Hackney 安全漏洞

Hackney is a program library from Hackney, Inc. A security vulnerability exists in Hackney versions prior to 2.0.0 to 4.0.1 that stems from the URL parser converting unrecognized URL schemes into permanent BEAM atoms, which could lead to atom table exhaustion and BEAM VM crashes...

EUVD-2024-53771

Malicious code in bioql PyPI...

CVE-2024-57843 virtio-net: fix overflow inside virtnet_rq_alloc

In the Linux kernel, the following vulnerability has been resolved: virtio-net: fix overflow inside virtnetrqalloc When the frag just got a page, then may lead to regression on VM. Specially if the sysctl net.core.highorderallocdisable value is 1, then the frag always get a page when do refill...

CWA-2023-004: Excessive number of function parameters in compiled Wasm

A specifically crafted Wasm file can cause the VM to consume excessive amounts of memory when compiling a contract. This can lead to high memory usage, slowdowns, potentially a crash and can poison a lock in the VM, preventing any further interaction with contracts. For more information, see...

Product update: Virtuozzo 7.0 Update 11 (7.0.11-293)

The Update 11 for Virtuozzo 7.0 provides new features as well as stability and usability bug fixes. It also introduces a new kernel 3.10.0-957.12.2.vz7.96.21. Vulnerability id: PSBM-82223 Under certain circumstances, a VM with IDE disks could crash or corrupt guest data during migration or snapsh...