CVE-2026-10967

Use after free in SurfaceCapture in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

MiracleLinux 8 : dovecot-2.3.8-4.el8 (AXSA:2021-1195:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1195:01 advisory. dovecot: command followed by sufficient number of newlines leads to use-after-free CVE-2020-10958 dovecot: sending mail with empty quoted localpart...

CVE-2025-10967

A vulnerability was detected in MuFen-mker PHP-Usermm up to 37f2d24e51b04346dfc565b93fc2fc6b37bdaea9. This affects an unknown part of the file /chkuser.php. Performing manipulation of the argument Username results in sql injection. The attack may be initiated remotely. The exploit is now public a...

CVE-2016-10967

The real3d-flipbook-lite plugin 1.0 for WordPress has XSS via the wp-content/plugins/real3d-flipbook/includes/flipbooks.php bookId parameter...

CVE-2024-10967 code-projects E-Health Care System delete_user_appointment_request.php sql injection

A vulnerability was found in code-projects E-Health Care System 1.0. It has been classified as critical. Affected is an unknown function of the file /Doctor/deleteuserappointmentrequest.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely...

CVE-2024-10967 code-projects E-Health Care System delete_user_appointment_request.php sql injection

A vulnerability was found in code-projects E-Health Care System 1.0. It has been classified as critical. Affected is an unknown function of the file /Doctor/deleteuserappointmentrequest.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely...

Emerson Ovation OCR400 Controller Stack-Based Buffer Overflow (CVE-2019-10967)

In Emerson Ovation OCR400 Controller 3.3.1 and earlier, a stack-based buffer overflow vulnerability in the embedded third-party FTP server involves improper handling of a long file name from the LIST command to the FTP service, which may cause the service to overwrite buffers, leading to remote...

AlmaLinux 8 : dovecot (ALSA-2020:4763)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2020:4763 advisory. - In Dovecot before 2.3.10.1, a crafted SMTP/LMTP message triggers an unauthenticated use-after-free bug in submission-login, submission, or lmtp, and can...

SUSE: Security Advisory (SUSE-SU-2020:1379-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 8 : dovecot (CESA-2020:4763)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4763 advisory. - dovecot: command followed by sufficient number of newlines leads to use-after-free CVE-2020-10958 - dovecot: sending mail with empty quoted localpart...

dovecot security update

1:2.3.8-4 - fix CVE-2020-12100 resource exhaustion via deeply nested MIME parts 1866756 - fix CVE-2020-12673 out of bound reads in dovecot NTLM implementation 1866761 - fix CVE-2020-12674 crash due to assert in RPA implementation 1866768 1:2.3.8-3 - fix CVE-2020-10957 dovecot: malformed NOOP...

Moderate: Red Hat Security Advisory: dovecot security update

An update for dovecot is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Moderate: dovecot security update

Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Security Fixes: doveco...

ALSA-2020:4763 Moderate: dovecot security update

Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Security Fixes: doveco...

Fedora: Security Advisory for dovecot (FEDORA-2020-b8ebc4201e)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 31 : 1:dovecot (2020-cd8b8f887b)

CVE-2020-12100: Parsing mails with a large number of MIME parts could have resulted in excessive CPU usage or a crash due to running out of stack memory. CVE-2020-12673: Dovecot's NTLM implementation does not correctly check message buffer size, which leads to reading past allocation which can le...

Fedora: Security Advisory for dovecot (FEDORA-2020-cd8b8f887b)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Huawei EulerOS: Security Advisory for dovecot (EulerOS-SA-2020-1843)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15 Security Update : dovecot23 (SUSE-SU-2020:1379-1)

This update for dovecot23 fixes the following issues : Security issues fixed : CVE-2020-10957: Fixed a crash caused by malformed NOOP commands bsc1171457. CVE-2020-10958: Fixed a use-after-free when receiving too many newlines bsc1171458. CVE-2020-10967: Fixed a crash in the lmtp and submission...

SUSE SLES15 Security Update : dovecot23 (SUSE-SU-2020:1380-1)

This update for dovecot23 to 2.3.10 fixes the following issues : Security issues fixed : CVE-2020-10957: Fixed a crash caused by malformed NOOP commands bsc1171457. CVE-2020-10958: Fixed a use-after-free when receiving too many newlines bsc1171458. CVE-2020-10967: Fixed a crash in the lmtp and...