Lucene search
K

172 matches found

OSV
OSV
added 2021/05/26 9:15 p.m.6 views

CVE-2021-20177

A flaw was found in the Linux kernel's implementation of string matching within a packet. A privileged user with root or CAPNETADMIN when inserting iptables rules could insert a rule which can panic the system. Kernel before kernel 5.5-rc1 is affected...

4.4CVSS7.9AI score0.00277EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2021/05/19 10:26 a.m.5 views

golang: math/big: panic during recursive division of very large numbers

A flaw was found in the math/big package of Go's standard library that causes a denial of service. Applications written in Go that use math/big via cryptographic packages, including crypto/rsa and crypto/x509, are vulnerable and can potentially cause panic via a crafted certificate chain. The...

7.5CVSS7.1AI score0.03813EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2020:1605-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.3AI score0.04505EPSS
Exploits3References120
RedHat Linux
RedHat Linux
added 2021/03/02 7:11 p.m.9 views

golang: math/big: panic during recursive division of very large numbers

A flaw was found in the math/big package of Go's standard library that causes a denial of service. Applications written in Go that use math/big via cryptographic packages, including crypto/rsa and crypto/x509, are vulnerable and can potentially cause panic via a crafted certificate chain. The...

7.5CVSS7.1AI score0.03813EPSS
Exploits0References4
OSV
OSV
added 2021/01/26 6:16 p.m.4 views

CVE-2021-25902

An issue was discovered in the glsl-layout crate before 0.4.0 for Rust. When a panic occurs, maparray can perform a double drop...

7.5CVSS7.1AI score
Exploits0References1
CNNVD
CNNVD
added 2020/12/31 12:0 a.m.6 views

Rust branca crate security vulnerability

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in branca crate before 0.10.0 for Rust, which stems from the fact that decoding tokens with invalid base62 data may cause panic...

5.5CVSS5.8AI score0.00465EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2020/12/03 11:20 a.m.4 views

golang: math/big: panic during recursive division of very large numbers

A flaw was found in the math/big package of Go's standard library that causes a denial of service. Applications written in Go that use math/big via cryptographic packages, including crypto/rsa and crypto/x509, are vulnerable and can potentially cause panic via a crafted certificate chain. The...

7.5CVSS7.1AI score0.03813EPSS
Exploits0References4
OSV
OSV
added 2020/03/16 9:15 p.m.4 views

UBUNTU-CVE-2020-7919

Go before 1.12.16 and 1.13.x before 1.13.7 and the crypto/cryptobyte package before 0.0.0-20200124225646-8b5121be2f68 for Go allows attacks on clients resulting in a panic via a malformed X.509 certificate...

7.5CVSS6.9AI score0.02582EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/02/04 1:21 p.m.4 views

golang: invalid public key causes panic in dsa.Verify

Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public key. There are several attack scenarios, such as traffic from a client to a server that verifies client certificates...

7.5CVSS7.3AI score0.04693EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2020/01/27 5:15 a.m.37 views

CVE-2019-20428

In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds read and panic due to the lack of validation for specific fields of packets sent by a client. The ldlrequestcancel function mishandles a large lockcount parameter...

7.8CVSS7AI score0.01821EPSS
Exploits0References5
Debian
Debian
added 2019/10/25 9:9 p.m.187 views

[SECURITY] [DSA 4551-1] golang-1.11 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4551-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 25, 2019 https://www.debian.org/security/faq -...

7.5CVSS7.7AI score0.04693EPSS
Exploits1
CNVD
CNVD
added 2019/08/30 12:0 a.m.2 views

libzetta-rs integer overflow vulnerability

libzetta-rs is a stable interface for ZFS programming management. An integer overflow vulnerability exists in the zpool parser in libzetta-rs 0.1.2 and earlier. An attacker could exploit this vulnerability to cause a panic...

7.8CVSS7.1AI score0.01395EPSS
Exploits0References1
Rows per page
Query Builder