MiracleLinux 8 : brotli-1.0.6-3.el8 (AXSA:2021-1864:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1864:02 advisory. brotli: buffer overflow when input chunk is larger than 2GiB CVE-2020-8927 Tenable has extracted the preceding description block directly from the MiracleLin...

TencentOS Server 3: brotli (TSSA-2022:0118)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0118 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

CVE-2020-36846

A buffer overflow, as described in CVE-2020-8927, exists in the embedded Brotli library. Versions of IO::Compress::Brotli prior to 0.007 included a version of the brotli library prior to version 1.0.8, where an attacker controlling the input length of a "one-shot" decompression request to a scrip...

Security update for brotli

This update for brotli fixes the following issues: CVE-2020-8927: Fixed integer overflow when input chunk is larger than 2GiB bsc1175825. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can r...

SUSE-SU-2025:01762-1 Security update for brotli

This update for brotli fixes the following issues: - CVE-2020-8927: Fixed integer overflow when input chunk is larger than 2GiB bsc1175825...

Alibaba Cloud Linux 3 : 0118: brotli (ALINUX3-SA-2022:0118)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2022:0118 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-8927: A buffer overflow exists in the Brot...

NewStart CGSL MAIN 6.02 : brotli Vulnerability (NS-SA-2024-0059)

The remote NewStart CGSL host, running version MAIN 6.02, has brotli packages installed that are affected by a vulnerability: - A buffer overflow flaw was found in the Brotli library where an attacker could control the input length of a one-shot decompression request to a script that can trigger ...

openSUSE Security Advisory (SUSE-SU-2024:1968-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for python (SUSE-SU-2023:3827-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

NewStart CGSL MAIN 6.06 : brotli Vulnerability (NS-SA-2023-0099)

The remote NewStart CGSL host, running version MAIN 6.06, has brotli packages installed that are affected by a vulnerability: - A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a one-shot decompression request to a script can...

CVE-2020-8927

creationtimestamp| type| source ---|---|--- 2023-11-12 17:36:20+00:00| seen| https://t.me/arpsyndicate/121 2023-12-11 02:15:28+00:00| seen| https://t.me/arpsyndicate/1689 2025-05-30 04:01:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqedwihsig2o...

Rocky Linux 8 : .NET 5.0 (RLSA-2022:0830)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:0830 advisory. - A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a one-shot decompression...

Rocky Linux 8 : .NET Core 3.1 (RLSA-2022:0827)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:0827 advisory. - A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a one-shot decompression...

SUSE SLES15 / openSUSE 15 Security Update : python-brotlipy (SUSE-SU-2023:3827-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:3827-1 advisory. - A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a...

SUSE-SU-2023:3827-1 Security update for python-brotlipy

This update for python-brotlipy fixes the following issues: - CVE-2020-8927: Fixed integer overflow when input chunk is larger than 2GiB bsc1175825...

SUSE SLES12 Security Update : python-brotlipy (SUSE-SU-2023:3670-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3670-1 advisory. - A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a one-shot...

SUSE SLES15 Security Update : python-brotlipy (SUSE-SU-2023:3669-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:3669-1 advisory. - A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a one-shot...

SUSE-SU-2023:3670-1 Security update for python-brotlipy

This update for python-brotlipy fixes the following issues: - CVE-2020-8927: Fixed integer overflow when input chunk is larger than 2GiB bsc1175825...

SUSE-SU-2023:3669-1 Security update for python-brotlipy

This update for python-brotlipy fixes the following issues: - CVE-2020-8927: Fixed integer overflow when input chunk is larger than 2GiB bsc1175825...

django-static-compress (=1.0.2), dragg (=0.0.0) +6 more potentially affected by CVE-2020-36846 +1 more via brotli (>=0.6.0 <=1.0.7)

brotli PYPI version =0.6.0, =1.2.3, =0.0.2, =0.0.3 - quart-compress =0.1.0 - vasp-tools =0.1.0 Source cves: CVE-2020-36846, CVE-2020-8927 Source advisory: OSV:GHSA-5V8V-66V8-MWM7...