Lucene search
K

100 matches found

Tenable Nessus
Tenable Nessus
added 2024/09/03 12:0 a.m.16 views

EulerOS Virtualization 2.12.1 : curl (EulerOS-SA-2024-2302)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the...

8.6CVSS6.9AI score0.36081EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/09/03 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-2302)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.5AI score0.36081EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/09/03 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-2322)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.5AI score0.36081EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/09/03 12:0 a.m.15 views

EulerOS Virtualization 2.12.0 : curl (EulerOS-SA-2024-2322)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the...

8.6CVSS6.9AI score0.36081EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/08/28 12:0 a.m.59 views

CentOS 9 : curl-7.76.1-31.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the curl-7.76.1-31.el9 build changelog. - When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allow...

8.6CVSS6.8AI score0.36081EPSS
Exploits1References2
OSV
OSV
added 2024/08/27 7:56 p.m.7 views

CLSA-2024-1724788603 curl: Fix of CVE-2024-2398

CVE-2024-2398: fix memory leak when aborting server push due to exceeding header limit...

8.6CVSS6.9AI score0.36081EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/08/21 12:0 a.m.18 views

EulerOS Virtualization 2.11.1 : curl (EulerOS-SA-2024-2164)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the...

8.6CVSS6.9AI score0.36081EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2024/08/20 6:20 p.m.5 views

curl: HTTP/2 push headers memory-leak

A flaw was found in curl. When an application configures libcurl to use HTTP/2 server push and the amount of received headers for the push surpasses the maximum allowed limit, libcurl aborts the server push. When aborting, libcurl does not free all the previously allocated headers, resulting in a...

8.6CVSS7.3AI score0.36081EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/08/20 12:0 a.m.19 views

EulerOS Virtualization 2.11.0 : curl (EulerOS-SA-2024-2189)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the...

8.6CVSS6.9AI score0.36081EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/08/20 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-2189)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.5AI score0.36081EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/08/20 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-2164)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.5AI score0.36081EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/08/20 12:0 a.m.10 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-2134)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.5AI score0.36081EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2024/08/19 2:49 a.m.12 views

curl: HTTP/2 push headers memory-leak

A flaw was found in curl. When an application configures libcurl to use HTTP/2 server push and the amount of received headers for the push surpasses the maximum allowed limit, libcurl aborts the server push. When aborting, libcurl does not free all the previously allocated headers, resulting in a...

8.6CVSS7.3AI score0.36081EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/08/19 12:0 a.m.18 views

EulerOS Virtualization 2.10.1 : curl (EulerOS-SA-2024-2134)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the...

8.6CVSS6.9AI score0.36081EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/08/19 12:0 a.m.21 views

EulerOS Virtualization 2.10.0 : curl (EulerOS-SA-2024-2114)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the...

8.6CVSS6.9AI score0.36081EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.27 views

CBL Mariner 2.0 Security Update: cmake / curl / mysql (CVE-2024-2398)

The version of cmake / curl / mysql installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-2398 advisory. - When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of...

8.6CVSS6.8AI score0.36081EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/07/29 12:0 a.m.49 views

macOS 13.x < 13.6.8 Multiple Vulnerabilities (HT214120)

The remote host is running a version of macOS / Mac OS X that is 13.x prior to 13.6.8. It is, therefore, affected by multiple vulnerabilities: - A segment fault SEGV flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt API. This flaw allows a...

8.6CVSS7.7AI score0.99506EPSS
Exploits73References46
Tenable Nessus
Tenable Nessus
added 2024/07/22 12:0 a.m.20 views

EulerOS 2.0 SP8 : curl (EulerOS-SA-2024-2022)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowe...

8.6CVSS6.7AI score0.36081EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2024/07/22 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-2022)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.4AI score0.36081EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2024/07/16 12:0 a.m.16 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-1902)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS8.7AI score0.36081EPSS
Exploits1References2
Rows per page
Query Builder