CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

7.5CVSS6.7AI score0.00271EPSS

Astra Linux - уязвимость в bind9

The DNS message parsing code in named includes a section whose computational complexity is excessively high. This does not cause problems for typical DNS traffic, but crafted queries and responses may lead to excessive CPU load on the affected named instance by exploiting this flaw. This issue...

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в raptor2

In the Raptor RDF Syntax Library version 2.0.16, there is an integer underflow issue when normalizing a URI using the turtle parser in the raptorurinormalizepath function...

9.3CVSS7.1AI score0.0004EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•8 views

Astra Linux - уязвимость в cgal

There are multiple code execution vulnerabilities in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could result in code execution. An attacker can provide malicious input to trigger...

10CVSS7.7AI score0.00678EPSS

10CVSS7.7AI score0.00678EPSS

Astra Linux - уязвимость в cgal

There are multiple code execution vulnerabilities in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which may result in code execution. An attacker can provide malicious input to trigger an...

AstraLinux•added 2026/05/20 5:53 a.m.•9 views

Astra Linux - уязвимость в cgal

10CVSS7.7AI score0.00529EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•6 views

Astra Linux - уязвимость в cgal

10CVSS7.7AI score0.00567EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux

A use-after-free flaw was discovered in cgroup1parseparam in kernel/cgroup/cgroup-v1.c within the Linux kernel’s cgroup v1 parser. A local attacker with user privileges could exploit the fsconfig syscall parameter to escalate privileges, resulting in a container breakout and a denial of service o...

8.8CVSS6.7AI score0.00838EPSS

Exploits2References2

7.5CVSS6.8AI score0.0023EPSS

Astra Linux - уязвимость в libxml2

A issue was discovered in libxml2 before version 2.10.3. When parsing a multi-gigabyte XML document with the XMLPARSEHUGE parser option enabled, several integer counters may overflow. This leads to an attempt to access an array at a negative 2GB offset, typically resulting in a segmentation fault...

Exploits2References2

7.5CVSS6.1AI score0.0014EPSS

Astra Linux - уязвимость в ruby-rack

Rack is a modular Ruby web server interface. Prior to version 2.2.18, Rack::QueryParser enforced its paramslimit only for parameters separated by &, while still splitting on both & and ;. As a result, attackers could use ; separators to bypass the parameter count limit and submit more parameters...

10CVSS7.7AI score0.00567EPSS

Astra Linux - уязвимость в cgal

7.1CVSS6.4AI score0.00125EPSS

Astra Linux - уязвимость в libtasn1-6

GNU Libtasn1-4.13 libtasn1-4.13 version. libtasn1-4.13 contains a DoS vulnerability. Specifically, CPU usage will reach 100% when running asn1Paser against the POC due to a problem in asn1expandobjectidptree. After some time, the program will terminate. This vulnerability seems to be exploitable ...

5.5CVSS5.9AI score0.00021EPSS

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: dyndbg: fixed an old BUGON in the control parser. Fixed a BUGON from 2009. Even if it seems “unreachable” I haven’t actually checked, let’s ensure it by removing it and instead using prerr and returning -EINVAL...

AstraLinux•added 2026/05/20 5:53 a.m.•7 views

Astra Linux - уязвимость в cgal

10CVSS7.7AI score0.00567EPSS

10CVSS8.4AI score0.00567EPSS

Astra Linux - уязвимость в cgal

4.3CVSS6.4AI score0.00864EPSS

Astra Linux - уязвимость в python2.7, python3.11, python3.7

The html.parser.HTMLParser class has worst-case quadratic complexity when processing certain malformed inputs, which could potentially lead to a heightened denial-of-service attack...

10CVSS7.7AI score0.0069EPSS

Astra Linux - уязвимость в cgal

5.3CVSS7.3AI score0.00033EPSS

Astra Linux - уязвимость в containerd-app

The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to a Denial-of-Service DoS attack if an attacker provides specially crafted HTML content...

7.1CVSS6.2AI score0.00081EPSS

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: Media: Venus: HFI parser refactoring of packet parsing logic wordscount represents the number of words in the total payload, while data points to the payload of various properties within it. When wordscount reaches the last word,...

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.15, linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: drm/amd: Fixed an out-of-bounds error in the BIOS parser. The array size is hardcoded to 8 in atomfirmware.h, but sometimes the firmware uses a larger array size. Deferencing the larger array causes an out-of-bounds error. The...

5.7AI score0.00029EPSS

5.9CVSS6.9AI score0.00116EPSS

Astra Linux - уязвимость в firefox, thunderbird, expat

A issue was discovered in libexpat before version 2.6.4. There is a crash within the XMLResumeParser function, as XMLStopParser can stop/suspend a parser that has not been started...