Lucene search
+L

35 matches found

ptsecurity
ptsecurity
added 2026/06/19 12:0 a.m.11 views

PT-2026-51084

Name of the Vulnerable Software and Affected Versions oj gem affected versions not specified Description A heap use-after-free occurs in Oj::Parserparse when a SAJ/SAJ2 callback mutates the input JSON string during the parsing process. The C engine maintains a raw pointer to the Ruby string's...

8.7CVSS6AI score0.00117EPSS
Exploits0References5
redhatcve
redhatcve
added 2026/05/27 8:10 p.m.18 views

CVE-2026-46055

A flaw was found in the AppArmor security module of the Linux kernel. A missing string termination in the aadfamatch function can lead to a string buffer overrun. This vulnerability could allow a local attacker to cause a denial of service DoS or potentially disclose sensitive information due to ...

7.1CVSS5.9AI score0.0015EPSS
Exploits0References4
astralinux
astralinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: fbdev: sisfb: Fixed strbuf array overflow issue. The values of the variables xres and yres are stored in strbuf. These variables are obtained from strbuf1. The strbuf1 array contains digit characters, and a space if the array...

7.8CVSS6.6AI score0.00255EPSS
Exploits0References2
osv
osv
added 2026/05/06 11:57 p.m.15 views

CLSA-2026-1778111838 httpd: Fix of 9 CVEs

CVE-2026-24072: fix modrewrite apexpr privilege escalation in htaccess - CVE-2026-28780: fix modproxyajp ajpmsgcheckheader buffer over-read - CVE-2026-29169: fix moddavlock NULL pointer dereference - CVE-2026-33006: fix modauthdigest timing attack - CVE-2026-33007: fix modauthnsocache NULL...

9.8CVSS5.9AI score0.01376EPSS
Exploits2References1
osv
osv
added 2026/04/20 12:13 p.m.9 views

CLSA-2026-1776687226 Fix CVE(s): CVE-2024-52005

SECURITY UPDATE: ANSI escape sequence injection via sideband - debian/patches/CVE-2024-52005.patch: add strbufaddsanitized to mask control characters in sideband output in sideband.c. - CVE-2024-52005...

8.8CVSS7.2AI score0.00494EPSS
Exploits1References1
ubuntucve
ubuntucve
added 2026/04/20 12:0 a.m.7 views

CVE-2026-40489

editorconfig-core-c is an EditorConfig core library for use by plugins supporting EditorConfig parsing. Versions up to and including 0.12.10 have a stack-based buffer overflow in ecglob that allows an attacker to crash any application using libeditorconfig by providing a specially crafted directo...

8.6CVSS6AI score0.00151EPSS
Exploits1References4
nessus
nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : java-1.8.0-openjdk-1.8.0.322.b06-2.el8 (AXSA:2022-3023:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3023:02 advisory. OpenJDK: Incomplete deserialization class filtering in ObjectInputStream Serialization, 8264934 CVE-2022-21248 OpenJDK: Insufficient URI checks in t...

5.3CVSS5.8AI score0.08346EPSS
Exploits0References13
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-34071

Malicious code in bioql PyPI...

9.1CVSS6.9AI score0.00422EPSS
Exploits0References2
redhat
redhat
added 2025/05/13 8:28 a.m.4 views

kernel: tipc: guard against string buffer overrun

No description is available for this CVE...

6.9AI score
Exploits0References5
nessus
nessus
added 2025/03/06 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2024-49995

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: tipc: guard against string buffer overrun Smatch reports that copying medianame and ifname t...

7.3AI score
Exploits0References1
amazon
amazon
added 2025/03/06 12:0 a.m.7 views

Important: kernel-livepatch-4.14.355-275.582

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: tipc: guard against string buffer overrun CVE-2024-49995 In the Linux kernel, the following vulnerability has been resolved: dm cache: fix out-of-bounds access to the dirty bitset when resizing CVE-2024-50279...

7.1CVSS6.9AI score0.00262EPSS
Exploits0
osv
osv
added 2024/12/20 12:45 p.m.8 views

SUSE-SU-2024:4397-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-49995: tipc: guard against string buffer overrun bsc1232432. - CVE-2024-50290: media: cx24116: prevent overflows on SNR calculus bsc1233479. - CVE-2024-5306...

5.5CVSS8AI score0.00272EPSS
Exploits0References7
mscve
mscve
added 2024/11/12 8:0 a.m.5 views

tipc: guard against string buffer overrun

...

7.8CVSS7.2AI score
Exploits0
cnnvd
cnnvd
added 2024/11/10 12:0 a.m.4 views

WeeChat 安全漏洞

WeeChat is an extensible live chat client application from the WeeChat open source. A security vulnerability exists in WeeChat versions prior to 4.4.2, which stems from an integer overflow at core/core-string.c, which causes a buffer overflow when the list of items exceeds two billion...

9.8CVSS6.8AI score0.00464EPSS
Exploits0References2
susecve
susecve
added 2024/11/09 3:49 a.m.13 views

SUSE CVE-2024-50180

In the Linux kernel, the following vulnerability has been resolved: fbdev: sisfb: Fix strbuf array overflow The values of the variables xres and yres are placed in strbuf. These variables are obtained from strbuf1. The strbuf1 array contains digit characters and a space if the array contains...

5.5CVSS7.4AI score0.00255EPSS
Exploits0References18
redhatcve
redhatcve
added 2024/10/21 10:8 p.m.21 views

CVE-2024-49995

A string buffer over-run was found in the Linux kernel. Copying medianame and ifname to nameparts may overwrite the destination, resulting in a software crash. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security...

7.1CVSS8.3AI score
Exploits0References4
nvd
nvd
added 2024/10/21 6:15 p.m.16 views

CVE-2024-49995

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

Exploits0
osv
osv
added 2024/10/21 6:15 p.m.20 views

CVE-2024-49995

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

7.6AI score
Exploits0References1
cve
cve
added 2024/10/21 6:2 p.m.173 views

CVE-2024-49995

CVE-2024-49995 affects Linux kernels and is described as a string buffer overrun in the TIPC subsystem. Public advisories (e.g., Siemens/ICS, CISA, and Amazon Linux livepatch notes) identify the issue as resolved by updating to patched kernel versions or applying kernel livepatches (e.g., 4.14.35...

7.4AI score
Exploits0
vulnrichment
vulnrichment
added 2024/10/21 6:2 p.m.18 views

CVE-2024-49995

...

8.4AI score
Exploits0
Rows per page
Query Builder