17 matches found
Fedora 41 : python3.12 (2024-6def755315)
The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-6def755315 advisory. This is the sixth maintenance release of Python 3.12 ==================================================== Python 3.12 is the newest major release of...
python3.12 security update
3.12.6-1 - Update to 3.12.6 Resolves: RHEL-57405...
SUSE-SU-2024:3303-1 Security update for python312
This update for python312 fixes the following issues: - Update to 3.12.6 - CVE-2024-6923: Fixed uncontrolled CPU resource consumption when in http.cookies module. bsc1228780. - CVE-2024-7592: Fixed Email header injection due to unquoted newlines. bsc1229596 - CVE-2024-6232: Fixed ReDos via...
Fedora 40 : python3-docs / python3.12 (2024-1d0cb3b43f)
The remote Fedora 40 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2024-1d0cb3b43f advisory. This is the sixth maintenance release of Python 3.12 ==================================================== Python 3.12 is the newest major release of...
PT-2024-37178 · Github · Github Enterprise Server
Name of the Vulnerable Software and Affected Versions: GitHub Enterprise Server versions prior to 3.14 GitHub Enterprise Server version 3.9.17 GitHub Enterprise Server version 3.10.14 GitHub Enterprise Server version 3.11.12 GitHub Enterprise Server version 3.12.6 GitHub Enterprise Server version...
SUSE CVE-2020-11077
In Puma RubyGem before 4.3.5 and 3.12.6, a client could smuggle a request through a proxy, causing the proxy to send a response back to another unknown client. If the proxy uses persistent connections and the client adds another request in via HTTP pipelining, the proxy may mistake it as the firs...
TP-LINK TL-WA7510N 安全漏洞
The TP-LINK TL-WA7510N is an outdoor wireless access point from China P&L TP-LINK. A security vulnerability exists in the TP-Link TL-WA7510N v1 firmware v3.12.6 and earlier versions, which originates from an attacker who can achieve arbitrary code execution or denial of service by uploading a...
DEBIAN-CVE-2020-11077
In Puma RubyGem before 4.3.5 and 3.12.6, a client could smuggle a request through a proxy, causing the proxy to send a response back to another unknown client. If the proxy uses persistent connections and the client adds another request in via HTTP pipelining, the proxy may mistake it as the firs...
PT-2020-12536 · Puma +4 · Puma +4
Name of the Vulnerable Software and Affected Versions: Puma versions prior to 3.12.6 Puma versions prior to 4.3.5 Description: A client could smuggle a request through a proxy, causing the proxy to send a response back to another unknown client. If the proxy uses persistent connections and the...
HTTP Smuggling via Transfer-Encoding Header in Puma
Impact This is a similar but different vulnerability to the one patched in 3.12.5 and 4.3.4. A client could smuggle a request through a proxy, causing the proxy to send a response back to another unknown client. If the proxy uses persistent connections and the client adds another request in via...
WordPress WP Ultimate Recipe plugin <= 3.12.6 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
Authenticated Stored Cross-Site Scripting XSS vulnerability found in WordPress WP Ultimate Recipe plugin versions = 3.12.6. Solution Update the WordPress WP Ultimate Recipe plugin to the latest available version at least 3.12.7...
OracleVM 3.3 : nss (OVMSA-2014-0014)
The remote OracleVM system is missing necessary patches to address critical security updates : - Added nss-vendor.patch to change vendor - Update some patches on account of the rebase - Resolves: Bug 1099619 - Backport nss-3.12.6 upstream fix required by Firefox 31 - Resolves: Bug 1099619 - Remov...
PT-2013-6014 · Linux +4 · Linux Kernel +4
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.12.6 Description: The issue allows local users to gain privileges or cause a denial of service, resulting in a system crash, via a VAPIC synchronization operation involving a page-end address. Recommendations:...
Oracle Linux 5 : nss (ELSA-2010-0165)
The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2010-0165 advisory. nspr: 4.8.4-1 - Update to NSPR 4.8.4 nss: 3.12.6-1.0.1.el54 - Update clean.gif in the nss-3.12.6-stripped.tar.bz2 tarball 3.12.6-1 - Update to 3.12.6...
SuSE 10 Security Update : Mozilla NSS (ZYPP Patch Number 6978)
Mozilla NSS was updated to version 3.12.6. This fixes all currently known issues in mozilla-nss, and also implements the new TLS/SSL renegotiation handling. CVE-2009-3555 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
Fedora 13 : nss-3.12.6-1.2.fc13 (2010-3929)
Update to NSS 3.12.6 The primary feature of NSS 3.12.6 is support for the TLS Renegotiation Indication Extension, RFC 5746. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...
nspr, nss security update
CentOS Errata and Security Advisory CESA-2010:0165 Updated nss packages that fix a security issue are now available for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base...