Lucene search
K

298 matches found

OSV
OSV
added 2025/03/21 1:19 p.m.5 views

OESA-2025-1324 containerd security update

containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

7.8CVSS7.1AI score0.00275EPSS
Exploits1References2
Hacker One
Hacker One
added 2025/03/14 6:42 a.m.4 views

curl: Buffer Overflow in curl's Rustls Backend

Summary: summary of the vulnerability A buffer overflow vulnerability exists in the curl library's Rustls backend due to an integer overflow in the dynamic buffer management. This issue could potentially allow an attacker to overwrite memory, leading to application crashes or, in theory, arbitrar...

8AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/03/13 7:0 a.m.5 views

binfmt_flat: Fix integer overflow bug on 32 bit systems

...

5.5CVSS7.4AI score0.00216EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2024-58010

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - binfmtflat: Fix integer overflow bug on 32 bit systems Most of these sizes and counts are capped at 256MB so the math doesn't result in an integer overflow. Th...

5.5CVSS6.9AI score0.00216EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2022-49635

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/i915/selftests: fix subtraction overflow bug On some machines holeend can be small enough to cause subtraction overflow. On the other side addr + 2...

7.8CVSS6.9AI score0.00264EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2019-1551

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests...

5.3CVSS6.8AI score0.14298EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/28 4:22 a.m.22 views

CVE-2022-49592

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix dma queue left shift overflow issue When queue number is 4, left shift overflows due to 32 bits integer variable. Mask calculation is wrong for MTLRXQDMAMAP1. If CONFIGUBSAN is enabled, kernel dumps below warning...

5.5CVSS6.9AI score0.00267EPSS
Exploits0References4
OSV
OSV
added 2025/01/11 3:15 p.m.4 views

DEBIAN-CVE-2024-57843

In the Linux kernel, the following vulnerability has been resolved: virtio-net: fix overflow inside virtnetrqalloc When the frag just got a page, then may lead to regression on VM. Specially if the sysctl net.core.highorderallocdisable value is 1, then the frag always get a page when do refill...

5.5CVSS5.9AI score0.00198EPSS
Exploits0References1
OSV
OSV
added 2024/12/12 2:3 a.m.8 views

AZL-54297 CVE-2024-47607 affecting package gstreamer1-plugins-base 1.20.0-3

GStreamer is a library for constructing graphs of media-handling components. stack-buffer overflow has been detected in the gstopusdecparseheader function within gstopusdec.c'. The pos array is a stack-allocated buffer of size 64. If nchannels exceeds 64, the for loop will write beyond the...

9.8CVSS7.3AI score0.01199EPSS
Exploits0References1
OSV
OSV
added 2024/11/05 5:15 p.m.7 views

AZL-52816 CVE-2024-50090 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/xe/oa: Fix overflow in oa batch buffer By default xebbcreatejob appends a MIBATCHBUFFEREND to batch buffer, this is not a problem if batch buffer is only used once but oa reuses the batch buffer for the same metric and at eac...

5.5CVSS6.5AI score0.00203EPSS
Exploits0References1
SUSE Linux
SUSE Linux
added 2024/10/31 7:33 a.m.3 views

Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005544 fixes several issues. The following security issues were fixed: CVE-2024-35905: Fixed int overflow for stack access size bsc1226327. CVE-2021-47598: schcake: do not call cakedestroy from cakeinit bsc1227471. CVE-2024-35863: Fixed potential UAF i...

7.8CVSS8.4AI score0.00265EPSS
Exploits0References28
SUSE Linux
SUSE Linux
added 2024/10/30 6:34 p.m.3 views

Security update for the Linux Kernel RT (Live Patch 13 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505001347 fixes several issues. The following security issues were fixed: CVE-2024-35905: Fixed int overflow for stack access size bsc1226327. CVE-2021-47598: schcake: do not call cakedestroy from cakeinit bsc1227471. CVE-2024-35863: Fixed potential UAF i...

7.8CVSS8.8AI score0.00757EPSS
Exploits1References84
Positive Technologies
Positive Technologies
added 2024/10/28 12:0 a.m.2 views

PT-2025-14757

Name of the Vulnerable Software and Affected Versions libsoup affected versions not specified Description A flaw was found in the libsoup append param quoted function, which may contain an overflow bug resulting in a buffer under-read. Recommendations At the moment, there is no information about ...

7.8CVSS6.8AI score0.00832EPSS
Exploits0References165
Tenable Nessus
Tenable Nessus
added 2024/10/10 12:0 a.m.26 views

SUSE SLES15 / openSUSE 15 Security Update : redis (SUSE-SU-2024:3575-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3575-1 advisory. - CVE-2024-31228: Fixed unbounded recursive pattern matching bsc1231265 - CVE-2024-31449: Fixed integer overflow bug ...

8.8CVSS7.1AI score0.04495EPSS
Exploits1References7
OSV
OSV
added 2024/10/08 2:7 p.m.17 views

SUSE-SU-2024:3549-1 Security update for redis7

This update for redis7 fixes the following issues: - CVE-2024-31227: Fixed parsing issue leading to denail of service bsc1231266 - CVE-2024-31228: Fixed unbounded recursive pattern matching bsc1231265 - CVE-2024-31449: Fixed integer overflow bug in Lua bittohex bsc1231264...

8.8CVSS6.2AI score0.04495EPSS
Exploits1References7
OSV
OSV
added 2024/08/22 7:45 p.m.31 views

BIT-VALKEY-2021-41099 Integer overflow issue with strings in Redis

Redis is an open source, in-memory database that persists on disk. An integer overflow bug in the underlying string library can be used to corrupt the heap and potentially result with denial of service or remote code execution. The vulnerability involves changing the default proto-max-bulk-len...

7.5CVSS8.3AI score0.03422EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2024/05/28 3:33 a.m.8 views

SUSE CVE-2021-47432

In the Linux kernel, the following vulnerability has been resolved: lib/generic-radix-tree.c: Don't overflow in peek When we started spreading new inode numbers throughout most of the 64 bit inode space, that triggered some corner case bugs, in particular some integer overflows related to the rad...

5.5CVSS6.4AI score0.00241EPSS
Exploits0References14
OSV
OSV
added 2024/05/21 4:15 p.m.8 views

DEBIAN-CVE-2021-47432

In the Linux kernel, the following vulnerability has been resolved: lib/generic-radix-tree.c: Don't overflow in peek When we started spreading new inode numbers throughout most of the 64 bit inode space, that triggered some corner case bugs, in particular some integer overflows related to the rad...

5.5CVSS5.7AI score0.00241EPSS
Exploits0References1
OSV
OSV
added 2024/05/21 4:15 p.m.14 views

UBUNTU-CVE-2021-47432

In the Linux kernel, the following vulnerability has been resolved: lib/generic-radix-tree.c: Don't overflow in peek When we started spreading new inode numbers throughout most of the 64 bit inode space, that triggered some corner case bugs, in particular some integer overflows related to the rad...

5.5CVSS5.7AI score0.00241EPSS
Exploits0References7
OSV
OSV
added 2024/05/21 4:15 p.m.5 views

UBUNTU-CVE-2023-52762

In the Linux kernel, the following vulnerability has been resolved: virtio-blk: fix implicit overflow on virtiomaxdmasize The following codes have an implicit conversion from sizet to u32: u32maxsize = sizetvirtiomaxdmasizevdev; This may lead overflow, Ex sizet4G - u320. Once virtiomaxdmasize has...

5.5CVSS6.4AI score0.00242EPSS
Exploits0References8
Rows per page
Query Builder