Lucene search
K

64 matches found

Fedora
Fedora
added 2020/10/27 1:21 a.m.22 views

[SECURITY] Fedora 33 Update: createrepo_c-0.16.1-1.fc33

C implementation of Createrepo. A set of utilities createrepoc, mergerepoc, modifyrepoc for generating a common metadata repository from a directory of rpm packages and maintaining it...

8.5CVSS2.3AI score0.02526EPSS
Exploits0
Fedora
Fedora
added 2020/10/18 3:50 p.m.32 views

[SECURITY] Fedora 32 Update: createrepo_c-0.16.1-2.fc32

C implementation of Createrepo. A set of utilities createrepoc, mergerepoc, modifyrepoc for generating a common metadata repository from a directory of rpm packages and maintaining it...

8.5CVSS2.3AI score0.02526EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/06/15 12:0 a.m.50 views

json-c: Multiple vulnerabilities

Background json-c is a JSON implementation in C. Description Multiple vulnerabilities have been discovered in json-c. Please review the CVE identifiers referenced below for details. Impact A remote/local attacker could send a specially crafted file possibly resulting in a Denial of Service...

7.8CVSS8.3AI score0.01888EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/01/13 12:0 a.m.29 views

EulerOS Virtualization for ARM 64 3.0.5.0 : libgcrypt (EulerOS-SA-2020-1085)

According to the versions of the libgcrypt package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - It was discovered that there was a ECDSA timing attack in the libgcrypt20 cryptographic library. Version affected:...

6.3CVSS6.5AI score0.02063EPSS
Exploits0References3
NVD
NVD
added 2019/11/08 7:15 p.m.29 views

CVE-2019-12408

It was discovered that the C++ implementation which underlies the R, Python and Ruby implementations of Apache Arrow 0.14.0 to 0.14.1 had a uninitialized memory bug when building arrays with null values in some cases. This can lead to uninitialized memory being unintentionally shared if Arrow...

7.5CVSS7.9AI score0.03225EPSS
Exploits0References2
OSV
OSV
added 2019/06/20 12:15 a.m.5 views

ALPINE-CVE-2019-12904

In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. The C implementation is used on platforms where an assembly-language implementation is unavailable. NOTE: the vendor's position is...

5.9CVSS6.5AI score0.02063EPSS
Exploits0References1
Prion
Prion
added 2019/06/20 12:15 a.m.18 views

Design/Logic Flaw

DISPUTED In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. The C implementation is used on platforms where an assembly-language implementation is unavailable. NOTE: the vendor's...

4.3CVSS5.6AI score0.02063EPSS
Exploits0References5Affected Software2
UbuntuCve
UbuntuCve
added 2019/06/20 12:15 a.m.39 views

CVE-2019-12904

In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. The C implementation is used on platforms where an assembly-language implementation is unavailable. NOTE: the vendor's position is...

5.9CVSS6.8AI score0.02063EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2019/06/19 11:34 p.m.47 views

CVE-2019-12904

In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. The C implementation is used on platforms where an assembly-language implementation is unavailable. NOTE: the vendor's position is...

5.9CVSS5.8AI score0.02063EPSS
Exploits0
OpenVAS
OpenVAS
added 2019/05/07 12:0 a.m.71 views

Fedora Update for createrepo_c FEDORA-2019-1fccede810

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS8.2AI score0.0571EPSS
Exploits0References2
Fedora
Fedora
added 2019/02/21 2:58 a.m.35 views

[SECURITY] Fedora 29 Update: createrepo_c-0.12.1-1.fc29

C implementation of Createrepo. A set of utilities createrepoc, mergerepoc, modifyrepoc for generating a common metadata repository from a directory of rpm packages and maintaining it...

9.3CVSS2.3AI score0.0571EPSS
Exploits0
Fedora
Fedora
added 2018/08/19 12:22 a.m.45 views

[SECURITY] Fedora 27 Update: libgit2-0.26.6-1.fc27

libgit2 is a portable, pure C implementation of the Git core methods provided as a re-entrant linkable library with a solid API, allowing you to write native speed custom Git applications in any language with bindings...

8.1CVSS2.4AI score0.49188EPSS
Exploits10
Fedora
Fedora
added 2018/08/09 5:42 p.m.42 views

[SECURITY] Fedora 28 Update: libgit2-0.26.6-1.fc28

libgit2 is a portable, pure C implementation of the Git core methods provided as a re-entrant linkable library with a solid API, allowing you to write native speed custom Git applications in any language with bindings...

8.1CVSS2.4AI score0.49188EPSS
Exploits10
Fedora
Fedora
added 2018/03/30 1:37 p.m.11 views

[SECURITY] Fedora 28 Update: mozjs52-52.7.2-1.fc28

SpiderMonkey is the code-name for Mozilla Firefox's C++ implementation of JavaScript. It is intended to be embedded in other applications that provide host environments for JavaScript...

1.2AI score
Exploits0
Fedora
Fedora
added 2018/03/30 1:31 p.m.44 views

[SECURITY] Fedora 28 Update: libgit2-0.26.3-1.fc28

libgit2 is a portable, pure C implementation of the Git core methods provided as a re-entrant linkable library with a solid API, allowing you to write native speed custom Git applications in any language with bindings...

6.5CVSS2.4AI score0.01903EPSS
Exploits0
myhack58
myhack58
added 2017/07/02 12:0 a.m.108 views

Using the CTS for vulnerability detection and principles of analysis-vulnerability warning-the black bar safety net

360 Vulpecker team Membership 360 Information Security Department, committed to the Android application and the system-layer vulnerability discovery as well as other Android security research. We passed on the CTS frame of the research, the preparation of a vulnerability detection aspect of the...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2016/06/02 12:0 a.m.30 views

Websockify (C Implementation) 0.8.0 - Buffer Overflow (PoC)

Websockify C Implementation 0.8.0 - Buffer Overflow PoC Advisory: Websockify: Remote Code Execution via Buffer Overflow RedTeam Pentesting discovered a buffer overflow vulnerability in the C implementation of Websockify, which allows attackers to execute arbitrary code. Details ======= Product:...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2016/06/02 12:0 a.m.58 views

Websockify (C Implementation) 0.8.0 - Buffer Overflow (PoC)

Advisory: Websockify: Remote Code Execution via Buffer Overflow RedTeam Pentesting discovered a buffer overflow vulnerability in the C implementation of Websockify, which allows attackers to execute arbitrary code. Details ======= Product: Websockify C implementation Affected Versions: all versio...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2016/05/18 11:30 p.m.31 views

EhTrace - Tool for Tracing Execution of Binaries on Windows

Eh'Trace pronounced ATrace is a binary tracing tool for Windows. Implemented in C but has some interesting properties that may make it suitable for tracing binaries when other methods are not sufficient, in particular EhTrace does not require changes to a binary to enable traces, despite being ab...

7.5AI score
Exploits0References3
OSV
OSV
added 2015/03/31 2:59 p.m.20 views

PYSEC-2015-35

Buffer overflow in the C implementation of the applydelta function in pack.c in Dulwich before 0.9.9 allows remote attackers to execute arbitrary code via a crafted pack file...

7.5CVSS8AI score0.03375EPSS
Exploits0References3
Rows per page
Query Builder