Lucene search
K

175 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/03 12:0 a.m.26 views

Amazon Linux 2023 : libdwarf, libdwarf-devel, libdwarf-static (ALAS2023-2024-579)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-579 advisory. 2024-10-24: CVE-2024-31745 was added to this advisory. In a multiply-corrupted DWARF object libdwarf may try to deallocfree an allocation twice.Results are unpredictable and various. This has...

7.5CVSS6.5AI score0.01089EPSS
Exploits0References4
NVD
NVD
added 2024/03/18 1:15 p.m.13 views

CVE-2024-2002

A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf may try to deallocfree an allocation twice, potentially causing unpredictable and various results...

7.5CVSS7.3AI score0.01089EPSS
Exploits0References4
OSV
OSV
added 2024/03/18 1:15 p.m.2 views

DEBIAN-CVE-2024-2002

A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf may try to deallocfree an allocation twice, potentially causing unpredictable and various results...

7.5CVSS7.2AI score0.01089EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/03/18 1:15 p.m.21 views

CVE-2024-2002

A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf may try to deallocfree an allocation twice, potentially causing unpredictable and various results...

7.5CVSS7AI score0.01089EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/03/18 12:26 p.m.17 views

CVE-2024-2002 Libdwarf: crashes randomly on fuzzed object

A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf may try to deallocfree an allocation twice, potentially causing unpredictable and various results...

7.5CVSS7.1AI score0.01089EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/03/18 12:26 p.m.27 views

CVE-2024-2002

A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf may try to deallocfree an allocation twice, potentially causing unpredictable and various results...

7.5CVSS7.4AI score0.01089EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/03/18 12:0 a.m.3 views

PT-2024-18505 · Libdwarf +2 · Libdwarf +2

Name of the Vulnerable Software and Affected Versions: libdwarf affected versions not specified Description: A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf may try to deallocfree an allocation twice, potentially causing unpredictable and various...

7.5CVSS7.6AI score0.01089EPSS
Exploits0References22
SUSE CVE
SUSE CVE
added 2024/03/07 4:25 a.m.4 views

SUSE CVE-2024-2002

A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf may try to deallocfree an allocation twice, potentially causing unpredictable and various results...

7.5CVSS6.8AI score0.01089EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:9 a.m.32 views

BIT-WORDPRESS-2023-22622

WordPress through 6.1.1 depends on unpredictable client visits to cause wp-cron.php execution and the resulting security updates, and the source code describes "the scenario where a site may not receive enough visits to execute scheduled tasks in a timely manner," but neither the installation gui...

5.3CVSS5.4AI score0.01659EPSS
Exploits1References8
HackRead
HackRead
added 2024/02/23 5:16 p.m.12 views

The Future of MATIC and What to Expect in 2024

By Uzair Amir The world of cryptocurrency is unpredictable yet lucrative. Understanding the workings and creation of crypto is a topic… This is a post from HackRead.com Read the original post: The Future of MATIC and What to Expect in 2024...

7.2AI score
Exploits0
OSV
OSV
added 2024/02/07 5:27 p.m.16 views

GHSA-52XQ-J7V9-V4V2 Vyper negative array index bounds checks

Summary Arrays can be keyed by a signed integer, while they are defined for unsigned integers only. The typechecker doesn't throw when spotting the usage of an int as an index for an array. Typically, negative integers are filtered out at runtime by the bounds checker, but small enough i.e. large...

9.8CVSS9.4AI score0.01539EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2024/02/07 5:27 p.m.38 views

Vyper negative array index bounds checks

Summary Arrays can be keyed by a signed integer, while they are defined for unsigned integers only. The typechecker doesn't throw when spotting the usage of an int as an index for an array. Typically, negative integers are filtered out at runtime by the bounds checker, but small enough i.e. large...

9.8CVSS9.4AI score0.01539EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2024/02/07 5:15 p.m.19 views

Design/Logic Flaw

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. Arrays can be keyed by a signed integer, while they are defined for unsigned integers only. The typechecker doesn't throw when spotting the usage of an int as an index for an array. The typechecker allows the usage of...

7.5CVSS7.2AI score0.01539EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2024/02/07 5:15 p.m.33 views

PYSEC-2024-150

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. Arrays can be keyed by a signed integer, while they are defined for unsigned integers only. The typechecker doesn't throw when spotting the usage of an int as an index for an array. The typechecker allows the usage of...

9.8CVSS9.2AI score0.01539EPSS
Exploits1References3
PyPA
PyPA
added 2024/02/07 5:15 p.m.10 views

PYSEC-2024-150

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. Arrays can be keyed by a signed integer, while they are defined for unsigned integers only. The typechecker doesn't throw when spotting the usage of an int as an index for an array. The typechecker allows the usage of...

9.8CVSS6.8AI score0.01539EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/07 5:10 p.m.1 views

CVE-2024-24563 Vyper array negative index vulnerability

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. Arrays can be keyed by a signed integer, while they are defined for unsigned integers only. The typechecker doesn't throw when spotting the usage of an int as an index for an array. The typechecker allows the usage of...

9.8CVSS6.9AI score0.01539EPSS
Exploits1References3
CVE
CVE
added 2024/02/07 5:10 p.m.58 views

CVE-2024-24563

CVE-2024-24563 affects Vyper, where arrays can be indexed by signed integers even though defined for unsigned indices. The typechecker permits signed integers as array indexes, and with very large arrays, bounds checks can pass for negative values, leading to potential unpredictable behavior, acc...

9.8CVSS9.1AI score0.01539EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/02/07 5:10 p.m.52 views

CVE-2024-24563 Vyper array negative index vulnerability

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. Arrays can be keyed by a signed integer, while they are defined for unsigned integers only. The typechecker doesn't throw when spotting the usage of an int as an index for an array. The typechecker allows the usage of...

9.8CVSS9.4AI score0.01539EPSS
Exploits1References3
OSV
OSV
added 2024/02/07 5:10 p.m.23 views

CVE-2024-24563 Vyper array negative index vulnerability

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. Arrays can be keyed by a signed integer, while they are defined for unsigned integers only. The typechecker doesn't throw when spotting the usage of an int as an index for an array. The typechecker allows the usage of...

9.8CVSS9AI score0.01539EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/02/07 12:0 a.m.6 views

PT-2024-20454 · Vyper · Vyper

Name of the Vulnerable Software and Affected Versions: Vyper versions prior to the fixed version Description: The issue arises from the typechecker allowing the usage of signed integers as indexes to arrays, which are defined for unsigned integers only. This can lead to unpredictable behavior,...

9.8CVSS9.2AI score0.01539EPSS
Exploits1References11
Rows per page
Query Builder