683 matches found
CVE-2023-35847
VirtualSquare picoTCP aka PicoTCP-NG through 2.1 does not have an MSS lower bound e.g., it could be zero...
CVE-2023-35847
VirtualSquare picoTCP aka PicoTCP-NG through 2.1 does not have an MSS lower bound e.g., it could be zero...
Attacker can spam addCredit() function to cause a denial-of-service during an auction
Lines of code Vulnerability details The ParticleExchange contract does not store any data about the lien in the contract storage. Instead, users must send the entire Lien struct when interacting with any existing lien, and the contract checks if the hash of the struct is correct. This poses a...
The vulnerability of the qfq_change_class() function in Linux operating systems allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the qfqchangeclass function in Linux operating systems stems from the operation of storing values outside of the buffer in memory when processing the QFQMINLMAX value. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
It is not possible to create or execute new extraordinary proposals after 10 funded Extraordinary Proposals
Lines of code Vulnerability details Impact With each executed offer, the value of getMinimumThresholdPercentage increases, resulting in the fact that when trying to create a new proposal or execute existing, getMinimumThresholdPercentage exceeds 1e18 and we catch an underflow error via...
PT-2025-8529 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A data-race issue exists in the Linux kernel related to the sysctl tcp min snd mss variable. This issue occurs because the variable can be changed concurrently while being read,...
qfq_change_class in net/sched/sch_qfq.c in the Linux kernel before 6.2.13 allows an out-of-bounds write because lmax can exceed QFQ_MIN_LMAX.
...
CVE-2023-31436
qfqchangeclass in net/sched/schqfq.c in the Linux kernel before 6.2.13 allows an out-of-bounds write because lmax can exceed QFQMINLMAX...
votes[to] mapping anchor time not adjusted correctly in Equity.adjustRecipientVoteAnchor() can lead to unexpected results
Lines of code Vulnerability details H-01 votesto mapping anchor time not adjusted correctly in Equity.adjustRecipientVoteAnchor can lead to unexpected results Proof of Concept Equity.solL161 function adjustRecipientVoteAnchoraddress to, uint256 amount internal returns uint256 if to != address0x0...
MuteBond.sol: price discount can be manipulated which undermines its purpose of reflecting demand
Lines of code Vulnerability details Impact The bondPrice in the MuteBond contract increases linearly during the epochDuration from startPrice in the beginning to maxPrice in the end. The bondPrice determines how many MUTE tokens a user receives for bonding his LP tokens. The higher the bondPrice...
Important: Red Hat Security Advisory: openssl security and bug fix update
An update for openssl is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
SUSE CVE-2006-5540
backend/parser/analyze.c in PostgreSQL 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service daemon crash via certain aggregate functions in an UPDATE statement, which are not properly handled during a "MIN/MAX index optimization."...
SUSE CVE-2008-5700
libata in the Linux kernel before 2.6.27.9 does not set minimum timeouts for SGIO requests, which allows local users to cause a denial of service Programmed I/O mode on drives via multiple simultaneous invocations of an unspecified test program...
SUSE CVE-2009-0579
Linux-PAM before 1.0.4 does not enforce the minimum password age MINDAYS as specified in /etc/shadow, which allows local users to bypass intended security policy and change their passwords sooner than specified...
SUSE CVE-2014-9657
The ttfaceloadhdmx function in truetype/ttpload.c in FreeType before 2.5.4 does not establish a minimum record size, which allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via a crafted TrueType font...
SUSE CVE-2015-2325
The compilebranch function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code, cause a denial of service out-of-bounds heap read and crash, or possibly have other unspecified impact via a regular expression with a group containing a forward reference repeated a large...
SUSE CVE-2021-44648
GNOME gdk-pixbuf 2.42.6 is vulnerable to a heap-buffer overflow vulnerability when decoding the lzw compressed stream of image data in GIF files with lzw minimum code size equals to 12...
SUSE CVE-2022-36086
linkedlistallocator is an allocator usable for nostd systems. Prior to version 0.10.2, the heap initialization methods were missing a minimum size check for the given heap size argument. This could lead to out-of-bound writes when a heap was initialized with a size smaller than 3 sizeof:: because...
biz.netcentric.cq.tools.accesscontroltool:maximum-environment (>=2.5.4 <=3.6.2), biz.netcentric.cq.tools.accesscontroltool:minimum-environment (>=2.5.4 <=3.6.2) +37 more potentially affected by CVE-2023-25141 via org.apache.sling:org.apache.sling.jcr.base (>=2.0.2-incubator <=3.0.6)
org.apache.sling:org.apache.sling.jcr.base MAVEN version =2.0.2-incubator, =2.5.4, =2.5.4, =0.6.8, =2.1.1, =2.5.0, =2.1.1, =2.5.0, =1.7.0, =1.3.1, =1.6.0, =5.5.4, =1.4.0-0001, =1.0.3, =1.0.3, =1.0.5 - com.github.livesense:org.liveSense.sample.gwt.notesRequestFactory =1.0.3 and more Source cves:...
First depositor can break minting of shares
Lines of code Vulnerability details Vulnerability details The calculation of exchange rate for shares in Popcorn Vault is done by dividing the total supply of shares by the totalAssets of the vault. The first depositor can mint a very small number of shares, then donate to the vault to manipulate...