Lucene search
+L

11 matches found

Tenable Nessus
Tenable Nessus
added 4 days ago7 views

Linux Distros Unpatched Vulnerability : CVE-2026-55213

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. Prior to commit edd7a120bfc4af11ac0cbebce2a43cc1f93f9af1, when h2o processes a QPACK...

7.5CVSS6.2AI score0.00343EPSS
Exploits0References3
NVD
NVD
added last week10 views

CVE-2026-55213

h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. Prior to commit edd7a120bfc4af11ac0cbebce2a43cc1f93f9af1, when h2o processes a QPACK instruction sent from the peer over HTTP/3, lib/http3/qpack.c might allocate an on-stack buffer as large as approximately 800 KB by calling...

7.5CVSS0.00343EPSS
Exploits0References2
OSV
OSV
added last week3 views

CVE-2026-55213 h2o: musl libc stack overflow (QPACK)

h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. Prior to commit edd7a120bfc4af11ac0cbebce2a43cc1f93f9af1, when h2o processes a QPACK instruction sent from the peer over HTTP/3, lib/http3/qpack.c might allocate an on-stack buffer as large as approximately 800 KB by calling...

7.5CVSS6.2AI score0.00343EPSS
Exploits0References4
CVE
CVE
added 2026/06/24 4:29 p.m.18 views

CVE-2026-52995

Summary (concrete details from connected docs): CVE-2026-52995 affects the Linux kernel RDS info paths (RDS/IB and RDS6/IB visitors). The root cause is that rds_for_each_conn_info() and rds_walk_conn_path_info() pass a caller-allocated on‑stack u64 buffer to visitors and then copy full item_len b...

5.5CVSS6AI score0.00122EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.10 views

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-53680)

ipvs: vulnerability causes undefined behavior due to uninitialized stack access in ipvsprotocolinit, which is fixed by zeroing the on-stack buffer to prevent out-of-bound accesses. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more informatio...

5.5CVSS7.2AI score0.00224EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.9 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990081)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990081 advisory. In the Linux kernel, the following vulnerability has been resolved: ipvs: fix UB due to uninitialized stack access in ipvsprotocolinit Under certain kernel...

5.5CVSS6.6AI score0.00224EPSS
Exploits0References4
OSV
OSV
added 2025/01/11 1:15 p.m.11 views

UBUNTU-CVE-2024-53680

In the Linux kernel, the following vulnerability has been resolved: ipvs: fix UB due to uninitialized stack access in ipvsprotocolinit Under certain kernel configurations when building with Clang/LLVM, the compiler does not generate a return or jump as the terminator instruction for...

5.5CVSS6.4AI score0.00224EPSS
Exploits0References38
Prion
Prion
added 2024/02/15 5:15 a.m.16 views

Stack overflow

The e1000 network adapters permit a variety of modifications to an Ethernet packet when it is being transmitted. These include the insertion of IP and TCP checksums, insertion of an Ethernet VLAN header, and TCP segmentation offload "TSO". The e1000 device model uses an on-stack buffer to generat...

8.1AI score0.00209EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2020/08/18 7:0 a.m.7 views

The GNU C Library (aka glibc or libc6) before 2.32 could overflow an on-stack buffer during range reduction if an input to an 80-bit long double function contains a non-canonical bit pattern a seen when passing a 0x5d414141414141410000 value to sinl on x86 targets. This is related to sysdeps/ieee754/ldbl-96/e_rem_pio2l.c.

...

5.5CVSS7AI score0.00758EPSS
Exploits1
OpenVAS
OpenVAS
added 2020/03/26 12:0 a.m.22 views

openSUSE: Security Advisory for glibc (openSUSE-SU-2020:0381-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.5CVSS7.2AI score0.00758EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/03/16 12:0 a.m.47 views

SUSE SLED15 / SLES15 Security Update : glibc (SUSE-SU-2020:0668-1)

This update for glibc fixes the following issues : CVE-2020-10029: Fixed a potential overflow in on-stack buffer during range reduction bsc1165784. Fixed an issue where pthread were not always locked correctly bsc1164505. Document mprotect and introduce section on memory protection bsc1163184. No...

5.5CVSS6.9AI score0.00758EPSS
Exploits1References6
Rows per page
Query Builder