Astra Linux – Vulnerability in Netty

In Netty 4.1.x before 4.1.46, the ZlibDecoders allowed unbounded memory allocation when decoding Zlib-encoded byte streams. An attacker could send a large Zlib-encoded byte stream to the Netty server, forcing the server to allocate all of its available memory to a single decoder...

GStreamer 输入验证错误漏洞

GStreamer is a set of frameworks for processing streaming media. An input validation error vulnerability exists in GStreamer version 1.16.2, which is caused by an integer overflow when zlib decodes gstmatroskadecompressdata encoded data, and can be exploited by an attacker to cause a system crash...

DEBIAN-CVE-2020-11612

The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. An attacker could send a large ZlibEncoded byte stream to the Netty server, forcing the server to allocate all of its free memory to a single decoder...

SUSE-SA:2005:050: kernel

The remote host is missing the patch for the advisory SUSE-SA:2005:050 kernel. The Linux kernel was updated to fix the following security issues: - CVE-2005-2457: A problem in decompression of files on 'zisofs' filesystem was fixed. - CVE-2005-2458: A potential buffer overflow in the zlib...