traefik-3.6.17-1.1 on GA media (moderate)

traefik-3.6.17-1.1 on GA media Announcement ID: openSUSE-SU-2026:10810-1 Rating: moderate Cross-References: CVE-2026-44774 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the traefik-3.6.17-1....

OPENSUSE-SU-2026:10810-1 traefik-3.6.17-1.1 on GA media

These are all security issues fixed in the traefik-3.6.17-1.1 package on the GA media of openSUSE Tumbleweed...

SUSE CVE-2026-23960

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. Prior to versions 3.6.17 and 3.7.8, stored XSS in the artifact directory listing allows any workflow author to execute arbitrary JavaScript in another user's browser under the Argo...

CVE-2026-23960 Argo Workflows affected by stored XSS in the artifact directory listing

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. Prior to versions 3.6.17 and 3.7.8, stored XSS in the artifact directory listing allows any workflow author to execute arbitrary JavaScript in another user’s browser under the Argo...

CVE-2026-23960 Argo Workflows affected by stored XSS in the artifact directory listing

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. Prior to versions 3.6.17 and 3.7.8, stored XSS in the artifact directory listing allows any workflow author to execute arbitrary JavaScript in another user’s browser under the Argo...

WordPress My auctions allegro plugin <= 3.6.17 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin My auctions allegro versions = 3.6.17...

Samba read_nttrans_ea_list Integer Overflow

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/struct2' class MetasploitModule 'Samba readnttransealist Integer Overflow', 'Description' = %q Integer overflow in the readnttransealist function in nttrans...

SUSE-SU-2023:4083-1 Security update for wireshark

This update for wireshark fixes the following issues: Updated to version 3.6.17: - CVE-2023-5371: Fixed a memory leak issue in the RTPS dissector bsc1215959...

CVE-2023-23766

An incorrect comparison vulnerability was identified in GitHub Enterprise Server that allowed commit smuggling by displaying an incorrect diff in a re-opened Pull Request. To do so, an attacker would need write access to the repository. This vulnerability affected all versions of GitHub Enterpris...

GitHub: Git Reference Ambiguity in GitHub - Commit Smuggling, Account Takeover, and Remote Code Execution

A vulnerability was identified in GitHub Enterprise Server that allowed commit smuggling due to an incorrect diff comparison in re-opened pull requests. This affected all versions of GitHub Enterprise Server and was fixed in newer releases...

PT-2019-5513 · Mongodb +1 · Mongodb Server +2

Name of the Vulnerable Software and Affected Versions: MongoDB Server versions 3.6.0 through 3.6.17 MongoDB Server versions 4.0.0 through 4.0.14 MongoDB Server versions 4.2.0 through 4.2.2 MongoDB Server versions 4.3.0 through 4.3.2 Description: The issue is related to improper serialization of...

Samba read_nttrans_ea_list Integer Overflow

Integer overflow in the readnttransealist function in nttrans.c in smbd in Samba 3.x before 3.5.22, 3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service memory consumption via a malformed packet. Important Note: in order to work, the "ea support" option o...

Samba 3.5.223.6.174.0.8 - nttrans Reply Integer Overflow

Samba 3.5.223.6.174.0.8 - nttrans Reply Integer Overflow Exploitation: samba nttrans reply integer overflow / \ / \ | || | | | \ / / . || | | | / | handlenttrans +- callnttransactcreate // transact! - readnttrnsealistvulnerable function security bug analyze smbd/nttrans.c ---- snip ---- snip ----...

Mandriva Linux Security Advisory : samba (MDVSA-2013:207)

A vulnerability has been found and corrected in samba : Integer overflow in the readnttransealist function in nttrans.c in smbd in Samba 3.x before 3.5.22, 3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service memory consumption via a malformed packet...

[slackware-security] samba

New samba packages are available for Slackware 13.1, 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/samba-3.6.17-i486-1slack14.0.txz: Upgraded. This update fixes missing integer wrap protection in an EA list reading that...

Mozilla Firefox Integer Overflow

Title: Mozilla Firefox Array.reduceRight Integer Overflow Exploit Date: 12 Oct 2011 Author: Matteo Memelli ryujin -AT- offensive-security.com CVE-2011-2371 Full exploit package: http://www.exploit-db.com/sploits/17974.zip ff-i- Title: Mozilla Firefox Array.reduceRight Integer Overflow Exploit Dat...

Multiple Cross-Site Scripting vulnerabilities in BLOG:CMS

Advisory: Multiple Cross-Site Scripting vulnerabilities in BLOG:CMS Advisory ID: SSCHADV2011-007 Author: Stefan Schurtz Affected Software: Successfully tested on: version 4.2.1.f Vendor URL: http://www.blogcms.com Vendor Status: resolved CVE-ID: - ========================== Vulnerability...

Fedora 13 : firefox-3.6.17-1.fc13 / galeon-2.0.7-40.fc13 / gnome-python2-extras-2.25.3-29.fc13 / etc (2011-6205)

Update to new upstream Firefox version 3.6.17, fixing multiple security issues detailed in the upstream advisories : http://www.mozilla.org/security/known-vulnerabilities/firefox36.htmlf irefox3.6.17 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox ...

Mozilla Foundation Security Advisory 2011-15

Mozilla Foundation Security Advisory 2011-15 Title: Escalation of privilege through Java Embedding Plugin Impact: Critical Announced: April 28, 2011 Reporter: David Remahl Products: Firefox, SeaMonkey Fixed in: Firefox 3.6.17 Firefox 3.5.19 SeaMonkey 2.0.14 Description David Remahl of Apple Produ...

firefox security update

firefox: 3.6.17-1.0.1.el60 - Added firefox-oracle-default-prefs.js and removed firefox-redhat-default-prefs.js 3.6.17-1 - Update to 3.6.17 xulrunner: 1.9.2.17-4.0.1.el60 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 1.9.2.17-4 - Rebuild 1.9.2.17-3 - Update to...