20 results (0.031 seconds)

CVSS: 6.5EPSS: 0%CPEs: 7EXPL: 0

CVE-2016-3044 – kernel: Infinite loop vulnerability in KVM

https://notcve.org/view.php?id=CVE-2016-3044

01 Dec 2016 — The Linux kernel component in IBM PowerKVM 2.1 before 2.1.1.3-65.10 and 3.1 before 3.1.0.2 allows guest OS users to cause a denial of service (host OS infinite loop and hang) via unspecified vectors. El componente del kernel de Linux en IBM PowerKVM 2.1 en versiones anteriores a 2.1.1.3-65.10 y 3.1 en versiones anteriores a 3.1.0.2 permiten a usuarios invitados de SO provocar una denegación de servicio (bucle infinito y cuelgue del sistema anfitrión) a través de vectores no especificados. • http://rhn.redhat.com/errata/RHSA-2016-1033.html • CWE-20: Improper Input Validation CWE-284: Improper Access Control CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •

CVSS: 4.9EPSS: 0%CPEs: 19EXPL: 0

CVE-2016-5011 – util-linux: Extended partition loop in MBR partition table leads to DOS

https://notcve.org/view.php?id=CVE-2016-5011

04 Nov 2016 — The parse_dos_extended function in partitions/dos.c in the libblkid library in util-linux allows physically proximate attackers to cause a denial of service (memory consumption) via a crafted MSDOS partition table with an extended partition boot record at zero offset. La función parse_dos_extended en partitions/dos.c en la biblioteca libblkid en util-linux permite a atacantes físicamente próximos provocar una denegación de servicio (consumo de memoria) a través de una tabla de particiones MSDOS manipulada c... • http://rhn.redhat.com/errata/RHSA-2016-2605.html •

CVSS: 4.3EPSS: 4%CPEs: 26EXPL: 0

CVE-2016-5444 – mysql: unspecified vulnerability in subcomponent: Server: Connection (CPU July 2016)

https://notcve.org/view.php?id=CVE-2016-5444

21 Jul 2016 — Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Connection. Vulnerabilidad no especificada en Oracle MySQL 5.5.48 y versiones anteriores, 5.6.29 y versiones anteriores y 5.7.11 y versiones anteriores y MariaDB en versiones anteriores a 5.5.49, 10.0.x en versiones anteriores a 10.0.25 y 10.1.x en v... • http://rhn.redhat.com/errata/RHSA-2016-0705.html •

CVSS: 4.3EPSS: 3%CPEs: 11EXPL: 0

CVE-2016-3452 – mysql: unspecified vulnerability in subcomponent: Server: Security: Encryption (CPU July 2016)

https://notcve.org/view.php?id=CVE-2016-3452

21 Jul 2016 — Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Security: Encryption. Vulnerabilidad no especificada en Oracle MySQL 5.5.48 y versiones anteriores, 5.6.29 y versiones anteriores y 5.7.10 y versiones anteriores y MariaDB en versiones anteriores a 5.5.49, 10.0.x en versiones anteriores a 10.0.25 y 1... • http://rhn.redhat.com/errata/RHSA-2016-0705.html •

CVSS: 4.9EPSS: 0%CPEs: 27EXPL: 0

CVE-2016-5440 – mysql: unspecified vulnerability in subcomponent: Server: RBR (CPU July 2016)

https://notcve.org/view.php?id=CVE-2016-5440

21 Jul 2016 — Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote administrators to affect availability via vectors related to Server: RBR. Vulnerabilidad no especificada en Oracle MySQL 5.5.49 y versiones anteriores, 5.6.30 y versiones anteriores y 5.7.12 y versiones anteriores y MariaDB en versiones anteriores a 5.5.50, 10.0.x en versiones anteriores a 10.0.26 y 10.1.x en versio... • http://lists.opensuse.org/opensuse-updates/2016-09/msg00042.html •

CVSS: 6.8EPSS: 0%CPEs: 14EXPL: 0

CVE-2016-3521 – mysql: unspecified vulnerability in subcomponent: Server: Types (CPU July 2016)

https://notcve.org/view.php?id=CVE-2016-3521

21 Jul 2016 — Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: Types. Vulnerabilidad no especificada en Oracle MySQL 5.5.49 y versiones anteriores, 5.6.30 y versiones anteriores y 5.7.12 y versiones anteriores y MariaDB en versiones anteriores a 5.5.50, 10.0.x en versiones anteriores a 10.0.26 y 10.1.x en... • http://lists.opensuse.org/opensuse-updates/2016-09/msg00042.html •

CVSS: 5.3EPSS: 1%CPEs: 14EXPL: 0

CVE-2016-3615 – mysql: unspecified vulnerability in subcomponent: Server: DML (CPU July 2016)

https://notcve.org/view.php?id=CVE-2016-3615

21 Jul 2016 — Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: DML. Vulnerabilidad no especificada en Oracle MySQL 5.5.49 y versiones anteriores, 5.6.30 y versiones anteriores y 5.7.12 y versiones anteriores y MariaDB en versiones anteriores a 5.5.50, 10.0.x en versiones anteriores a 10.0.26 y 10.1.x en v... • http://lists.opensuse.org/opensuse-updates/2016-09/msg00042.html •

CVSS: 8.1EPSS: 0%CPEs: 14EXPL: 0

CVE-2016-3477 – mysql: unspecified vulnerability in subcomponent: Server: Parser (CPU July 2016)

https://notcve.org/view.php?id=CVE-2016-3477

21 Jul 2016 — Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Parser. Vulnerabilidad no especificada en Oracle MySQL 5.5.49 y versiones anteriores, 5.6.30 y versiones anteriores y 5.7.12 y versiones anteriores y MariaDB en versiones anteriores a 5.5.50, 10.0.x en versiones anteriores a 1... • http://lists.opensuse.org/opensuse-updates/2016-09/msg00042.html •

CVSS: 7.5EPSS: 1%CPEs: 10EXPL: 1

CVE-2015-3217 – pcre: stack overflow caused by mishandled group empty match (8.38/11)

https://notcve.org/view.php?id=CVE-2015-3217

12 May 2016 — PCRE 7.8 and 8.32 through 8.37, and PCRE2 10.10 mishandle group empty matches, which might allow remote attackers to cause a denial of service (stack-based buffer overflow) via a crafted regular expression, as demonstrated by /^(?:(?(1)\\.|([^\\\\W_])?)+)+$/. • http://rhn.redhat.com/errata/RHSA-2016-1025.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-674: Uncontrolled Recursion •

CVSS: 6.1EPSS: 0%CPEs: 13EXPL: 0

CVE-2016-0640 – mysql: unspecified vulnerability in subcomponent: Server: DML (CPU April 2016)

https://notcve.org/view.php?id=CVE-2016-0640

21 Apr 2016 — Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect integrity and availability via vectors related to DML. Vulnerabilidad no especificada en Oracle MySQL 5.5.47 y versiones anteriores, 5.6.28 y versiones anteriores y 5.7.10 y versiones anteriores y MariaDB en versiones anteriores a 5.5.48, 10.0.x en versiones anteriores a 10.0.24 y 10.1.x en versiones ... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00035.html •