Lucene search
+L

581 matches found

Prion
Prion
added 2019/11/29 4:15 p.m.14 views

Type confusion

DISPUTED In LuaJIT through 2.0.5, as used in Moonjit before 2.1.2 and other products, debug.getinfo has a type confusion issue that leads to arbitrary memory write or read operations, because certain cases involving valid stack levels and options are mishandled. NOTE: The LuaJIT project owner...

6.4CVSS9.2AI score0.0133EPSS
Exploits0References1Affected Software2
UbuntuCve
UbuntuCve
added 2019/11/29 4:15 p.m.22 views

CVE-2019-19391

In LuaJIT through 2.0.5, as used in Moonjit before 2.1.2 and other products, debug.getinfo has a type confusion issue that leads to arbitrary memory write or read operations, because certain cases involving valid stack levels and options are mishandled. NOTE: The LuaJIT project owner states that...

9.1CVSS6.8AI score0.0133EPSS
Exploits0References2
CVE
CVE
added 2019/11/29 3:18 p.m.87 views

CVE-2019-19391

LuaJIT up to 2.0.5 (used in Moonjit prior to 2.1.2) contains a type-confusion in debug.getinfo that can cause arbitrary memory read/write. Debian LTS advisory DLA-4283-1 notes this CVE-2019-19391 alongside other CVEs and states fixes in luajit 2.1.0~beta3+dfsg-5.3+deb11u1 for Debian 11; the LuaJI...

9.1CVSS9.2AI score0.0133EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2019/11/29 3:18 p.m.24 views

CVE-2019-19391

In LuaJIT through 2.0.5, as used in Moonjit before 2.1.2 and other products, debug.getinfo has a type confusion issue that leads to arbitrary memory write or read operations, because certain cases involving valid stack levels and options are mishandled. NOTE: The LuaJIT project owner states that...

9.3AI score0.0133EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2019/11/29 3:18 p.m.11 views

CVE-2019-19391

In LuaJIT through 2.0.5, as used in Moonjit before 2.1.2 and other products, debug.getinfo has a type confusion issue that leads to arbitrary memory write or read operations, because certain cases involving valid stack levels and options are mishandled. NOTE: The LuaJIT project owner states that...

7AI score0.0133EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2019/11/29 3:18 p.m.35 views

CVE-2019-19391

In LuaJIT through 2.0.5, as used in Moonjit before 2.1.2 and other products, debug.getinfo has a type confusion issue that leads to arbitrary memory write or read operations, because certain cases involving valid stack levels and options are mishandled. NOTE: The LuaJIT project owner states that...

9.1CVSS7.8AI score0.0133EPSS
Exploits0
CNVD
CNVD
added 2019/11/29 12:0 a.m.2 views

Linux kernel buffer overflow vulnerability (CNVD-2019-46998)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A buffer overflow vulnerability exists in the Linux kernel. The vulnerability arises from a networked system or product performing operations in memory without properl...

7.8CVSS8AI score0.00488EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2019/11/27 6:23 p.m.98 views

USN-4203-2: NSS vulnerability

USN-4203-1 fixed a vulnerability in NSS. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that NSS incorrectly handled certain memory operations. A remote attacker could use this issue to cause NSS to crash,...

8.8CVSS7.5AI score0.02994EPSS
Exploits0
Ubuntu
Ubuntu
added 2019/11/27 4:55 p.m.134 views

USN-4203-1: NSS vulnerability

It was discovered that NSS incorrectly handled certain memory operations. A remote attacker could use this issue to cause NSS to crash, resulting in a denial of service, or possibly execute arbitrary code...

8.8CVSS7.5AI score0.02994EPSS
Exploits0
CNVD
CNVD
added 2019/11/27 12:0 a.m.2 views

Red Hat FreeIPA Buffer Overflow Vulnerability

Red Hat FreeIPA is an integrated security information management solution from Red Hat, Inc. The product mainly for Linux and Unix computer networks to provide identity management, policy management and audit management IPA and other functions. A buffer overflow vulnerability exists in Red Hat...

