1891
|
5.9 |
MEDIUM
Network
|
gnu redhat fedoraproject
|
gnutls linux fedora
|
A vulnerability was found that the response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding.
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2023-5981
|
2024-09-16 22:15 |
2023-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1892
|
5.5 |
MEDIUM
Local
|
libtiff fedoraproject redhat
|
libtiff fedora enterprise_linux
|
A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, …
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2023-3576
|
2024-09-16 22:15 |
2023-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1893
|
4.7 |
MEDIUM
Local
|
linux redhat debian fedoraproject
|
linux_kernel enterprise_linux debian_linux fedora
|
A flaw was found in the Netfilter subsystem of the Linux kernel. A race condition between IPSET_CMD_ADD and IPSET_CMD_SWAP can lead to a kernel panic due to the invocation of `__ip_set_put` on a wron…
|
CWE-362
Race Condition
|
CVE-2023-42756
|
2024-09-16 22:15 |
2023-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1894
|
7.8 |
HIGH
Local
|
linux fedoraproject redhat debian
|
linux_kernel fedora enterprise_linux enterprise_linux_for_real_time_for_nfv enterprise_linux_for_real_time enterprise_linux_server_aus enterprise_linux_eus debian_linux
|
A use-after-free flaw was found in the Linux kernel’s Netfilter functionality when adding a rule with NFTA_RULE_CHAIN_ID. This flaw allows a local user to crash or escalate their privileges on the sy…
|
CWE-416
Use After Free
|
CVE-2023-4147
|
2024-09-16 22:15 |
2023-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1895
|
5.5 |
MEDIUM
Local
|
artifex redhat fedoraproject debian
|
ghostscript enterprise_linux fedora debian_linux
|
A buffer overflow flaw was found in base/gdevdevn.c:1973 in devn_pcx_write_rle() in ghostscript. This issue may allow a local attacker to cause a denial of service via outputting a crafted PDF file f…
|
CWE-120
Classic Buffer Overflow
|
CVE-2023-38559
|
2024-09-16 22:15 |
2023-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1896
|
6.5 |
MEDIUM
Adjacent
|
keylime redhat fedoraproject
|
keylime enterprise_linux enterprise_linux_server_aus enterprise_linux_eus enterprise_linux_for_power_little_endian_eus enterprise_linux_for_power_little_endian enterprise_linux_for_…
|
A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration. This issue may allow an attacker to impersonate an agent and hide the…
|
NVD-CWE-noinfo
|
CVE-2023-38201
|
2024-09-16 22:15 |
2023-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1897
|
7.5 |
HIGH
Network
keylime redhat fedoraproject
|
keylime enterprise_linux enterprise_linux_server_aus enterprise_linux_eus enterprise_linux_for_power_little_endian enterprise_linux_for_ibm_z_systems_eus enterprise_linux_for_power_…
|
A flaw was found in Keylime. Due to their blocking nature, the Keylime registrar is subject to a remote denial of service against its SSL connections. This flaw allows an attacker to exhaust all avai…
|
CWE-834
Excessive Iteration
|
CVE-2023-38200
|
2024-09-16 22:15 |
2023-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1898
|
5.9 |
MEDIUM
Network
|
samba redhat fedoraproject
|
samba enterprise_linux storage fedora
|
A vulnerability was found in Samba's SMB2 packet signing mechanism. The SMB2 packet signing is not enforced if an admin configured "server signing = required" or for SMB2 connections to Domain Contro…
|
NVD-CWE-noinfo
|
CVE-2023-3347
|
2024-09-16 22:15 |
2023-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1899
|
5.3 |
MEDIUM
Network
samba fedoraproject redhat debian
|
samba fedora enterprise_linux storage debian_linux
|
A path disclosure vulnerability was found in Samba. As part of the Spotlight protocol, Samba discloses the server-side absolute path of shares, files, and directories in the results for search querie…
|
NVD-CWE-noinfo
|
CVE-2023-34968
|
2024-09-16 22:15 |
2023-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1900
|
5.9 |
MEDIUM
Network
|
samba redhat fedoraproject debian
|
samba enterprise_linux fedora debian_linux
|
An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbindd_pam_auth_crap.c. When performing NTLM authentication, the client replies to cryptographic challeng…
|
CWE-125
Out-of-bounds Read
|
CVE-2022-2127
|
2024-09-16 22:15 |
2023-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|