Lucene search
+L

30 matches found

Debian CVE
Debian CVE
added 2026/06/25 8:38 a.m.12 views

CVE-2026-53186

In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: bound SRPRSP sense copy by the received length srpprocessrsp copies sense data from rsp-data + respdatalen, where respdatalen is the full 32-bit value supplied by the SRP target and is never checked against the number o...

9.1CVSS5.9AI score0.00544EPSS
Exploits0
EUVD
EUVD
added 2026/06/25 8:38 a.m.6 views

EUVD-2026-39277

In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: bound SRPRSP sense copy by the received length srpprocessrsp copies sense data from rsp-data + respdatalen, where respdatalen is the full 32-bit value supplied by the SRP target and is never checked against the number o...

6AI score0.00544EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.11 views

PT-2026-52282

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the RDMA/srp component where the srp process rsp function copies sense data from a source offset determined by resp data len without verifying it against the actual...

9.1CVSS5.9AI score0.00544EPSS
Exploits0References22
Positive Technologies
Positive Technologies
added 2026/05/20 12:0 a.m.14 views

PT-2026-42055

Name of the Vulnerable Software and Affected Versions rsync versions prior to 3.4.3 Description An off-by-one out-of-bounds stack write exists in the establish proxy connection function within socket.c. Network attackers can corrupt stack memory by sending a malformed HTTP proxy response. This...

8.1CVSS5.8AI score0.0078EPSS
Exploits0References61
SUSE CVE
SUSE CVE
added 2026/05/02 1:25 a.m.25 views

SUSE CVE-2026-31708

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB read in smb2ioctlqueryinfo QUERYINFO path smb2ioctlqueryinfo has two response-copy branches: PASSTHRUFSCTL and the default QUERYINFO path. The QUERYINFO branch clamps qi.inputbufferlength to the server-report...

8.1CVSS5.9AI score0.00307EPSS
Exploits0References4
CVE
CVE
added 2026/04/03 3:16 p.m.107 views

CVE-2026-31402

CVE-2026-31402 affects the Linux kernel NFSv4.0 server (nfsd) via the LOCK replay cache. A large lock owner in a denied LOCK can cause a slab-out-of-bounds write into the 112-byte replay buffer, corrupting adjacent heap memory. The issue can be triggered remotely by two cooperating NFSv4.0 client...

9.8CVSS5.8AI score0.0049EPSS
Exploits0References37Affected Software1
OSV
OSV
added 2026/04/03 3:16 p.m.2 views

CVE-2026-31402 nfsd: fix heap overflow in NFSv4.0 LOCK replay cache

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache The NFSv4.0 replay cache uses a fixed 112-byte inline buffer rpibufNFSD4REPLAYISIZE to store encoded operation responses. This size was calculated based on OPEN responses and...

9.8CVSS6.1AI score0.0049EPSS
Exploits0References40
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of verification of the length of the L2CAPINFORSP payload, potentially leading to out-of-bound...

8.1CVSS5.8AI score0.00255EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/03/14 9:5 p.m.1 views

CVE-2026-0849 crypto: ATAES132A response length allows stack buffer overflow

Malformed ATAES132A responses with an oversized length field overflow a 52-byte stack buffer in the Zephyr crypto driver, allowing a compromised device or bus attacker to corrupt kernel memory and potentially hijack execution...

3.8CVSS6AI score0.0024EPSS
Exploits1References1
SUSE Linux
SUSE Linux
added 2026/01/26 4:39 p.m.5 views

Security update for python311

This update for python311 fixes the following issues: CVE-2025-12084: prevent quadratic behavior in node ID cache clearing bsc1254997. CVE-2025-13836: prevent reading an HTTP response from a server, if no read amount is specified, with using Content-Length per default as the length bsc1254400...

6.5CVSS5.9AI score0.01525EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2025/12/09 10:26 p.m.8 views

python-kdcproxy: Remote DoS via unbounded TCP upstream buffering

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server e.g. through server-side request forgery, they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC's response, kdcproxy copie...

5.9CVSS5.9AI score0.00511EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/11/20 5:58 a.m.16 views

python-kdcproxy: Remote DoS via unbounded TCP upstream buffering

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server e.g. through server-side request forgery, they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC's response, kdcproxy copie...

5.9CVSS5.9AI score0.00511EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/11/12 3:26 p.m.5 views

python-kdcproxy: Remote DoS via unbounded TCP upstream buffering

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server e.g. through server-side request forgery, they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC's response, kdcproxy copie...

5.9CVSS5.9AI score0.00511EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/11/12 12:0 a.m.5 views

kdcproxy 安全漏洞

kdcproxy is a Python library open-sourced by latchset A security vulnerability exists in kdcproxy that stems from not enforcing TCP response length bounds, which could lead to a denial of service attack...

5.9CVSS6.2AI score0.00511EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-5333

Malware in sbrugna...

7.8CVSS7.6AI score0.0019EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-5267

Malware in sbrugna...

7.8CVSS7.6AI score0.00202EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-59871

Malicious code in bioql PyPI...

7.6AI score0.00152EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-53894

Malicious code in bioql PyPI...

9.8CVSS5.1AI score0.00394EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:38 a.m.6 views

CVE-2023-26434

When adding an external mail account, processing of POP3 "capabilities" responses are not limited to plausible sizes. Attacker with access to a rogue POP3 service could trigger requests that lead to excessive resource usage and eventually service unavailability. We now limit accepted POP3 server...

4.3CVSS6.7AI score0.01148EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:31 a.m.11 views

CVE-2019-14009

Out of bound memory access while processing TZ command handler due to improper input validation on response length received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music,...

7.8CVSS9.3AI score0.00202EPSS
Exploits0References1
Rows per page
Query Builder