Lucene search
K

151 matches found

OSV
OSV
added 2021/10/28 1:49 p.m.12 views

UVI-2021-1001805 ocfs2: mount fails with buffer overflow in strlen

ocfs2: mount fails with buffer overflow in strlen This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.214 by commit...

7.7AI score
Exploits0
OSV
OSV
added 2021/10/28 1:49 p.m.9 views

GSD-2021-1001791 ocfs2: mount fails with buffer overflow in strlen

ocfs2: mount fails with buffer overflow in strlen This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.253 by commit...

7.7AI score
Exploits0
OSV
OSV
added 2021/10/28 1:49 p.m.8 views

UVI-2021-1001791 ocfs2: mount fails with buffer overflow in strlen

ocfs2: mount fails with buffer overflow in strlen This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.253 by commit...

7.7AI score
Exploits0
OSV
OSV
added 2021/10/28 1:48 p.m.16 views

UVI-2021-1001781 ocfs2: mount fails with buffer overflow in strlen

ocfs2: mount fails with buffer overflow in strlen This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.288 by commit...

7.7AI score
Exploits0
OSV
OSV
added 2021/10/28 1:48 p.m.16 views

GSD-2021-1001781 ocfs2: mount fails with buffer overflow in strlen

ocfs2: mount fails with buffer overflow in strlen This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.288 by commit...

7.7AI score
Exploits0
OSV
OSV
added 2021/10/28 1:48 p.m.15 views

UVI-2021-1001770 ocfs2: mount fails with buffer overflow in strlen

ocfs2: mount fails with buffer overflow in strlen This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.290 by commit...

7.7AI score
Exploits0
OSV
OSV
added 2021/10/28 1:48 p.m.11 views

GSD-2021-1001770 ocfs2: mount fails with buffer overflow in strlen

ocfs2: mount fails with buffer overflow in strlen This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.290 by commit...

7.7AI score
Exploits0
OSV
OSV
added 2021/10/14 5:15 a.m.4 views

ALPINE-CVE-2021-42341

checkpath in OpenRC before 0.44.7 uses the direct output of strlen to allocate strings, which does not account for the '\0' byte at the end of the string. This results in memory corruption. CVE-2021-42341 was introduced in git commit 63db2d99e730547339d1bdd28e8437999c380cae, which was introduced ...

7.5CVSS6.9AI score0.02049EPSS
Exploits1References1
NVD
NVD
added 2021/10/14 5:15 a.m.22 views

CVE-2021-42341

checkpath in OpenRC before 0.44.7 uses the direct output of strlen to allocate strings, which does not account for the '\0' byte at the end of the string. This results in memory corruption. CVE-2021-42341 was introduced in git commit 63db2d99e730547339d1bdd28e8437999c380cae, which was introduced ...

7.5CVSS0.02049EPSS
Exploits1References6
Cvelist
Cvelist
added 2021/10/14 5:1 a.m.29 views

CVE-2021-42341

checkpath in OpenRC before 0.44.7 uses the direct output of strlen to allocate strings, which does not account for the '\0' byte at the end of the string. This results in memory corruption. CVE-2021-42341 was introduced in git commit 63db2d99e730547339d1bdd28e8437999c380cae, which was introduced ...

7.7AI score0.02049EPSS
Exploits1References6
CVE
CVE
added 2021/10/14 5:1 a.m.77 views

CVE-2021-42341

CVE-2021-42341 concerns OpenRC: in versions prior to 0.44.7, checkpath allocates strings based on strlen() output without reserving space for the terminating ‘\0’, causing memory corruption. The vulnerability was introduced in commit 63db2d99e730547339d1bdd28e8437999c380cae as part of OpenRC 0.44...

7.5CVSS7.4AI score0.02049EPSS
Exploits1References6Affected Software1
AlpineLinux
AlpineLinux
added 2021/10/14 5:1 a.m.25 views

CVE-2021-42341

checkpath in OpenRC before 0.44.7 uses the direct output of strlen to allocate strings, which does not account for the '\0' byte at the end of the string. This results in memory corruption. CVE-2021-42341 was introduced in git commit 63db2d99e730547339d1bdd28e8437999c380cae, which was introduced ...

7.5CVSS7.5AI score0.02049EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.8 views

The vulnerability of the strlen function in the fs/nfsd/trace.h component of the Linux operating system, which involves reading data beyond the allowed buffer limits, allows a hacker to cause a service failure.

The vulnerability of the strlen function in the fs/nfsd/trace.h component of the Linux operating system is related to reading data from buffer beyond its allowable limits. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

7.8CVSS6.8AI score0.0319EPSS
Exploits0References10Affected Software2
NVD
NVD
added 2021/08/08 8:15 p.m.20 views

CVE-2021-38202

fs/nfsd/trace.h in the Linux kernel before 5.13.4 might allow remote attackers to cause a denial of service out-of-bounds read in strlen by sending NFS traffic when the trace event framework is being used for nfsd...

7.5CVSS0.0319EPSS
Exploits0References4
OSV
OSV
added 2021/08/08 8:15 p.m.2 views

UBUNTU-CVE-2021-38202

fs/nfsd/trace.h in the Linux kernel before 5.13.4 might allow remote attackers to cause a denial of service out-of-bounds read in strlen by sending NFS traffic when the trace event framework is being used for nfsd...

7.5CVSS6.7AI score0.0319EPSS
Exploits0References5
Cvelist
Cvelist
added 2021/08/08 7:25 p.m.27 views

CVE-2021-38202

fs/nfsd/trace.h in the Linux kernel before 5.13.4 might allow remote attackers to cause a denial of service out-of-bounds read in strlen by sending NFS traffic when the trace event framework is being used for nfsd...

7.3AI score0.0319EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/08/08 12:0 a.m.10 views

Linux kernel 缓冲区错误漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. Linux kernel suffers from a denial of service vulnerability that is caused by an out-of-bounds read flaw in strlen in fs/nfsd/trace.h. A remote attacker can exploit this vulnerability to cause a denial o...

7.5CVSS6.7AI score0.0319EPSS
Exploits0References6
Hacker One
Hacker One
added 2021/03/10 11:6 p.m.145 views

GitHub Security Lab: ihsinme: CPP add query for CWE-788 Access of memory location after the end of a buffer using strlen.

This bug was reported directly to GitHub Security Lab...

1.5AI score
Exploits0
NVD
NVD
added 2019/12/31 9:15 p.m.21 views

CVE-2019-20199

An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxmldecode, while parsing a crafted XML file, performs incorrect memory handling, leading to NULL pointer dereference while running strlen on a NULL pointer...

6.5CVSS6.6AI score0.01169EPSS
Exploits1References1
Prion
Prion
added 2019/12/31 9:15 p.m.9 views

Null pointer dereference

An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxmldecode, while parsing a crafted XML file, performs incorrect memory handling, leading to NULL pointer dereference while running strlen on a NULL pointer...

4.3CVSS6.4AI score0.01169EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder