Buffer overflow in text-utils/colcrt.c in colcrt in util-linux before 2.27 allows local users to cause a denial of service (crash) via a crafted file, related to the page global variable. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. Public exploit code available.
Denial Of Service
Buffer Overflow
Util Linux
Opensuse
Leap
NVD
GitHub
CVSS 2.0
2.1
EPSS
0.1%
The chunked upload API (ApiUpload) in MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 does not restrict the uploaded data to the claimed file size, which allows remote. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.
Denial Of Service
Authentication Bypass
Mediawiki
NVD
CVSS 2.0
3.5
EPSS
0.3%