65 matches found
CVE-2024-45341
A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make use of URIs...
CVE-2024-45341
CVE-2024-45341 affects Go (golang) components handling X.509 URI name constraints. A certificate URI containing an IPv6 address with a zone ID may incorrectly satisfy the certificate-chain URI constraint, potentially weakening PKI checks in private PKIs that use URIs. The issue is fixed in variou...
CVE-2024-45341
A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make use of URIs...
go1.23-1.23.5-1.1 on GA media (moderate)
go1.23-1.23.5-1.1 on GA media Announcement ID: openSUSE-SU-2025:14695-1 Rating: moderate Cross-References: CVE-2024-45336 CVE-2024-45341 Affected Products: openSUSE Tumbleweed An update that solves 2 vulnerabilities can now be installed. Description: These are all security issues fixed in the...
Mageia: Security Advisory (MGASA-2025-0021)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Golang 1.24 < 1.24rc2 Multiple Vulnerabilities
The version of Golang running on the remote host is 1.24 prior to 1.24rc2. It is, therefore, is affected by multiple vulnerabilities: - net/http: Sensitive headers are incorrectly sent after cross-domain redirect CVE-2024-45336 - cmd/go: GOAUTH credential leak due to improper domain segmentation...
CVE-2024-45341
creationtimestamp| type| source ---|---|--- 2025-01-16 22:15:09+00:00| seen| https://bsky.app/profile/golang.org/post/3lfvckap2p22o 2025-01-16 23:16:09+00:00| seen| https://bsky.app/profile/golang.org/post/3lfvfxdxeis2y 2025-01-17 12:34:52+00:00| seen|...
openSUSE: Security Advisory for librecad (openSUSE-SU-2022:10002-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-45341 Online Food Ordering System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'price' parameter of the routers/menu-router.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-45341
CVE-2023-45341 affects Online Food Ordering System v1.0. The vulnerability is multiple unauthenticated SQL injections in the routers/menu-router.php resource, triggered by the unvalidated and unfiltered characters in the “*_price” parameter that are sent to the database. Root cause: lack of input...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS : LibreCAD vulnerabilities (USN-5957-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5957-1 advisory. Cody Sixteen discovered that LibreCAD incorrectly handled memory when parsing DXF files. An attacker could use this issue to caus...
SUSE CVE-2021-45341
A buffer overflow vulnerability in CDataMoji of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote Code Execution using a crafted JWW document...
Fedora: Security Advisory for librecad (FEDORA-2022-3dd3274ae2)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE 15 Security Update : librecad (openSUSE-SU-2022:0143-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0143-1 advisory. - A buffer overflow vulnerability in CDataMoji of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote...
OPENSUSE-SU-2022:0143-1 Security update for librecad
This update for librecad fixes the following issues: - CVE-2021-45341: Fixed a buffer overflow vulnerability in LibreCAD that allowed an attacker to achieve remote code execution via a crafted JWW document boo1195105 - CVE-2021-45342: Fixed a buffer overflow vulnerability in jwwlib in LibreCAD...
Security update for librecad (critical)
openSUSE Security Update: Security update for librecad Announcement ID: openSUSE-SU-2022:0143-1 Rating: critical References: 1195105 1195122 Cross-References: CVE-2021-45341 CVE-2021-45342 CVSS scores: CVE-2021-45341 NVD : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-45342 NVD : 7.8...
Updated librecad packages fix security vulnerability
A buffer overflow vulnerability in CDataMoji of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote Code Execution using a crafted JWW document. CVE-2021-45341 A buffer overflow vulnerability in CDataList of the jwwlib component of LibreCAD 2.2.0-rc3 and olde...
Debian: Security Advisory (DSA-5077-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-5077-1 : librecad - security update
The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5077 advisory. Multiple security issues were discovered in LibreCAD, an application for computer aided design CAD which could result in denial of service or the execution o...
[SECURITY] [DSA 5077-1] librecad security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5077-1 [email protected] https://www.debian.org/security/ Aron Xu February 15, 2022 https://www.debian.org/security/faq -...