58 matches found
Denial Of Service (DoS)
github.com/golang/go is vulnerable to denial of service. An infinite read loop in ReadUvarint and ReadVarint allows an attacker to create a denial of service condition via malicious input...
Google Go Denial of Service Vulnerability (CNVD-2020-46848)
Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google. A security vulnerability exists in Google Go versions prior to 1.13.15 and 14.x prior to 1.14.7. An attacker can exploit the vulnerability with invalid input to cause an infinite...
CVE-2020-16845
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...
CVE-2020-16845
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...
AZL-79098 CVE-2020-16845 affecting package golang 1.25.7-1
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...
CVE-2020-16845
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...
UBUNTU-CVE-2020-16845
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...
CVE-2020-16845
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...
CVE-2020-16845
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...
CVE-2020-16845
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...
PT-2020-2816 · Videolabs +1 · Libmicrodns +1
Name of the Vulnerable Software and Affected Versions: Videolabs libmicrodns version 0.1.0 Description: An exploitable denial-of-service issue exists in the resource allocation handling of Videolabs libmicrodns. When encountering errors while parsing mDNS messages, some allocated data is not free...
EulerOS Virtualization 2.5.3 : tar (EulerOS-SA-2019-1262)
According to the version of the tar package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage during read access, which allows local users to cause a denial of...
GNU tar has been updated to fix CVE-2018-20482
GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage during read access, which allows local users to cause a denial of service infinite read loop in sparsedumpregion in sparse.c by modifying a file that is supposed to be archived by a different user's process e.g., a system back...
GNU tar Denial of Service Vulnerability
GNU Tar is a set of tools developed by the GNU Project for creating files in tar format. A security vulnerability exists in GNU Tar versions 1.30 and earlier, which stems from the program's failure to properly handle file shrinking. A local attacker can exploit this vulnerability by modifying the...
UBUNTU-CVE-2018-20482
GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage during read access, which allows local users to cause a denial of service infinite read loop in sparsedumpregion in sparse.c by modifying a file that is supposed to be archived by a different user's process e.g., a system back...
CVE-2018-20482
GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage during read access, which allows local users to cause a denial of service infinite read loop in sparsedumpregion in sparse.c by modifying a file that is supposed to be archived by a different user's process e.g., a system back...
PT-2018-11059 · Sangoma · Asterisk Open Source
Name of the Vulnerable Software and Affected Versions: Asterisk Open Source versions 15.x before 15.4.1 Description: An issue was discovered in Asterisk Open Source. When connected to Asterisk via TCP/TLS, if the client abruptly disconnects, or sends a specially crafted message, then Asterisk get...
CVE-2018-11547
mdislinkreferencedefinitionhelper in md4c 0.2.5 has a heap-based buffer over-read because mdislinklabel mishandles loop termination...