Lucene search
K

130 matches found

Vulnrichment
Vulnrichment
added 2024/11/05 5:4 p.m.1 views

CVE-2024-50092 net: netconsole: fix wrong warning

In the Linux kernel, the following vulnerability has been resolved: net: netconsole: fix wrong warning A warning is triggered when there is insufficient space in the buffer for userdata. However, this is not an issue since userdata will be sent in the next iteration. Current warning message:...

7.8AI score0.00197EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2024/10/16 7:0 a.m.5 views

The verify function in lib/elliptic/eddsa/index.js in the Elliptic package before 6.5.6 for Node.js omits "sig.S().gte(sig.eddsa.curve.n) || sig.S().isNeg()" validation.

...

9.1CVSS7AI score0.00507EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/09/18 6:32 a.m.20 views

CVE-2024-46730 drm/amd/display: Ensure array index tg_inst won't be -1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Ensure array index tginst won't be -1 WHY & HOW tginst will be a negative if timinggeneratorcount equals 0, which should be checked before used. This fixes 2 OVERRUN issues reported by Coverity...

6.9AI score0.00192EPSS
Exploits0References2
OSV
OSV
added 2024/06/28 3:28 p.m.10 views

GO-2024-2529 Etcd embed auto compaction retention negative value causing a compaction loop or a crash in go.etcd.io/etcd

Etcd embed auto compaction retention negative value causing a compaction loop or a crash in go.etcd.io/etcd...

7.1AI score
Exploits0References1
NVD
NVD
added 2024/06/06 7:15 p.m.18 views

CVE-2024-36734

Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service DoS via inputting a negative value into the dim parameter...

7.5CVSS0.00515EPSS
Exploits0References1
CVE
CVE
added 2024/06/06 6:44 p.m.82 views

CVE-2024-36734

CVE-2024-36734 involves OneFlow-Inc. Oneflow v0.9.1, with an improper input validation in the dim parameter that can be exploited to cause a Denial of Service. The vulnerability is described across multiple sources as a DoS triggered by negative input values for dim, leading to availability impac...

7.5CVSS7AI score0.00515EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/06/06 6:15 p.m.4 views

CVE-2024-36737

Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service DoS via inputting a negative value into the oneflow.full parameter...

7.5CVSS5.8AI score0.00515EPSS
Exploits0References1
CVE
CVE
added 2024/06/06 5:43 p.m.74 views

CVE-2024-36737

CVE-2024-36737 affects Oneflow v0.9.1 from OneFlow-Inc, with an improper input validation flaw in the oneflow.full parameter that can cause a Denial of Service. The issue is documented across multiple sources; the core detail is that a negative value input triggers DoS. Exploitation details are n...

7.5CVSS7AI score0.00515EPSS
Exploits0References1Affected Software1
SUSE CVE
SUSE CVE
added 2024/05/28 3:32 a.m.4 views

SUSE CVE-2021-47511

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix negative period/buffer sizes The period size calculation in OSS layer may receive a negative value as an error, but the code there assumes only the positive values and handle them with sizet. Due to that, a to...

7.8CVSS6.6AI score0.0024EPSS
Exploits0References19
OSV
OSV
added 2024/05/21 4:15 p.m.4 views

UBUNTU-CVE-2023-52810

In the Linux kernel, the following vulnerability has been resolved: fs/jfs: Add check for negative dbl2nbperpage l2nbperpage is log2number of blks per page, and the minimum legal value should be 0, not negative. In the case of l2nbperpage being negative, an error will occur when subsequently used...

8.4CVSS6.2AI score0.0027EPSS
Exploits0References12
Vulnrichment
Vulnrichment
added 2024/05/21 3:31 p.m.19 views

CVE-2023-52810 fs/jfs: Add check for negative db_l2nbperpage

In the Linux kernel, the following vulnerability has been resolved: fs/jfs: Add check for negative dbl2nbperpage l2nbperpage is log2number of blks per page, and the minimum legal value should be 0, not negative. In the case of l2nbperpage being negative, an error will occur when subsequently used...

6.9AI score0.0027EPSS
Exploits0References9
OSV
OSV
added 2024/02/03 12:3 a.m.14 views

GHSA-PM3M-32R3-7MFH Etcd embed auto compaction retention negative value causing a compaction loop or a crash

Impact Data Validation Detail The parseCompactionRetention function in embed/etcd.go allows the retention variable value to be negative and causes the node to execute the history compaction in a loop, taking more CPU than usual and spamming logs. References Find out more on this vulnerability in...

7.3AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2024/02/03 12:3 a.m.19 views

Etcd embed auto compaction retention negative value causing a compaction loop or a crash

Impact Data Validation Detail The parseCompactionRetention function in embed/etcd.go allows the retention variable value to be negative and causes the node to execute the history compaction in a loop, taking more CPU than usual and spamming logs. References Find out more on this vulnerability in...

7.3AI score
Exploits0References2Affected Software1
Snyk
Snyk
added 2023/10/21 12:51 a.m.1 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read when processing ogg vorbis files using the DECODE macro. An attacker can leak internal memory allocation information by crafting a file that triggers an out-of-bounds read when var is negative. Remediation There is no...

7.1CVSS6.7AI score0.0056EPSS
Exploits0References2
Huntr
Huntr
added 2023/08/31 6:32 a.m.17 views

left shift of negative value in scene_manager/swf_parse.c:213:12

Description left shift of negative value in MP4Box Version $ ./bin/gcc/MP4Box -version MP4Box - GPAC version 2.3-DEV-revrelease c 2000-2023 Telecom Paris distributed under LGPL v2.1+ - http://gpac.io Please cite our work in your research: GPAC Filters: https://doi.org/10.1145/3339825.3394929 GPAC...

1.9CVSS6.8AI score0.00296EPSS
Exploits1References1
Code423n4
Code423n4
added 2023/08/10 12:0 a.m.15 views

Unsafe typecasting can lead to tokens being locked in the contract

Lines of code Vulnerability details Impact In the createLock function the amount is calculated by casting the uint256 value to int128 in an unsafe way. Specifically the locked.amount is calculated as: locked.amount += int128int256value; could result in a negative value for locked.amount. For...

6.7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/05/11 12:0 a.m.5 views

PT-2023-23586 · Pimcore · Pimcore/Customer-Management-Framework-Bundle

Name of the Vulnerable Software and Affected Versions: pimcore/customer-management-framework-bundle versions prior to 3.3.9 Description: The Customer Management Framework CMF for Pimcore has a business logic error in the Conditions tab, where the counter can be a negative number, leading to unlog...

4.3CVSS4.3AI score0.00763EPSS
Exploits1References9
SUSE CVE
SUSE CVE
added 2023/02/15 6:21 a.m.6 views

SUSE CVE-2003-0721

Integer signedness error in rfc2231getparam from strings.c in PINE before 4.58 allows remote attackers to execute arbitrary code via an email that causes an out-of-bounds array access using a negative number...

7.5CVSS8AI score0.03859EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:10 a.m.4 views

SUSE CVE-2007-6036

The parseRTSPRequestString function in LIVE555 Media Server 2007.11.01 and earlier allows remote attackers to cause a denial of service daemon crash via a short RTSP query, which causes a negative number to be used during memory allocation...

7.1CVSS6.8AI score0.04412EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:55 a.m.3 views

SUSE CVE-2016-9820

libavcodec/mpegvideomotion.c in libav 11.8 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...

5.5CVSS6.8AI score0.00936EPSS
Exploits1References3
Rows per page
Query Builder