Azure Linux 3.0 Security Update: kernel (CVE-2025-22079)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22079 advisory. - In the Linux kernel, the following vulnerability has been resolved: ocfs2: validate ltreedepth to avoid...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992825)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992825 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: validate ltreedepth to avoid out-of-bounds access The ltreedepth field is 16-bit le16, but...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992626)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992626 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: validate ltreedepth to avoid out-of-bounds access The ltreedepth field is 16-bit le16, but...

OESA-2025-2852 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: ocfs2: validate ltreedepth to avoid out-of-bounds access The ltreedepth field is 16-bit le16, but the actual maximum depth is limited to OCFS2MAXPATHDEPTH. Add a...

EUVD-2016-5013

Malware in sbrugna...

ocfs2: validate l_tree_depth to avoid out-of-bounds access

...

CVE-2024-44073

The Miniscript aka rust-miniscript library before 12.2.0 for Rust allows stack consumption because it does not properly track tree depth...

UBUNTU-CVE-2025-22079

In the Linux kernel, the following vulnerability has been resolved: ocfs2: validate ltreedepth to avoid out-of-bounds access The ltreedepth field is 16-bit le16, but the actual maximum depth is limited to OCFS2MAXPATHDEPTH. Add a check to prevent out-of-bounds access if ltreedepth has an invalid...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unverified ltreedepth field in ocfs2, which could lead to out-of-bounds access...

Miniscript allows stack consumption

The Miniscript aka rust-miniscript library for Rust allows stack consumption because it does not properly track tree depth...

GHSA-RV9V-R4VM-GJ8X Miniscript allows stack consumption

The Miniscript aka rust-miniscript library for Rust allows stack consumption because it does not properly track tree depth...

CVE-2024-44073

The Miniscript aka rust-miniscript library before 12.2.0 for Rust allows stack consumption because it does not properly track tree depth...

CVE-2024-44073

The Miniscript aka rust-miniscript library before 12.2.0 for Rust allows stack consumption because it does not properly track tree depth...

CVE-2024-44073

The Miniscript aka rust-miniscript library before 12.2.0 for Rust allows stack consumption because it does not properly track tree depth...

CVE-2024-44073

The Miniscript aka rust-miniscript library before 12.2.0 for Rust allows stack consumption because it does not properly track tree depth...

Miniscript 安全漏洞

Miniscript is a Rust Bitcoin open source library for working with Miniscript. A security vulnerability exists in versions of Miniscript prior to 12.2.0 that stems from a failure to properly track the depth of a tree, thereby consuming the stack...

SUSE CVE-2016-4006

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...

Verifying criteria is prone to known merkle proof attacks

Lines of code Vulnerability details The Merkle hash root does not indicate the tree depth, enabling a second-preimage attack in which an attacker creates a document other than the original that has the same Merkle hash root. For the example above, an attacker can create a new document containing...

Wireshark Multiple DoS Vulnerabilities -02 (May 2016) - Mac OS X

Wireshark is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

DEBIAN-CVE-2016-4006

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...