60 matches found
SUSE CVE-2023-4016
Under some circumstances, this weakness allows a user who has access to run the “ps” utility on a machine, the ability to write almost unlimited amounts of unfiltered data into the process heap...
Siemens SIMATIC S7-1500 Heap-based Buffer Overflow (CVE-2023-4016)
Under some circumstances, this weakness allows a user who has access to run the ps utility on a machine, the ability to write almost unlimited amounts of unfiltered data into the process heap. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for mor...
EUVD-2023-53909
Malicious code in bioql PyPI...
Astra Linux – Vulnerability in procps
Under certain circumstances, this weakness allows a user who has access to run the “ps” utility on a machine to write almost unlimited amounts of unfiltered data into the process heap...
Linux Distros Unpatched Vulnerability : CVE-2023-4016
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Under some circumstances, this weakness allows a user who has access to run the ps utility on a machine, the ability to write almost unlimited amounts of...
CVE-2024-37310 EVerest has an integer overflow in the "v2g_incoming_v2gtp" function
EVerest is an EV charging software stack. An integer overflow in the "v2gincomingv2gtp" function in the v2gserver.cpp implementation can allow a remote attacker to overflow the process' heap. This vulnerability is fixed in 2024.3.1 and 2024.6.0...
CLSA-2024-1718202753 Fix CVE(s): CVE-2023-4016
SECURITY UPDATE: Ability to write almost unlimited amounts of unfiltered data into the process heap - debian/patches/CVE-2023-4016-2.patch: ps: extended fix of the CVE-2023-4016 - fix possible buffer overflow in -C option. - CVE-2023-4016...
EulerOS 2.0 SP11 : procps-ng (EulerOS-SA-2023-3018)
According to the versions of the procps-ng packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Under some circumstances, this weakness allows a user who has access to run the ps utility on a machine, the ability to write almost unlimite...
EulerOS Virtualization 2.9.0 : procps-ng (EulerOS-SA-2024-1026)
According to the versions of the procps-ng package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Under some circumstances, this weakness allows a user who has access to run the ps utility on a machine, the ability to write...
EulerOS 2.0 SP8 : procps-ng (EulerOS-SA-2023-3147)
According to the versions of the procps-ng packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Under some circumstances, this weakness allows a user who has access to run the ps utility on a machine, the ability to write almost unlimite...
EulerOS Virtualization 2.10.1 : procps-ng (EulerOS-SA-2023-3516)
According to the versions of the procps-ng package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Under some circumstances, this weakness allows a user who has access to run the ps utility on a machine, the ability to write...
EulerOS Virtualization 2.9.0 : procps-ng (EulerOS-SA-2023-3106)
According to the versions of the procps-ng packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Under some circumstances, this weakness allows a user who has access to run the ps utility on a machine, the ability to write...
EulerOS Virtualization 3.0.6.0 : procps-ng (EulerOS-SA-2023-3446)
According to the versions of the procps-ng packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Under some circumstances, this weakness allows a user who has access to run the ps utility on a machine, the ability to write...
EulerOS 2.0 SP9 : procps-ng (EulerOS-SA-2023-2905)
According to the versions of the procps-ng packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Under some circumstances, this weakness allows a user who has access to run the ps utility on a machine, the ability to write almost unlimite...
Huawei EulerOS: Security Advisory for procps-ng (EulerOS-SA-2023-3384)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CLSA-2023-1701706444 Fix CVE(s): CVE-2023-4016
SECURITY UPDATE: Ability to write almost unlimited amounts of unfiltered data into the process heap - debian/patches/CVE-2023-4016.patch: ps: fix possible buffer overflow in -C option. - CVE-2023-4016...
CLSA-2023-1701706316 Fix CVE(s): CVE-2023-4016
SECURITY UPDATE: Ability to write almost unlimited amounts of unfiltered data into the process heap - debian/patches/CVE-2023-4016.patch: ps: fix possible buffer overflow in -C option. - CVE-2023-4016...
Oracle Linux 8 : procps-ng (ELSA-2023-7187)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-7187 advisory. - CVE-2023-4016: ps: possible buffer overflow Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...
RHEL 8 : procps-ng (RHSA-2023:7187)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:7187 advisory. The procps-ng packages contain a set of system utilities that provide system information, including ps, free, skill, pkill, pgrep, snice, tload, top,...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : procps-ng vulnerability (USN-6477-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has packages installed that are affected by a vulnerability as referenced in the USN-6477-1 advisory. It was discovered that the procps-ng ps tool incorrectly handled memory. An attacker could possibly use this...