CVE-2020-8284
- EPSS 0.1%
- Published 14.12.2020 20:15:13
- Last modified 21.11.2024 05:38:39
A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed,...
- EPSS 0.1%
- Published 28.11.2020 07:15:11
- Last modified 21.11.2024 05:23:55
An issue was discovered in __split_huge_pmd in mm/huge_memory.c in the Linux kernel before 5.7.5. The copy-on-write implementation can grant unintended write access because of a race condition in a THP mapcount check, aka CID-c444eb564fb1.
CVE-2020-12771
- EPSS 0.06%
- Published 09.05.2020 21:15:11
- Last modified 21.11.2024 05:00:15
An issue was discovered in the Linux kernel through 5.6.11. btree_gc_coalesce in drivers/md/bcache/btree.c has a deadlock if a coalescing operation fails.
CVE-2019-0201
- EPSS 0.29%
- Published 23.05.2019 14:29:07
- Last modified 21.11.2024 04:16:28
An issue is present in Apache ZooKeeper 1.0.0 to 3.4.13 and 3.5.0-alpha to 3.5.4-beta. ZooKeeper’s getACL() command doesn’t check any permission when retrieves the ACLs of the requested node and returns all information contained in the ACL Id field a...