Lucene search
+L

262 matches found

Amazon
Amazon
added 2025/01/24 12:0 a.m.3 views

Medium: grpc

Issue Overview: There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission...

7.5CVSS6.9AI score0.00576EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/01/21 12:1 p.m.11 views

CVE-2024-57933 gve: guard XSK operations on the existence of queues

In the Linux kernel, the following vulnerability has been resolved: gve: guard XSK operations on the existence of queues This patch predicates the enabling and disabling of XSK pools on the existence of queues. As it stands, if the interface is down, disabling or enabling XSK pools would result i...

7.6AI score0.00202EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2024/12/30 1:23 p.m.2 views

Security update for grpc

This update for grpc fixes the following issues: CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919 CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 Patch Instructions: To install this SUSE update use the SUSE...

6.9CVSS6.8AI score0.00576EPSS
Exploits1References8
OSV
OSV
added 2024/12/30 1:23 p.m.15 views

SUSE-SU-2024:4436-1 Security update for grpc

This update for grpc fixes the following issues: - CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919 - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821...

7.5CVSS7.1AI score0.00576EPSS
Exploits1References5
SUSE Linux
SUSE Linux
added 2024/12/27 10:16 a.m.3 views

Security update for python-grpcio

This update for python-grpcio fixes the following issues: CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919 Patch Instructions: To install this SUSE update use t...

6.9CVSS6.8AI score0.00576EPSS
Exploits1References8
SUSE Linux
SUSE Linux
added 2024/12/20 3:28 p.m.1 views

Security update for grpc

This update for grpc fixes the following issues: CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919 CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 Patch Instructions: To install this SUSE update use the SUSE...

6.9CVSS6.8AI score0.00576EPSS
Exploits1References8
SUSE Linux
SUSE Linux
added 2024/12/20 3:27 p.m.1 views

Security update for grpc

This update for grpc fixes the following issues: CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919 CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 Patch Instructions: To install this SUSE update use the SUSE...

6.9CVSS6.8AI score0.00576EPSS
Exploits1References8
OSV
OSV
added 2024/12/20 1:7 p.m.5 views

OESA-2024-2573 grpc security update

gRPC is a modern open source high performance RPC framework that can run in any environment. It can efficiently connect services in and across data centers with pluggable support for load balancing, tracing, health checking and authentication. It is also applicable in last mile of distributed...

7.5CVSS6.8AI score0.00576EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/12/03 12:16 a.m.3 views

SUSE CVE-2024-53117

In the Linux kernel, the following vulnerability has been resolved: virtio/vsock: Improve MSGZEROCOPY error handling Add a missing kfreeskb to prevent memory leaks...

5.5CVSS7.6AI score0.00203EPSS
Exploits0References14
OSV
OSV
added 2024/12/02 2:15 p.m.1 views

DEBIAN-CVE-2024-53118

In the Linux kernel, the following vulnerability has been resolved: vsock: Fix skerrorqueue memory leak Kernel queues MSGZEROCOPY completion notifications on the error queue. Where they remain, until explicitly recved. To prevent memory leaks, clean up the queue when the socket is destroyed...

5.5CVSS5.8AI score0.00203EPSS
Exploits0References1
OSV
OSV
added 2024/12/02 2:15 p.m.3 views

UBUNTU-CVE-2024-53117

In the Linux kernel, the following vulnerability has been resolved: virtio/vsock: Improve MSGZEROCOPY error handling Add a missing kfreeskb to prevent memory leaks...

5.5CVSS6.6AI score0.00203EPSS
Exploits0References17
OSV
OSV
added 2024/12/02 2:15 p.m.4 views

UBUNTU-CVE-2024-53118

In the Linux kernel, the following vulnerability has been resolved: vsock: Fix skerrorqueue memory leak Kernel queues MSGZEROCOPY completion notifications on the error queue. Where they remain, until explicitly recved. To prevent memory leaks, clean up the queue when the socket is destroyed...

5.5CVSS6.6AI score0.00203EPSS
Exploits0References17
CNNVD
CNNVD
added 2024/12/02 12:0 a.m.8 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper handling of the MSGZEROCOPY error in the virtio/vsock component and the lack of the kfreeskb call,...

5.5CVSS6.8AI score0.00203EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/12/02 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a memory leak in the skerrorqueue issue in the vsock component, where MSGZEROCOPY completion notifications are...

5.5CVSS6.8AI score0.00203EPSS
Exploits0References3
OSV
OSV
added 2024/11/26 5:15 p.m.6 views

AZL-53456 CVE-2024-11407 affecting package grpc for versions less than 1.62.0-4

There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission over the network...

7.5CVSS6.7AI score0.00576EPSS
Exploits0References1
OSV
OSV
added 2024/11/26 5:15 p.m.1 views

DEBIAN-CVE-2024-11407

There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission over the network...

7.5CVSS5.7AI score0.00576EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2024/11/26 5:15 p.m.1 views

CVE-2024-11407

There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission over the network...

7.5CVSS7.3AI score0.00576EPSS
Exploits0References1
OSV
OSV
added 2024/11/26 5:15 p.m.9 views

UBUNTU-CVE-2024-11407

There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission over the network...

7.5CVSS7.1AI score0.00576EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/11/26 4:59 p.m.21 views

CVE-2024-11407 Denial of Service through Data corruption in gRPC-C++

There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission over the network...

6.9CVSS7.2AI score0.00576EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/11/26 4:59 p.m.10 views

CVE-2024-11407

There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission over the network...

7.5CVSS5.7AI score0.00576EPSS
Exploits0
Rows per page
Query Builder