8.8CVSS7.2AI score0.06329EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2019/11/22 12:0 a.m.35 views

Ubuntu: Security Advisory (USN-4198-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6AI score0.03667EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2019/11/22 12:0 a.m.30 views

Ubuntu 16.04 LTS / 18.04 LTS : DjVuLibre vulnerabilities (USN-4198-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4198-1 advisory. It was discovered that DjVuLibre incorrectly handled certain memory operations. If a user or automated system were tricked into processing a...

7.5CVSS6.4AI score0.03667EPSS
Exploits5References6
Ubuntu
Ubuntu
added 2019/11/21 7:29 p.m.77 views

USN-4198-1: DjVuLibre vulnerabilities

It was discovered that DjVuLibre incorrectly handled certain memory operations. If a user or automated system were tricked into processing a specially crafted DjVu file, a remote attacker could cause applications to hang or crash, resulting in a denial of service, or possibly execute arbitrary co...

7.5CVSS6AI score0.03667EPSS
Exploits5
CNVD
CNVD
added 2019/11/14 12:0 a.m.3 views

Buffer Overflow Vulnerability in Multiple Qualcomm Products (CNVD-2020-16070)

The Qualcomm MDM9206 and others are a central processing unit CPU product of Qualcomm Incorporated. A buffer overflow vulnerability exists in QTEE in multiple Qualcomm products. The vulnerability originates when a networked system or product performs an operation in memory without properly...

7.8CVSS7.4AI score0.00202EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/21 12:0 a.m.5 views

file buffer overflow vulnerability (CNVD-2020-14286)

file is a set of command-line tools used in Unix-like applications to view file information. A buffer overflow vulnerability exists in cdfreadpropertyinfo in the cdf.c file in file 5.37 and earlier versions, which arises from a networked system or product that performs an operation in memory...

7.8CVSS9.3AI score0.0185EPSS
Exploits1References1
CNVD
CNVD
added 2019/09/04 12:0 a.m.7 views

Lute-Tab Buffer Overflow Vulnerability

Lute-Tab is a utility program for editing sound scores. A buffer overflow vulnerability exists in Lute-Tab. The vulnerability stems from a networked system or product performing operations in memory without properly validating data boundaries, resulting in incorrect read and write operations bein...

9.8CVSS7.3AI score0.01532EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.37 views

Ubuntu 18.04 LTS : OpenJDK 11 vulnerabilities (USN-4083-1)

The remote Ubuntu 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4083-1 advisory. It was discovered that OpenJDK did not sufficiently validate serial streams before deserializing suppressed exceptions in some situations. An attacker...

5.8CVSS7.8AI score0.09393EPSS
Exploits3References8
CNVD
CNVD
added 2019/08/06 12:0 a.m.7 views

Schism Tracker Integer Overflow Vulnerability

Schism Tracker is an open source music composition tool. An integer overflow vulnerability exists in Schism Tracker 20190722 and prior versions. The vulnerability stems from a networked system or product performing operations in memory without properly validating data boundaries, resulting in...

7.8CVSS7.4AI score0.01238EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2019/08/01 12:0 a.m.48 views

Ubuntu: Security Advisory (USN-4080-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS6.9AI score0.09393EPSS
Exploits3References2
Ubuntu
Ubuntu
added 2019/07/31 12:5 a.m.283 views

USN-4080-1: OpenJDK 8 vulnerabilities

Keegan Ryan discovered that the ECC implementation in OpenJDK was not sufficiently resilient to side-channel attacks. An attacker could possibly use this to expose sensitive information. CVE-2019-2745 It was discovered that OpenJDK did not sufficiently validate serial streams before deserializing...

5.8CVSS7.5AI score0.09393EPSS
Exploits3
Rows per page
Query Builder