CVE-2021-31535
- EPSS 10.63%
- Veröffentlicht 27.05.2021 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:05:51
LookupCol.c in X.Org X through X11R7.7 and libX11 before 1.7.1 might allow remote attackers to execute arbitrary code. The libX11 XLookupColor request (intended for server-side color lookup) contains a flaw allowing a client to send color-name reques...
CVE-2021-31806
- EPSS 95.79%
- Veröffentlicht 27.05.2021 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:06:15
An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to a memory-management bug, it is vulnerable to a Denial of Service attack (against all clients using the proxy) via HTTP Range request processing.
CVE-2021-33200
- EPSS 0.38%
- Veröffentlicht 27.05.2021 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:08:30
kernel/bpf/verifier.c in the Linux kernel through 5.12.7 enforces incorrect limits for pointer arithmetic operations, aka CID-bb01a1bba579. This can be abused to perform out-of-bounds reads and writes in kernel memory, leading to local privilege esca...
CVE-2021-28651
- EPSS 7.45%
- Veröffentlicht 27.05.2021 12:15:08
- Zuletzt bearbeitet 21.11.2024 06:00:01
An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to a buffer-management bug, it allows a denial of service. When resolving a request with the urn: scheme, the parser leaks a small amount of memory. However, there is an unspecifi...
CVE-2021-28652
- EPSS 4.34%
- Veröffentlicht 27.05.2021 12:15:08
- Zuletzt bearbeitet 21.11.2024 06:00:01
An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to incorrect parser validation, it allows a Denial of Service attack against the Cache Manager API. This allows a trusted client to trigger memory leaks that. over time, lead to a...
CVE-2021-28662
- EPSS 71.87%
- Veröffentlicht 27.05.2021 12:15:08
- Zuletzt bearbeitet 21.11.2024 06:00:03
An issue was discovered in Squid 4.x before 4.15 and 5.x before 5.0.6. If a remote server sends a certain response header over HTTP or HTTPS, there is a denial of service. This header can plausibly occur in benign network traffic.
CVE-2021-30499
- EPSS 1.25%
- Veröffentlicht 27.05.2021 00:15:08
- Zuletzt bearbeitet 03.11.2025 20:15:47
A flaw was found in libcaca. A buffer overflow of export.c in function export_troff might lead to memory corruption and other potential consequences.
CVE-2021-30500
- EPSS 1.23%
- Veröffentlicht 27.05.2021 00:15:08
- Zuletzt bearbeitet 11.04.2025 12:27:55
Null pointer dereference was found in upx PackLinuxElf::canUnpack() in p_lx_elf.cpp,in version UPX 4.0.0. That allow attackers to execute arbitrary code and cause a denial of service via a crafted file.
CVE-2021-30501
- EPSS 1.04%
- Veröffentlicht 27.05.2021 00:15:08
- Zuletzt bearbeitet 11.04.2025 12:27:55
An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a denial of service (abort) via a crafted file.
CVE-2021-30469
- EPSS 0.7%
- Veröffentlicht 26.05.2021 22:15:08
- Zuletzt bearbeitet 21.11.2024 06:03:58
A flaw was found in PoDoFo 0.9.7. An use-after-free in PoDoFo::PdfVecObjects::Clear() function can cause a denial of service via a crafted PDF file.