5226 matches found
CVE-2020-13800
ati-vga in hw/display/ati.c in QEMU 4.2.0 allows guest OS users to trigger infinite recursion via a crafted mmindex value during an atimmread or atimmwrite call...
CVE-2020-13800
ati-vga in hw/display/ati.c in QEMU 4.2.0 allows guest OS users to trigger infinite recursion via a crafted mmindex value during an atimmread or atimmwrite call...
CVE-2020-13800
ati-vga in hw/display/ati.c in QEMU 4.2.0 allows guest OS users to trigger infinite recursion via a crafted mmindex value during an atimmread or atimmwrite call...
CVE-2020-13800
ati-vga in hw/display/ati.c in QEMU 4.2.0 allows guest OS users to trigger infinite recursion via a crafted mmindex value during an atimmread or atimmwrite call...
CVE-2020-13800
CVE-2020-13800 affects QEMU 4.2.0, specifically ati-vga in hw/display/ati.c. The vulnerability arises when a guest provides a crafted mm_index value, causing infinite recursion in ati_mm_read/ati_mm_write. The described impact indicates a crash (DoS-like behavior) of the QEMU component, not neces...
CVE-2020-13800
An infinite recursion flaw was found in the ati-vga emulator of the QEMU. The issue occurs in atimmread/write routines while accessing VGA registers, for certain values of the 'mmindex' variable. This flaw allows a guest user or process to crash the QEMU process, resulting in a denial of service...
Amazon Linux AMI : bind (ALAS-2020-1369)
The version of bind installed on the remote host is prior to 9.8.2-0.68.rc1.64. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1369 advisory. A malicious actor who intentionally exploits this lack of effective limitation on the number of fetches performed wh...
Amazon Linux 2 : xorg-x11-server (ALAS-2020-1433)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1433 advisory. It was discovered that libX11 does not properly validate input coming from the server, causing XListExtensions and XGetFontPath functions to produce an invalid list of elements that in turn make...
CVE-2018-21232
re2c before 2.0 has uncontrolled recursion that causes stack consumption in findfixedtags...
UBUNTU-CVE-2020-13164
In Wireshark 3.2.0 to 3.2.3, 3.0.0 to 3.0.10, and 2.6.0 to 2.6.16, the NFS dissector could crash. This was addressed in epan/dissectors/packet-nfs.c by preventing excessive recursion, such as for a cycle in the directory graph on a filesystem...
CVE-2020-13164
Wireshark vulnerable component: NFS dissector (packet-nfs.c) can crash due to excessive recursion in the NFS graph traversal. Affected versions include Wireshark 3.2.0–3.2.3, 3.0.0–3.0.10, and 2.6.0–2.6.16. The root cause is unbounded recursion when encountering cycles in the directory graph on a...
CVE-2020-13164
In Wireshark 3.2.0 to 3.2.3, 3.0.0 to 3.0.10, and 2.6.0 to 2.6.16, the NFS dissector could crash. This was addressed in epan/dissectors/packet-nfs.c by preventing excessive recursion, such as for a cycle in the directory graph on a filesystem...
CVE-2020-12825
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
CVE-2020-12825
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
AZL-11365 CVE-2020-12825 affecting package libcroco 0.6.13-6
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
AZL-36948 CVE-2020-12825 affecting package libcroco 0.6.13-6
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
Stack overflow
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
CVE-2020-12825
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
CVE-2020-12825
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...
CVE-2020-12825
Removed by vendor...