10 matches found
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from ksm scanning VMAs without skipping unmapped regions, which could lead to wasted CPU resources...
USN-7866-1 intel-microcode vulnerabilities
Barak Gross discovered that some Intel® Xeon® processors with SGX enabled did not properly handle buffer restrictions. A local authenticated user could potentially use this issue to escalate their privileges. CVE-2025-20053 Avinash Maddy discovered that some Intel® processors did not properly...
kernel: DoS in rb_per_cpu_empty()
A lack of CPU resources in the Linux kernel tracing module functionality was found in the way users use the trace ring buffer in specific way. Only privileged local users with CAPSYSADMIN capability could use this flaw to starve the resources causing denial of service...
python-pygments: ReDoS in multiple lexers
A denial of service attack was discovered against pygments. Some of the regular expressions used to tokenise source code for highlighting have exponential complexity. A specially crafted input file could cause pygments to take effectively infinite time to parse, consuming CPU resources and denyin...
IBM Cognos Business Intelligence Server Denial of Service Vulnerability
IBM Cognos Business Intelligence BI Server is a suite of business intelligence software from IBM in the United States. The software includes reports, dashboards and scorecards, and can assist companies in adjusting their decisions by analyzing key factors and key stakeholders. A denial of service...
IBM Mashups Center Denial of Service Vulnerability
IBM Mashups Center is a suite of platforms for business and IT people to create, publish, modify and share Web applications from IBM in the United States. A denial of service vulnerability exists in IBM Mashups Center. An attacker can exploit this vulnerability to consume CPU resources and cause ...
Cisco ASR 1000 Series Router Segmented IPv4 Processing Denial of Service Vulnerability
The Cisco ASR1000 Series Aggregation Services Routers provide a WAN edge solution that integrates information, communication, collaboration, and commerce. A security vulnerability in the Cisco ASR 1000 Series Router's processing of 100,000 segmented IPv4 messages allows a remote attacker to explo...
Asterisk 1.6 IAX - POKE Requests Remote Denial of Service
Asterisk 1.6 IAX - POKE Requests Remote Denial of Service source: https://www.securityfocus.com/bid/30321/info Asterisk is prone to a remote denial-of-service vulnerability because it fails to handle multiple 'POKE' requests in quick succession. Attackers can exploit this issue by sending a...
Asterisk 1.6 IAX - 'POKE' Requests Remote Denial of Service
source: https://www.securityfocus.com/bid/30321/info Asterisk is prone to a remote denial-of-service vulnerability because it fails to handle multiple 'POKE' requests in quick succession. Attackers can exploit this issue by sending a persistent stream of 'POKE' requests that will consume processo...
iDEFENSE Security Advisory 06.29.05: Clam AntiVirus ClamAV Cabinet File Handling DoS Vulnerability
Clam AntiVirus ClamAV Cabinet File Handling DoS Vulnerability iDEFENSE Security Advisory 06.29.05 www.idefense.com/application/poi/display?id=275&type=vulnerabilities June 29, 2005 I. BACKGROUND Clam AntiVirus is a GPL anti-virus toolkit for Unix. II. DESCRIPTION Remote exploitation of an input...