking for integer wraparound...

7.5CVSS2.4AI score0.02454EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2018/02/23 10:0 p.m.28 views

CVE-2018-7331

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-ber.c had an infinite loop that was addressed by validating a length...

7.5CVSS7.4AI score0.02385EPSS
Exploits0
OSV
OSV
added 2017/12/01 2:6 p.m.5 views

SUSE-SU-2017:3183-1 Security update for ncurses

This update for ncurses fixes the following issues: Security issues fixed: - CVE-2017-13728: Fix infinite loop in the nextchar function in compscan.c bsc1056136. - CVE-2017-13729: Fix illegal address access in the ncsavestr bsc1056132. - CVE-2017-13730: Fix illegal address access in the function...

7.8CVSS7AI score0.03896EPSS
Exploits6References15
Cvelist
Cvelist
added 2017/10/10 9:0 p.m.26 views

CVE-2017-15189

In Wireshark 2.4.0 to 2.4.1, the DOCSIS dissector could go into an infinite loop. This was addressed in plugins/docsis/packet-docsis.c by adding decrements...

7.3AI score0.01685EPSS
Exploits0References5
OSV
OSV
added 2017/09/22 11:33 a.m.10 views

SUSE-SU-2017:2555-1 Security update for wireshark

This update for wireshark to version 2.2.9 fixes several issues. These security issues were fixed: - CVE-2017-13767: The MSDP dissector could have gone into an infinite loop. This was addressed by adding length validation bsc1056248. - CVE-2017-13766: The Profinet I/O dissector could have crash...

7.8CVSS6.6AI score0.03822EPSS
Exploits0References11
Prion
Prion
added 2017/06/02 5:29 a.m.16 views

Out-of-bounds

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the SoulSeek dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-slsk.c by making loop bounds more explicit...

7.8CVSS6.7AI score0.03436EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder