Lucene search
K

104 matches found

Vulnrichment
Vulnrichment
added 2024/12/27 2:51 p.m.2 views

CVE-2024-56627 ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix Out-of-Bounds Read in ksmbdvfsstreamread An offset from client could be a negative value, It could lead to an out-of-bounds read from the streambuf. Note that this issue is coming when setting 'vfs objects = streamsxat...

7.6AI score0.00277EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/08/06 2:0 a.m.3 views

SUSE CVE-2024-42072

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix maygoto with negative offset. Zac's syzbot crafted a bpf prog that exposed two bugs in maygoto. The 1st bug is the way maygoto is patched. When offset is negative it should be patched differently. The 2nd bug is in the...

7.8CVSS7.5AI score0.00226EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2024/07/31 9:16 a.m.27 views

CVE-2024-42072

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix maygoto with negative offset. Zac's syzbot crafted a bpf prog that exposed two bugs in maygoto. The 1st bug is the way maygoto is patched. When offset is negative it should be patched differently. The 2nd bug is in the...

5.2CVSS7AI score0.00226EPSS
Exploits1References4
OSV
OSV
added 2024/07/29 4:15 p.m.3 views

DEBIAN-CVE-2024-42072

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix maygoto with negative offset. Zac's syzbot crafted a bpf prog that exposed two bugs in maygoto. The 1st bug is the way maygoto is patched. When offset is negative it should be patched differently. The 2nd bug is in the...

7.8CVSS5.8AI score0.00226EPSS
Exploits1References1
OSV
OSV
added 2024/07/29 4:15 p.m.3 views

UBUNTU-CVE-2024-42072

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix maygoto with negative offset. Zac's syzbot crafted a bpf prog that exposed two bugs in maygoto. The 1st bug is the way maygoto is patched. When offset is negative it should be patched differently. The 2nd bug is in the...

7.8CVSS6.6AI score0.00226EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2024/07/29 3:52 p.m.14 views

CVE-2024-42072 bpf: Fix may_goto with negative offset.

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix maygoto with negative offset. Zac's syzbot crafted a bpf prog that exposed two bugs in maygoto. The 1st bug is the way maygoto is patched. When offset is negative it should be patched differently. The 2nd bug is in the...

6.8AI score0.00226EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/07/29 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a problem with the way it is patched at maygoto, which should be patched differently when the offset is...

7.8CVSS6.8AI score0.00226EPSS
Exploits1References3
OSV
OSV
added 2024/03/06 11:4 a.m.18 views

BIT-PILLOW-2021-25290

An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size...

7.5CVSS7.4AI score0.02372EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.2 views

kernel: loop: Check for overflow while configuring loop

In the Linux kernel, the following vulnerability has been resolved: loop: Check for overflow while configuring loop The userspace can configure a loop using an ioctl call, wherein a configuration of type loopconfig is passed see loioctl's case on line 1550 of drivers/block/loop.c. This proceeds t...

5.5CVSS6.4AI score0.0021EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:2 a.m.3 views

SUSE CVE-2016-4541

The graphemestrpos function in ext/intl/grapheme/graphemestring.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via a negative offset...

9.8CVSS9.2AI score0.06229EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2023/02/15 5:2 a.m.4 views

SUSE CVE-2016-4540

The graphemestripos function in ext/intl/grapheme/graphemestring.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via a negative offset...

9.8CVSS9.2AI score0.06229EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.41 views

RHEL 8 : python-pillow (RHSA-2021:4149)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:4149 advisory. The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal...

9.8CVSS7.1AI score0.04851EPSS
Exploits0References34
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.56 views

CentOS 8 : python-pillow (CESA-2021:4149)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2021:4149 advisory. - python-pillow: Buffer over-read in PCX image reader CVE-2020-35653 - python-pillow: Buffer over-read in SGI RLE image reader CVE-2020-35655 -...

9.8CVSS7AI score0.04851EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2021/11/09 5:42 p.m.4 views

python-pillow: Negative-offset memcpy in TIFF image reader

A flaw was found in python-pillow. In TiffDecode.c, there is a negative-offset memcpy with an invalid size which could lead to a system crash...

7.5CVSS7.3AI score0.02372EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/07/01 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-2019)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.7AI score0.02372EPSS
Exploits0References2
OSV
OSV
added 2021/03/29 4:35 p.m.6 views

GHSA-8XJQ-8FCG-G5HW Out-of-bounds Write in Pillow

An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size...

8.7CVSS6.9AI score0.02372EPSS
Exploits0References9
OSV
OSV
added 2021/03/19 4:15 a.m.2 views

DEBIAN-CVE-2021-25290

An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size...

7.5CVSS6.9AI score0.02372EPSS
Exploits0References1
OSV
OSV
added 2021/03/19 4:15 a.m.4 views

ALPINE-CVE-2021-25290

An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size...

7.5CVSS8.6AI score0.02372EPSS
Exploits0References1
OSV
OSV
added 2021/03/19 4:15 a.m.18 views

CVE-2021-25290

An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size...

7.5CVSS7.4AI score
Exploits0References3
OSV
OSV
added 2021/03/19 4:15 a.m.5 views

PYSEC-2021-36

An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size...

7.5CVSS5.9AI score0.02372EPSS
Exploits0References2
Rows per page
Query Builder