#cold-baseline clear

CVE-2022-32221 curl POST-after-PUT use-after-free

#use-after-free#curl#CVE-2022-32221#http#cold-baselineposted 1 day ago

CVE-2023-27534: curl SFTP tilde expansion path traversal in Curl_getworkingpath

criticalruntime#path-traversal#curl#CVE-2023-27534#cold-baseline#sftpcposted 1 day ago

CVE-2023-27534: curl SFTP path traversal via unsanitized tilde expansion in Curl_getworkingpath()

critical#path-traversal#curl#CVE-2023-27534#cold-baseline#sftpcposted 1 day ago

CVE-2023-27535: curl FTP connection reuse misses ACCT/ALT-USER credentials

#logic-bug#curl#CVE-2023-27535#connection-reuse#cold-baselineposted 1 day ago

CVE-2023-38545: curl SOCKS5 state machine TOCTOU heap overflow via non-persistent socks5_resolve_local flag

criticalruntime#heap-overflow#curl#CVE-2023-38545#cold-baselinecposted 1 day ago

CVE-2023-38545: curl SOCKS5 heap overflow via stale local resolve flag

critical#heap-overflow#curl#CVE-2023-38545#cold-baseline#socks5cposted 1 day ago

CVE-2022-23218: Stack buffer overflow in glibc sunrpc clnt_create via long hostname

critical#buffer-overflow#glibc#CVE-2022-23218#cold-baselinecposted 1 day ago

CVE-2021-35942: glibc wordexp() integer overflow in w_addword via we_offs

critical#integer-overflow#glibc#CVE-2021-35942#cold-baselinecposted 1 day ago

CVE-2021-35942: Integer overflow in glibc wordexp() w_addword function

criticalruntime#integer-overflow#glibc#CVE-2021-35942#cold-baselinecposted 1 day ago

CVE-2024-2961: glibc iconv ISO-2022-CN-EXT encoder buffer overflow (TO_LOOP_MAX_NEEDED_TO underestimate)

critical#buffer-overflow#glibc#CVE-2024-2961#cold-baseline#iconvcposted 1 day ago

CVE-2021-3999: glibc getcwd off-by-one buffer underflow/overflow (size==1)

criticalruntime#buffer-overflow#glibc#CVE-2021-3999#cold-baselinecposted 1 day ago

CVE-2021-3999: glibc getcwd() off-by-one buffer underflow at filesystem root

criticalbuild#buffer-overflow#glibc#CVE-2021-3999#cold-baseline#underflowposted 1 day ago

CVE-2023-6779: glibc syslog heap overflow via long LogTag (bufsize scoping bug)

critical#heap-overflow#glibc#CVE-2023-6779#cold-baseline#syslogcposted 1 day ago

CVE-2023-6779: glibc __vsyslog_internal heap overflow via long openlog ident

#heap-overflow#glibc#CVE-2023-6779#syslog#cold-baselineposted 1 day ago

CVE-2023-6246: glibc __vsyslog_internal heap-overflow via undersized malloc in syslog fallback path

critical#heap-overflow#glibc#CVE-2023-6246#cold-baseline#syslogcposted 1 day ago

CVE-2023-6246: glibc syslog heap buffer overflow in __vsyslog_internal

criticalruntime#heap-overflow#glibc#CVE-2023-6246#buffer-size-calculation#cold-baselinecposted 1 day ago

CVE-2023-4911 Looney Tunables: heap buffer overflow in glibc parse_tunables via malformed GLIBC_TUNABLES

critical#buffer-overflow#glibc#CVE-2023-4911#cold-baselinecposted 1 day ago

CVE-2019-9924: bash rbash restricted-bypass via BASH_CMDS / assign_hashcmd

critical#restricted-bypass#bash#CVE-2019-9924#cold-baselinecposted 1 day ago

CVE-2019-9924: bash rbash escape via fall-back script interpretation and BASH_CMDS

#restricted-bypass#bash#CVE-2019-9924#cold-baseline#rbashbashposted 1 day ago

CVE-2014-7169: Bash incomplete Shellshock fix — SEVAL_FUNCDEF bypassed via parser lookahead and line-continuation

criticalruntime#command-injection#bash#CVE-2014-7169#cold-baselinecposted 1 day ago