Lucene search
K

25 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in glibc

A use-after-free vulnerability introduced in the glibc upstream version 2.14 was identified in the way the tilde expansion was performed. Directory paths that contained a tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a special...

7CVSS7.1AI score0.00535EPSS
Exploits0References2
Rosalinux
Rosalinux
added 2026/06/01 11:7 a.m.11 views

Advisory ROSA-SA-2026-3301

Component: libconfuse 3.3 Operating System: ROSA-CHROME Unaffected versions: = libconfuse-3.3-3 Affected versions: libconfuse-3.3-3 CVE-ID: CVE-2022-40320 BDU-ID: 2022-05795 CVE-Crit: LOW CVE-DESC.: The vulnerability in the cfgtildeexpand function of the configuration file parser library libConfu...

8.8CVSS5.9AI score0.01079EPSS
Exploits1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-12583

Malware in sbrugna...

7CVSS7.2AI score0.00535EPSS
Exploits0References15
OSV
OSV
added 2023/05/29 5:14 p.m.4 views

CLSA-2023-1685380447 Fix CVE(s): CVE-2023-2610

SECURITY UPDATE: Crash when expanding "" in substitute causes very long text - debian/patches/CVE-2023-2610.patch: Limit the text length to MAXCOL - CVE-2023-2610...

7.8CVSS6.7AI score0.00485EPSS
Exploits1References1
F5 Networks
F5 Networks
added 2023/02/21 6:59 p.m.45 views

K49921213: glibc vulnerability CVE-2020-1752

Security Advisory Description A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit thi...

7CVSS7.5AI score0.00535EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:14 a.m.7 views

SUSE CVE-2006-4262

Multiple buffer overflows in cscope 15.5 and earlier allow user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via multiple vectors including 1 a long pathname that is not properly handled during file list parsing, 2 long pathnames that result from path...

5.1CVSS8AI score0.03653EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:4 a.m.4 views

SUSE CVE-2020-1752

A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially...

7CVSS9.7AI score0.00535EPSS
Exploits0References54
ATTACKERKB
ATTACKERKB
added 2022/09/09 9:15 p.m.2 views

CVE-2022-40320

cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...

8.8CVSS7.5AI score0.01079EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2022/04/07 12:0 a.m.40 views

SUSE SLES12 Security Update : glibc (SUSE-SU-2022:1123-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:1123-1 advisory. - A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directo...

7CVSS7.4AI score0.00535EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/11/04 1:6 a.m.3 views

glibc: use-after-free in glob() function when expanding ~user

A use-after-free vulnerability was found in glibc in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially crafted path that, when processe...

7CVSS7AI score0.00535EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2020/08/18 7:0 a.m.5 views

A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially crafted path that when processed by the glob function would potentially lead to arbitrary code execution. This was fixed in version 2.32.

...

7CVSS7AI score0.00535EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/07/07 12:0 a.m.50 views

Ubuntu 16.04 LTS / 18.04 LTS : GNU C Library vulnerabilities (USN-4416-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4416-1 advisory. Florian Weimer discovered that the GNU C Library incorrectly handled certain memory operations. A remote attacker could use this issue to cau...

9.8CVSS7.7AI score0.074EPSS
Exploits6References12
Tenable Nessus
Tenable Nessus
added 2020/07/01 12:0 a.m.48 views

EulerOS Virtualization 3.0.6.0 : glibc (EulerOS-SA-2020-1712)

According to the versions of the glibc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The GNU C Library aka glibc or libc6 before 2.32 could overflow an on-stack buffer during range reduction if an input to an 80-bit...

7CVSS7.3AI score0.00758EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2020/06/02 12:0 a.m.42 views

EulerOS 2.0 SP5 : glibc (EulerOS-SA-2020-1599)

According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directory path...

7CVSS7.3AI score0.00758EPSS
Exploits1References3
OSV
OSV
added 2020/04/30 5:15 p.m.2 views

DEBIAN-CVE-2020-1752

A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially...

7CVSS7.2AI score0.00535EPSS
Exploits0References1
OSV
OSV
added 2020/04/30 5:15 p.m.8 views

CVE-2020-1752

A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially...

7CVSS7.2AI score0.00535EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2020/04/30 5:15 p.m.48 views

CVE-2020-1752

A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially...

7CVSS7AI score0.00535EPSS
Exploits0References2
OSV
OSV
added 2020/04/30 5:15 p.m.3 views

UBUNTU-CVE-2020-1752

A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially...

7CVSS7.1AI score0.00535EPSS
Exploits0References3
Cvelist
Cvelist
added 2020/04/30 12:0 a.m.38 views

CVE-2020-1752

A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially...

7CVSS7.2AI score0.00535EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2018/06/19 4:59 a.m.4 views

glibc: Buffer overflow in glob with GLOB_TILDE

The GNU C Library aka glibc or libc6 before 2.27 contains an off-by-one error leading to a heap-based buffer overflow in the glob function in glob.c, related to the processing of home directories using the operator followed by a long string...

9.8CVSS7.6AI score0.03002EPSS
Exploits0References4
Rows per page
Query Builder