Lucene search
K

13 matches found

OSV
OSV
added 2026/02/03 9:16 p.m.5 views

AZL-76700 CVE-2026-1801 affecting package libsoup for versions less than 3.4.4-12

A flaw was found in libsoup, an HTTP client/server library. This HTTP Request Smuggling vulnerability arises from non-RFC-compliant parsing in the soupfilterinputstreamreadline logic, where libsoup accepts malformed chunk headers, such as lone line feed LF characters instead of the required...

6.5CVSS7.1AI score0.00376EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/03 8:12 p.m.45 views

CVE-2026-1801 Libsoup: libsoup: http request smuggling via malformed chunk headers

A flaw was found in libsoup, an HTTP client/server library. This HTTP Request Smuggling vulnerability arises from non-RFC-compliant parsing in the soupfilterinputstreamreadline logic, where libsoup accepts malformed chunk headers, such as lone line feed LF characters instead of the required...

5.3CVSS0.00376EPSS
Exploits0References3
EUVD
EUVD
added 2026/02/03 8:12 p.m.5 views

EUVD-2026-5176

A flaw was found in libsoup, an HTTP client/server library. This HTTP Request Smuggling vulnerability arises from non-RFC-compliant parsing in the soupfilterinputstreamreadline logic, where libsoup accepts malformed chunk headers, such as lone line feed LF characters instead of the required...

5.3CVSS5.5AI score0.00376EPSS
Exploits0References2
CVE
CVE
added 2026/02/03 8:12 p.m.45 views

CVE-2026-1801

CVE-2026-1801 affects libsoup. The vulnerability stems from non-RFC-compliant parsing in soup_filter_input_stream_read_line(), allowing malformed chunk headers (for example, lone LF instead of CRLF) to enable HTTP Request Smuggling. A remote attacker can trigger this without authentication by sen...

6.5CVSS5.5AI score0.00376EPSS
Exploits0References3Affected Software2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.0 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000749)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000749 advisory. The SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service system crash via a malformed ASCONF chunk, related to...

7.8CVSS7AI score0.07461EPSS
Exploits1References23
SUSE CVE
SUSE CVE
added 2023/02/15 5:32 a.m.4 views

SUSE CVE-2014-0075

Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service resource consumption via a malformed chunk size in chunke...

5CVSS6.7AI score0.2006EPSS
Exploits1References4
OSV
OSV
added 2022/05/14 1:10 a.m.1 views

GHSA-475F-74WP-PQV5 Integer Overflow or Wraparound in Apache Tomcat

Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service resource consumption via a malformed chunk size in chunke...

5CVSS6.9AI score0.2006EPSS
Exploits1References60
OSV
OSV
added 2018/02/20 4:29 p.m.2 views

CVE-2017-6192

Buffer overflow in APNGDis 2.8 and earlier allows a remote attackers to cause denial of service and possibly execute arbitrary code via a crafted image containing a malformed chunk size descriptor...

5.5CVSS6.1AI score0.06994EPSS
Exploits9References4
CVE
CVE
added 2018/02/20 4:0 p.m.51 views

CVE-2017-6192

The CVE-2017-6192 entry concerns APNGDis 2.8 and earlier. Affected component: APNGDis (image processing). Root cause: buffer overflow triggered by processing a crafted image with a malformed chunk size descriptor, leading to potential denial of service and possibly arbitrary code execution. Explo...

5.5CVSS6.3AI score0.06994EPSS
Exploits9References4Affected Software1
Prion
Prion
added 2014/05/31 11:17 a.m.30 views

Integer overflow

Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service resource consumption via a malformed chunk size in chunke...

5CVSS7.2AI score0.2006EPSS
Exploits1References48Affected Software1
UbuntuCve
UbuntuCve
added 2014/05/31 12:0 a.m.35 views

CVE-2014-0075

Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service resource consumption via a malformed chunk size in chunke...

5CVSS6.8AI score0.2006EPSS
Exploits1References2
OSV
OSV
added 2014/05/31 12:0 a.m.1 views

UBUNTU-CVE-2014-0075

Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service resource consumption via a malformed chunk size in chunke...

5CVSS6.8AI score0.2006EPSS
Exploits1References3
ALT Linux
ALT Linux
added 2007/05/16 12:0 a.m.40 views

Security fix for the ALT Linux 6 package libpng version 1.2.13-alt3

May 16, 2007 Dmitry V. Levin 1.2.13-alt3 - Imported upstream fix for pnghandletRNS bug CVE-2007-2445: a grayscale PNG image with a malformed tRNS chunk may crash some libpng applications...

5CVSS9.4AI score0.05115EPSS
Exploits1
Rows per page
Query Builder