Skip to content
Two vulnerabilities were fixed in GNU cpio, a program to manage archives of files. CVE-2019-14866…
Latest MariaDB minor maintenance release 10.3.39 included a fix for the following security vulnerability: CVE-2022-47015…
Several vulnerabilities were fixed in the network traffic analyzer Wireshark. CVE-2023-2856…
Alvaro Mu'±oz from the GitHub Security Lab discovered sixteen ways to exploit a cross-site scripting vulnerability in nbconvert, a tool and library used to convert notebooks to various other formats via Jinja templates.…
It was discovered that there was a series of heap overflow and integer overflow vulnerabilities in Sofia-SIP, a building block for creating VoIP/SIP and instant messaging applications.…
An issue has been found in cups, the Common UNIX Printing System. Due to a buffer overflow vulnerability in the function format_log_line() a remote attackers could cause a denial-of-service(DoS). The vulnerability…
The security update of netatalk,' the Apple Filing Protocol service, announced as DLA-3426-1 caused a regression when the netatalk server was configured to use the AppleDouble v2 file system format.…
The security update of netatalk,' the Apple Filing Protocol service, announced as DLA-3426-1 caused a regression when the netatalk server was configured to use the AppleDouble v2 file system format.…
It was discovered that the patch to fix CVE-2023-32700 in texlive-bin, released as DLA-3427-1, was incomplete and caused an error when running the lualatex command.…
sssd 1.16.3-3.2+deb10u1 (DLA 3436-1) had a broken upgrade path from version 1.16.3-3.2. One could upgrade sssd-common to 1.16.3-3.2+deb10u1 while leaving…
It was discovered that there was a potential arbitrary code execution vulnerability in libwebp, a library to support the WebP image compression format.…
It was discovered that there was a potential denial-of-service (DoS) attack in the Kamailio SIP telephony server. This was caused by the Kamailio server mishandling INVITE requests with duplicated fields.…
Two security issues have been discovered in libssh, a tiny C SSH library, which may allows an remote authenticated user to cause a denial of service or inject arbitrary commands.…
Multiple vulnerabilities were found in sssd, a set of daemons to manage access to remote directories and authentication mechanisms, which could lead to privilege escalation.…
Cross-site scripting (XSS) vulnerabilities were found in rainloop, a web-based email client, which could lead to information disclosure including passphrase leak.…
It was discovered that sysstat, a system performance tools for Linux, incompletely fixed CVE-2022-39377 (as published in DLA-3188-1), which could lead to crashes and possibly remote code execution.…
Buffer Overflow vulnerabilities were found in libraw, a raw image decoder library, which could lead to application crash or privilege escalation.…
Multiple security issues were discovered in Python, an interactive high-level object-oriented language. An attacker may cause command injection, denial of service (DoS), request smuggling and port scanning.…
node-nth-check, a NodeJS module module used to parse and compile nth-checks, as they are found in CSS 3's nth-child() and nth-last-of-type(). This module was vulnerable to a regular expression denial of service…
node-nth-check, a NodeJS module module used to parse and compile nth-checks, as they are found in CSS 3's nth-child() and nth-last-of-type(). This module was vulnerable to a regular expression denial of service…
文 » A
Scroll Up
×