Astra Linux - уязвимость в xterm

With Patch 370, xterm enables Sixel support. When this is enabled, attackers can exploit a buffer overflow in the setsixel function in graphicssixel.c by using crafted text...

MiracleLinux 3 : kernel-2.6.18-128.8AXS3 (AXSA:2009-370:08)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2009-370:08 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Fixed bugs: CVE-2007-5966 Integer overflow in the hrtimerstart...

EUVD-2025-204905

Malicious code in elf-stats-ginger-bow-370 npm...

MAL-2025-192770 Malicious code in elf-stats-ginger-bow-370 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13f5fae5b149d0de09927386835d91378074a0b83000ff8a5fe91f1000aa3fd7 The package elf-stats-ginger-bow-370 was found to contain malicious code...

Malicious code in elf-stats-ginger-bow-370 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13f5fae5b149d0de09927386835d91378074a0b83000ff8a5fe91f1000aa3fd7 The package elf-stats-ginger-bow-370 was found to contain malicious code...

EUVD-2020-29940

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2022-24130

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xterm through Patch 370, when Sixel support is enabled, allows attackers to trigger a buffer overflow in setsixel in graphicssixel.c via crafted text...

CVE-2020-9111

E6878-370 versions 10.0.3.1H557SP27C233,10.0.3.1H563SP21C233 and E6878-870 versions 10.0.3.1H557SP27C233,10.0.3.1H563SP11C233 have a denial of service vulnerability. The system does not properly check some events, an attacker could launch the events continually, successful exploit could cause...

CVE-2020-1799

E6878-370 with versions of 10.0.3.1H557SP27C233, 10.0.3.1H563SP1C00, 10.0.3.1H563SP1C233 has a use after free vulnerability. The software references memory after it has been freed in certain scenario, the attacker does a series of crafted operations through web portal, successful exploit could...

CVE-2020-1832

E6878-370 products with versions of 10.0.3.1H557SP27C233 and 10.0.3.1H563SP1C00 have a stack buffer overflow vulnerability. The program copies an input buffer to an output buffer without verification. An attacker in the adjacent network could send a crafted message, successful exploit could lead ...

RICOH Printers Buffer Overflow Vulnerability (ricoh-2024-000008)

Multiple RICOH printers and multifunction printers are prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...

370.dk Cross Site Scripting vulnerability OBB-3891615

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

370.dk Cross Site Scripting vulnerability OBB-3503924

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

370.dk Cross Site Scripting vulnerability OBB-3401823

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

SUSE SLES12 Security Update : xterm (SUSE-SU-2022:3952-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3952-1 advisory. - xterm through Patch 370, when Sixel support is enabled, allows attackers to trigger a buffer overflow in setsixel in graphicssixel.c via...

Jenkins Lucene-Search Plugin 跨站脚本漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A cross-site scripting...

GSD-2022-1004054 irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x

irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.318 by...

GSD-2022-1003874 irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x

irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.247 b...

GSD-2022-1003549 irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x

irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.121 b...

GSD-2022-1003300 irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x

irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.46 by...