1103 matches found
CVE-2021-38566
CVE-2021-38566 affects Foxit PDF Reader prior to 11.0.1 and Foxit PDF Editor prior to 11.0.1. The issue is a stack consumption vulnerability during recursive processing of embedded XML nodes. CVSS metrics indicate a Network vector, Low attack complexity, no privileges, and a HIGH impact on availa...
CVE-2021-38569
Foxit Reader and Foxit PhantomPDF are affected by a vulnerability fixed in 10.1.4 or later. The issue allows stack consumption via recursive function calls during handling of XFA forms or linked objects, which could lead to a denial of service. Affected products are Foxit Reader and Foxit Phantom...
CVE-2021-38569
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows stack consumption via recursive function calls during the handling of XFA forms or link objects...
Updated libcroco and gettext packages fix security vulnerability
libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption CVE-2020-12825...
CVE-2021-36154
HTTP2ToRawGRPCServerCodec in gRPC Swift 1.1.1 and earlier allows remote attackers to deny service via the delivery of many small messages within a single HTTP/2 frame, leading to Uncontrolled Recursion and stack consumption...
CVE-2021-36154
HTTP2ToRawGRPCServerCodec in gRPC Swift 1.1.1 and earlier allows remote attackers to deny service via the delivery of many small messages within a single HTTP/2 frame, leading to Uncontrolled Recursion and stack consumption...
Huawei EulerOS: Security Advisory for libcroco (EulerOS-SA-2021-2143)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 3.0.2.2 : libcroco (EulerOS-SA-2021-2143)
According to the version of the libcroco package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption.CVE-2020-12825...
Advisory ROSA-SA-2021-1949
Software: perl 5.16.3 OS: Cobalt 7.9 CVE-ID: CVE-2014-4330 CVE-Crit: MEDIUM CVE-DESC: The Dumper method in Data :: Dumper before 2.154, which was used in Perl 5.20.1 and earlier, allows context-sensitive attackers to cause a denial of service stack consumption and failure via an array reference...
Advisory ROSA-SA-2021-1865
Software: libcroco 0.6.12 OS: Cobalt 7.9 CVE-ID: CVE-2017-7960 CVE-Crit: MEDIUM CVE-DESC: The crinputnewfromuri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote attackers to cause a denial of service heap-based buffer re-read via a crafted CSS file. CVE-STATUS: default CVE-REV:...
MGASA-2021-0299 Updated re2c package fixes a security vulnerability
re2c before 2.0 has uncontrolled recursion that causes stack consumption in findfixedtags CVE-2018-21232...
Updated re2c package fixes a security vulnerability
re2c before 2.0 has uncontrolled recursion that causes stack consumption in findfixedtags CVE-2018-21232...
SUSE: Security Advisory (SUSE-SU-2016:1581-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DEBIAN-CVE-2020-28019
Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA...
CVE-2020-28019
Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA...
CVE-2020-28019
Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA...
CVE-2020-28019
CVE-2020-28019 is an Exim 4 vulnerability: versions prior to 4.94.2 suffer from Improper Initialization that can cause recursion-based stack consumption or other consequences when a client uses BDAT instead of DATA. The issue stems from how certain getc functions are mishandled in that BDAT flow,...
CVE-2020-28019
Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA...
CVE-2020-28019
Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA...
EulerOS 2.0 SP3 : qpdf (EulerOS-SA-2021-1843)
According to the versions of the qpdf package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service infinite recursion and stack consumption via a crafted PDF document,...