Lucene search
K

18 matches found

Positive Technologies
Positive Technologies
added 2026/04/29 12:0 a.m.4 views

PT-2026-35929

Name of the Vulnerable Software and Affected Versions Text::CSV XS versions prior to 1.62 Description A use-after-free issue exists when registered callbacks extend the Perl argument stack, potentially leading to type confusion or memory corruption. The Parse, print, getline, and getline all...

8.4CVSS5.2AI score0.00158EPSS
Exploits0References17
RedhatCVE
RedhatCVE
added 2026/01/09 12:25 p.m.10 views

CVE-2018-12248

An issue was discovered in mruby 1.4.1. There is a heap-based buffer over-read associated with OPENTER because mrbgems/mruby-fiber/src/fiber.c does not extend the stack in cases of many arguments to fiber...

7.5CVSS6.9AI score0.01552EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2018-4226

Malware in sbrugna...

7.5CVSS7.6AI score0.01552EPSS
Exploits0References3
Prion
Prion
added 2018/06/12 2:29 p.m.18 views

Heap overflow

An issue was discovered in mruby 1.4.1. There is a heap-based buffer over-read associated with OPENTER because mrbgems/mruby-fiber/src/fiber.c does not extend the stack in cases of many arguments to fiber...

5CVSS7.6AI score0.01552EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/06/12 2:0 p.m.34 views

CVE-2018-12248

An issue was discovered in mruby 1.4.1. There is a heap-based buffer over-read associated with OPENTER because mrbgems/mruby-fiber/src/fiber.c does not extend the stack in cases of many arguments to fiber...

7.7AI score0.01552EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2018/06/12 2:0 p.m.17 views

CVE-2018-12248

An issue was discovered in mruby 1.4.1. There is a heap-based buffer over-read associated with OPENTER because mrbgems/mruby-fiber/src/fiber.c does not extend the stack in cases of many arguments to fiber...

7.5CVSS7.7AI score0.01552EPSS
Exploits0
Hacker One
Hacker One
added 2016/12/30 10:45 p.m.23 views

shopify-scripts: Heap use-after-free during range creation

rangecheck can trigger a stack extension via mrbfuncall if there are many arguments passed to the equivalence test. The stack extension changes the address of the stack, though the old stack address is used when assigning the value of the range. This causes a write into the old heap allocation,...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/11/28 12:0 a.m.46 views

F5 Networks BIG-IP : GNU C Library vulnerability (SOL15885)

The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a 'stack extension attack,' a related issue to...

10CVSS5.7AI score0.14323EPSS
Exploits4References5
RedHat Linux
RedHat Linux
added 2012/02/13 8:30 p.m.8 views

glibc: fnmatch() alloca()-based memory corruption flaw

The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a "stack extension attack," a related issue to...

5.1CVSS6.5AI score0.14323EPSS
Exploits1References4
OSV
OSV
added 2011/04/08 3:17 p.m.11 views

CVE-2011-1071

The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a "stack extension attack," a related issue to...

9.7AI score
Exploits0References26
NVD
NVD
added 2011/04/08 3:17 p.m.25 views

CVE-2011-1071

The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a "stack extension attack," a related issue to...

5.1CVSS9.2AI score0.14323EPSS
Exploits1References25
OSV
OSV
added 2011/04/08 3:17 p.m.2 views

DEBIAN-CVE-2011-1071

The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a "stack extension attack," a related issue to...

5.1CVSS7.9AI score0.14323EPSS
Exploits1References1
Prion
Prion
added 2011/04/08 3:17 p.m.25 views

Design/Logic Flaw

The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a "stack extension attack," a related issue to...

5.1CVSS7.7AI score0.14323EPSS
Exploits4References25Affected Software1
Cvelist
Cvelist
added 2011/04/08 3:0 p.m.34 views

CVE-2011-1071

The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a "stack extension attack," a related issue to...

9.3AI score0.14323EPSS
Exploits1References25
CVE
CVE
added 2011/04/08 3:0 p.m.116 views

CVE-2011-1071

CVE-2011-1071 affects the GNU C Library (glibc) and Embedded GLIBC (EGLIBC) prior to 2.12.2, with an underlying flaw in fnmatch() that lets context-dependent attackers supply a long UTF-8 string to trigger arbitrary code execution or memory exhaustion (DoS). Affected components include glibc in m...

5.1CVSS9.2AI score0.14323EPSS
Exploits1References25Affected Software2
Debian CVE
Debian CVE
added 2011/04/08 3:0 p.m.43 views

CVE-2011-1071

The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a "stack extension attack," a related issue to...

5.1CVSS7.5AI score0.14323EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2011/04/08 12:0 a.m.60 views

CVE-2011-1071

The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a "stack extension attack," a related issue to...

5.1CVSS6.6AI score0.14323EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2011/04/04 8:1 p.m.5 views

glibc: fnmatch() alloca()-based memory corruption flaw

The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a "stack extension attack," a related issue to...

10CVSS6.5AI score0.14323EPSS
Exploits4References4
Rows per page
Query Builder