Lucene search
K

4 matches found

CNNVD
CNNVD
added 2026/05/20 12:0 a.m.9 views

MISP 资源管理错误漏洞

MISP is a set of open-source software solutions developed by MISP. This product is used for collecting, storing, distributing, and sharing network security metrics. It also includes functions such as analyzing threats to network security and malware analysis. MISP has a resource management...

7.5CVSS5.8AI score0.00365EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/11/08 10:57 p.m.3 views

CVE-2025-58186

Despite HTTP headers having a default limit of 1MB, the number of cookies that can be parsed does not have a limit. By sending a lot of very small cookies such as "a=;", an attacker can make an HTTP server allocate a large amount of structs, causing large memory consumption...

5.3CVSS6.9AI score0.00534EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2023/02/09 9:28 a.m.3 views

golang: archive/tar: github.com/vbatts/tar-split: unbounded memory consumption when reading headers

A flaw was found in the golang package, where Reader.Read does not set a limit on the maximum size of file headers. After fixing, Reader.Read limits the maximum size of header blocks to 1 MiB. This flaw allows a maliciously crafted archive to cause Read to allocate unbounded amounts of memory,...

7.5CVSS6.6AI score0.01544EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2022/11/08 9:32 a.m.2 views

kernel: ALSA: oss: Fix PCM OSS buffer allocation overflow

In the Linux kernel, the following vulnerability has been resolved: ALSA: oss: Fix PCM OSS buffer allocation overflow We've got syzbot reports hitting INTMAX overflow at vmalloc allocation that is called from sndpcmplugalloc. Although we apply the restrictions to input parameters, it's based only...

7.8CVSS6.5AI score0.00267EPSS
Exploits0References5
Rows per page
Query Builder