Lucene search
K

388 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/12/04 7:56 a.m.28 views

Security Bulletin: IBM Sterling Connect:Direct for UNIX Certified Container is vulnerable to denial of service due to procps-ng (CVE-2023-4016)

Summary IBM Sterling Connect:Direct for UNIX Certified Container uses procps-ng package which is vulnerable to denial of service attack. Vulnerability Details CVEID:CVE-2023-4016 DESCRIPTION: procps-ng procps is vulnerable to a denial of service, caused by a heap based buffer overflow when runnin...

3.3CVSS4.7AI score0.00239EPSS
Exploits0Affected Software1
Cloud Foundry
Cloud Foundry
added 2023/12/04 12:0 a.m.30 views

USN-6477-1: procps-ng vulnerability | Cloud Foundry

Severity Low Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Canonical Ubuntu 22.04 Description It was discovered that the procps-ng ps tool incorrectly handled memory. An attacker could possibly use this issue to cause procps-ng to crash, resulting in a...

3.3CVSS4.7AI score0.00239EPSS
Exploits0Affected Software1
Rockylinux
Rockylinux
added 2023/11/28 10:42 p.m.29 views

procps-ng security update

An update is available for procps-ng. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The procps-ng packages contain a set of system utilities that provide syste...

3.3CVSS7.5AI score0.00239EPSS
Exploits0
OSV
OSV
added 2023/11/28 10:42 p.m.17 views

RLSA-2023:7187 Low: procps-ng security update

The procps-ng packages contain a set of system utilities that provide system information, including ps, free, skill, pkill, pgrep, snice, tload, top, uptime, vmstat, w, watch, and pwdx. Security Fixes: procps: ps buffer overflow CVE-2023-4016 For more details about the security issues, including...

3.3CVSS5.1AI score0.00239EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/11/28 12:0 a.m.13 views

Rocky Linux 8 : procps-ng (RLSA-2023:7187)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:7187 advisory. - Under some circumstances, this weakness allows a user who has access to run the ps utility on a machine, the ability to write almost unlimited amounts of...

3.3CVSS6.4AI score0.00239EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/11/21 12:0 a.m.38 views

Oracle Linux 8 : procps-ng (ELSA-2023-7187)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-7187 advisory. - CVE-2023-4016: ps: possible buffer overflow Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

3.3CVSS6.6AI score0.00239EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2023/11/17 12:0 a.m.367 views

procps-ng security update

3.3.15-14.0.1 - ps: remove uptime integer conversion Orabug: 35909165 - ps: improved three elapsed 'jiffies/tics' calculations Orabug: 35909165 - Set TZ to avoid repeated stat'/etc/localtime' Orabug: 32769816 3.3.15-14 - CVE-2023-4016: ps: possible buffer overflow - Resolves: rhbz2228503...

3.3CVSS5.6AI score0.00239EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/11/16 12:0 a.m.22 views

Oracle Linux 9 : procps-ng (ELSA-2023-6705)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6705 advisory. 3.3.17-13.0.1 - ps: remove uptime integer conversion Orabug: 35909347 - ps: improved three elapsed 'jiffies/tics' calculations Orabug: 35909347 3.3.17-13 - ps:...

3.3CVSS6.7AI score0.00239EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/11/15 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-6477-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS4.5AI score0.00239EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/11/14 3:26 p.m.39 views

Low: Red Hat Security Advisory: procps-ng security update

An update for procps-ng is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

3.3CVSS6.8AI score0.00239EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/11/14 3:26 p.m.6 views

procps: ps buffer overflow

A heap-based buffer overflow vulnerability was found in the procps project when handling untrusted input with the -C option. This issue may allow a user with "ps" utility access to write unfiltered data into the process heap, triggering an out-of-bounds write, consuming memory and causing a crash...

3.3CVSS6.9AI score0.00239EPSS
Exploits0References7
Ubuntu
Ubuntu
added 2023/11/14 9:44 a.m.378 views

USN-6477-1: procps-ng vulnerability

It was discovered that the procps-ng ps tool incorrectly handled memory. An attacker could possibly use this issue to cause procps-ng to crash, resulting in a denial of service...

3.3CVSS6.5AI score0.00239EPSS
Exploits0
OSV
OSV
added 2023/11/14 9:44 a.m.2 views

USN-6477-1 procps vulnerability

It was discovered that the procps-ng ps tool incorrectly handled memory. An attacker could possibly use this issue to cause procps-ng to crash, resulting in a denial of service...

3.3CVSS6.7AI score0.00239EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2023/11/14 12:0 a.m.32 views

Low: procps-ng security update

The procps-ng packages contain a set of system utilities that provide system information, including ps, free, skill, pkill, pgrep, snice, tload, top, uptime, vmstat, w, watch, and pwdx. Security Fixes: procps: ps buffer overflow CVE-2023-4016 For more details about the security issues, including...

3.3CVSS7.4AI score0.00239EPSS
Exploits0References4
OSV
OSV
added 2023/11/14 12:0 a.m.28 views

ALSA-2023:7187 Low: procps-ng security update

The procps-ng packages contain a set of system utilities that provide system information, including ps, free, skill, pkill, pgrep, snice, tload, top, uptime, vmstat, w, watch, and pwdx. Security Fixes: procps: ps buffer overflow CVE-2023-4016 For more details about the security issues, including...

3.3CVSS5.2AI score0.00239EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.14 views

CentOS 8 : procps-ng (CESA-2023:7187)

The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2023:7187 advisory. - Under some circumstances, this weakness allows a user who has access to run the ps utility on a machine, the ability to write almost unlimited amounts of...

3.3CVSS6.4AI score0.00239EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2023/11/11 12:0 a.m.101 views

procps-ng security and bug fix update

3.3.17-13.0.1 - ps: remove uptime integer conversion Orabug: 35909347 - ps: improved three elapsed 'jiffies/tics' calculations Orabug: 35909347 3.3.17-13 - ps: mitigation of possible buffer overflow - Resolves: rhbz2228504 3.3.17-12 - sysctl: '-N' option shows values instead of names if '-p' -...

3.3CVSS5.6AI score0.00239EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/11/10 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for procps-ng (EulerOS-SA-2023-3226)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS4.5AI score0.00239EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/11/10 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for procps-ng (EulerOS-SA-2023-3191)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS4.5AI score0.00239EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/11/09 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for procps-ng (EulerOS-SA-2023-3147)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS4.5AI score0.00239EPSS
Exploits0References2
Rows per page
Query Builder