Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:OPENSUSE-SU-2024:0294-1
HistorySep 09, 2024 - 12:04 p.m.

Security update for kanidm

2024-09-0912:04:21
Google
osv.dev
kanidm
security update
version 1.3.3
mail substr index

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.1

Confidence

Low

EPSS

0.004

Percentile

72.4%

JSON

This update for kanidm fixes the following issues:

  • kanidm version 1.3.3~git0.f075d13:
    • Release 1.3.3
    • Mail substr index (#2981)

Related

nessus 15
openvas 53
osv 41
nvd 3
redhatcve 2
cve 3
github 3
debiancve 3
cvelist 3
ubuntucve 3
rustsec 3
prion 3
githubexploit 1
fedora 49
cbl_mariner 6
veracode 1
alpinelinux 1
ubuntu 1
hackerone 1
slackware 1
redhat 3
nessus
nessus
openSUSE 15 Security Update : kanidm (openSUSE-SU-2024:0294-1)
2024-09-10 00:00:00
SUSE SLED15 / SLES15 Security Update : sccache (SUSE-SU-2022:4073-1)
2022-11-19 00:00:00
SUSE SLED15 / SLES15 Security Update : rustup (SUSE-SU-2022:3949-1)
2022-11-13 00:00:00
openvas
openvas
openSUSE: Security Advisory for sccache (SUSE-SU-2023:3526-1)
2024-03-04 00:00:00
Fedora: Security Advisory for rust-regex (FEDORA-2022-d20d44ba98)
2022-03-27 00:00:00
Fedora: Security Advisory for rust-regex (FEDORA-2022-8436ac4c39)
2022-03-23 00:00:00
osv
osv
tealdeer-1.5.0+0-1.1 on GA media
2024-06-15 00:00:00
tuigreet-0.7.1-3.1 on GA media
2024-06-15 00:00:00
spotifyd-0.3.3-2.1 on GA media
2024-06-15 00:00:00
nvd
nvd
CVE-2021-45710
2021-12-27 00:15:10
CVE-2022-24713
2022-03-08 19:15:08
CVE-2023-26964
2023-04-11 14:15:07
redhatcve
redhatcve
CVE-2021-45710
2022-11-17 04:56:00
CVE-2022-24713
2022-04-06 14:50:16
cve
cve
CVE-2021-45710
2021-12-27 00:15:10
CVE-2022-24713
2022-03-08 19:15:08
CVE-2023-26964
2023-04-11 14:15:07
github
github
Race Condition in tokio
2022-01-06 22:04:37
Rust's regex crate vulnerable to regular expression denial of service
2022-03-08 20:00:36
h2 vulnerable to denial of service
2023-04-11 15:30:30
debiancve
debiancve
CVE-2021-45710
2021-12-27 00:15:10
CVE-2022-24713
2022-03-08 19:15:08
CVE-2023-26964
2023-04-11 14:15:07
cvelist
cvelist
CVE-2021-45710
2021-12-26 21:47:20
CVE-2022-24713 Regular expression denial of service in Rust's regex crate
2022-03-08 19:00:12
CVE-2023-26964
2023-04-11 00:00:00
ubuntucve
ubuntucve
CVE-2021-45710
2021-12-27 00:00:00
CVE-2022-24713
2022-03-08 00:00:00
CVE-2023-26964
2023-04-11 00:00:00
rustsec
rustsec
Data race when sending and receiving after closing a `oneshot` channel
2021-11-16 12:00:00
Regexes with large repetitions on empty sub-expressions take a very long time to parse
2022-03-08 12:00:00
Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS)
2023-04-14 12:00:00
prion
prion
Memory corruption
2021-12-27 00:15:00
Design/Logic Flaw
2022-03-08 19:15:00
Design/Logic Flaw
2023-04-11 14:15:00
githubexploit
githubexploit
Exploit for Uncontrolled Resource Consumption in Rust-Lang Regex
2022-06-05 22:17:00
fedora
fedora
[SECURITY] Fedora 34 Update: rust-regex-1.5.5-1.fc34
2022-03-17 14:43:04
[SECURITY] Fedora 36 Update: rust-regex-1.5.5-1.fc36
2022-03-26 15:45:42
[SECURITY] Fedora 35 Update: rust-regex-1.5.5-1.fc35
2022-03-17 15:47:18
cbl_mariner
cbl_mariner
CVE-2022-24713 affecting package rpm-ostree for versions less than 2024.4-1
2024-07-24 01:44:36
CVE-2022-24713 affecting package librsvg2 for versions less than 2.58.1-1
2024-06-21 09:32:44
CVE-2023-26964 affecting package rpm-ostree for versions less than 2022.1-7
2024-08-26 16:27:28
veracode
veracode
Denial Of Service (DoS)
2022-04-09 00:46:36
alpinelinux
alpinelinux
CVE-2022-24713
2022-03-08 19:15:08
ubuntu
ubuntu
rust-regex vulnerability
2022-09-14 00:00:00
hackerone
hackerone
Internet Bug Bounty: Regexes with large repetitions on empty sub-expressions take a very long time to parse
2022-03-21 20:57:04
slackware
slackware
[slackware-security] mozilla-firefox
2022-04-05 19:19:02
redhat
redhat
(RHSA-2022:1286) Important: firefox security update
2022-04-08 13:39:06
(RHSA-2022:1285) Important: firefox security update
2022-04-08 13:33:48
(RHSA-2022:1284) Important: firefox security update
2022-04-08 13:32:17

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.1

Confidence

Low

EPSS

0.004

Percentile

72.4%

JSON
Related for OSV:OPENSUSE-SU-2024:0294-1
nessus15openvas53osv41nvd3redhatcve2cve3github3debiancve3cvelist3ubuntucve3rustsec3prion3githubexploit1fedora49cbl_mariner6veracode1alpinelinux1ubuntu1hackerone1slackware1redhat3