Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-11419

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromhex function via a RegExp\u0 payload, related to...

9.8CVSS8.5AI score0.01583EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-11418

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromutf8 function via a RegExp\u0020 payload, related t...

9.8CVSS8.5AI score0.01583EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/06/26 1:19 a.m.7 views

golang: regexp/syntax: limit memory used by parsing regexps

A flaw was found in the golang package, where programs that compile regular expressions from untrusted sources are vulnerable to memory exhaustion or a denial of service. The parsed regexp representation is linear in the input size. Still, in some cases, the constant factor can be as high as...

7.5CVSS6.6AI score0.01339EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/09 9:50 a.m.9 views

golang: regexp/syntax: limit memory used by parsing regexps

A flaw was found in the golang package, where programs that compile regular expressions from untrusted sources are vulnerable to memory exhaustion or a denial of service. The parsed regexp representation is linear in the input size. Still, in some cases, the constant factor can be as high as...

7.5CVSS6.6AI score0.01339EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/01/23 3:26 p.m.2 views

golang: regexp/syntax: limit memory used by parsing regexps

A flaw was found in the golang package, where programs that compile regular expressions from untrusted sources are vulnerable to memory exhaustion or a denial of service. The parsed regexp representation is linear in the input size. Still, in some cases, the constant factor can be as high as...

7.5CVSS6.6AI score0.01339EPSS
Exploits0References6
Amazon
Amazon
added 2023/01/20 12:0 a.m.41 views

Important: golist

Issue Overview: Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could cause Read to allocate unbounded amounts of memory, potentially causing resource exhaustion or panics. After fix, Reader.Read limits the maximum size of header blocks to 1 MiB...

7.5CVSS7.7AI score0.01544EPSS
Exploits0
securityvulns
securityvulns
added 2009/08/07 12:0 a.m.105 views

Mozilla Foundation Security Advisory 2009-43

Mozilla Foundation Security Advisory 2009-43 Title: Heap overflow in certificate regexp parsing Impact: Critical Announced: August 1, 2009 Reporter: Moxie Marlinspike Products: Firefox, Thunderbird, SeaMonkey, NSS Fixed in: Firefox 3.5 NSS 3.12.3 Description Moxie Marlinspike reported a heap...

9.3CVSS1.5AI score0.04155EPSS
Exploits1
Mozilla
Mozilla
added 2009/08/01 12:0 a.m.29 views

Heap overflow in certificate regexp parsing — Mozilla

Moxie Marlinspike reported a heap overflow vulnerability in the code that handles regular expressions in certificate names. This vulnerability could be used to compromise the browser and run arbitrary code by presenting a specially crafted certificate to the client. This code provided compatibili...

9.3CVSS2.8AI score0.04155EPSS
Exploits1References2Affected Software4
Rows per page
Query Builder