Lucene search
K

68 matches found

OSV
OSV
added 2022/08/27 12:0 a.m.21 views

CVE-2022-38791

In MariaDB before 10.9.2, compresswrite in extra/mariabackup/dscompress.cc does not release datamutex upon a stream write failure, which allows local users to trigger a deadlock...

5.5CVSS5.3AI score0.00236EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2022/05/10 1:58 p.m.3 views

kernel: RDMA/rxe: Return CQE error if invalid lkey was supplied

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Return CQE error if invalid lkey was supplied RXE is missing update of WQE status in LOCALWRITE failures. This caused the following kernel panic if someone sent an atomic operation with an explicitly wrong lkey. leonro@...

5.5CVSS6.3AI score0.00228EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/09/23 4:26 p.m.3 views

undertow: HTTP2SourceChannel fails to write final frame under some circumstances may lead to DoS

A flaw was found in undertow. The HTTP2SourceChannel fails to write the final frame under some circumstances, resulting in a denial of service. The highest threat from this vulnerability is availability...

5.9CVSS7.3AI score0.01061EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/09/08 1:36 p.m.3 views

undertow: HTTP2SourceChannel fails to write final frame under some circumstances may lead to DoS

A flaw was found in undertow. The HTTP2SourceChannel fails to write the final frame under some circumstances, resulting in a denial of service. The highest threat from this vulnerability is availability...

5.9CVSS7.3AI score0.01061EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/09/08 1:5 p.m.5 views

undertow: HTTP2SourceChannel fails to write final frame under some circumstances may lead to DoS

A flaw was found in undertow. The HTTP2SourceChannel fails to write the final frame under some circumstances, resulting in a denial of service. The highest threat from this vulnerability is availability...

5.9CVSS7.3AI score0.01061EPSS
Exploits0References4
Prion
Prion
added 2021/07/20 7:15 a.m.22 views

Heap overflow

QPDF 9.x through 9.1.1 and 10.x through 10.0.4 has a heap-based buffer overflow in PlASCII85Decoder::write called from PlAESPDF::flush and PlAESPDF::finish when a certain downstream write fails...

4.3CVSS5.5AI score0.01272EPSS
Exploits0References6Affected Software1
CNNVD
CNNVD
added 2021/07/20 12:0 a.m.4 views

QPDF 缓冲区错误漏洞

QPDF is a software application. A C++ library and a set of programs that examine and manipulate the structure of PDF files. A security vulnerability exists in QPDF that stems from the presence of a heap-based buffer overflow in QPDF when some downstream write operation fails...

5.5CVSS5.2AI score0.01272EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2020/09/29 7:0 p.m.5 views

kernel: sg_write function lacks an sg_remove_request call in a certain failure case

A vulnerability was found in sgwrite in drivers/scsi/sg.c in the SCSI generic sg driver subsystem. This flaw allows an attacker with local access and special user or root privileges to cause a denial of service if the allocated list is not cleaned with an invalid Sgfd sfp pointer at the time of...

6.7CVSS6.6AI score0.00586EPSS
Exploits0References4
Rows per page
Query Builder