|
223521
|
9.1 |
CRITICAL
Network
|
gnu
|
aspell
|
libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a string ending with a single '\0' byte, if the encoding is set to ucs-2 or ucs-4 outside of the application, as demonstrated by the…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-20433
|
2024-11-21 13:38 |
2020-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223522
|
7.5 |
HIGH
Network
|
lustre
|
lustre
|
In the Lustre file system before 2.12.3, the mdt module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. mdt_file_secctx_unpack doe…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-20432
|
2024-11-21 13:38 |
2020-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223523
|
7.5 |
HIGH
Network
|
lustre
|
lustre
|
In the Lustre file system before 2.12.3, the ptlrpc module has an osd_map_remote_to_local out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client.…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-20431
|
2024-11-21 13:38 |
2020-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223524
|
7.5 |
HIGH
Network
|
lustre
|
lustre
|
In the Lustre file system before 2.12.3, the mdt module has an LBUG panic (via a large MDT Body eadatasize field) due to the lack of validation for specific fields of packets sent by a client.
|
CWE-20
CWE-670
Improper Input Validation
Always-Incorrect Control Flow Implementation
|
CVE-2019-20430
|
2024-11-21 13:38 |
2020-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223525
|
7.5 |
HIGH
Network
|
lustre
|
lustre
|
In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds read and panic (via a modified lm_bufcount field) due to the lack of validation for specific fields of packets sent by …
|
CWE-125
Out-of-bounds Read
|
CVE-2019-20429
|
2024-11-21 13:38 |
2020-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223526
|
7.5 |
HIGH
Network
|
lustre
|
lustre
|
In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds read and panic due to the lack of validation for specific fields of packets sent by a client. The ldl_request_cancel fu…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-20428
|
2024-11-21 13:38 |
2020-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223527
|
9.8 |
CRITICAL
Network
|
lustre
|
lustre
|
In the Lustre file system before 2.12.3, the ptlrpc module has a buffer overflow and panic, and possibly remote code execution, due to the lack of validation for specific fields of packets sent by a …
|
CWE-120
Classic Buffer Overflow
|
CVE-2019-20427
|
2024-11-21 13:38 |
2020-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223528
|
7.5 |
HIGH
Network
|
lustre
|
lustre
|
In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. In the function ldlm_ca…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-20426
|
2024-11-21 13:38 |
2020-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223529
|
7.5 |
HIGH
Network
|
lustre
|
lustre
|
In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. In the function lustre_…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-20425
|
2024-11-21 13:38 |
2020-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223530
|
7.5 |
HIGH
Network
|
lustre
|
lustre
|
In the Lustre file system before 2.12.3, mdt_object_remote in the mdt module has a NULL pointer dereference and panic due to the lack of validation for specific fields of packets sent by a client.
|
CWE-476
NULL Pointer Dereference
|
CVE-2019-20424
|
2024-11-21 13:38 |
2020-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
