4 matches found
Fedora 43 : tinyproxy (2026-d8daf8790f)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-d8daf8790f advisory. Backport upstream fixes for CVE-2026-3945 and CVE-2026-31842. Tenable has extracted the preceding description block directly from the Fedora securit...
Linux Distros Unpatched Vulnerability : CVE-2026-31842
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Tinyproxy through 1.11.3 is vulnerable to HTTP request parsing desynchronization due to a case-sensitive comparison of the Transfer-Encoding header in src/reqs....
CVE-2026-31842
A flaw was found in tinyproxy. A HTTP request parsing desynchronization issue can occur due to a case-sensitive comparison of the Transfer-Encoding header in src/reqs.c. The ischunkedtransfer function uses strcmp to compare the header value against "chunked", even though RFC 7230 specifies that...
CVE-2026-31842
creationtimestamp| type| source ---|---|--- 2026-04-07 12:18:25+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mivr5irynv2p 2026-04-07 12:18:31+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mivr5s6skm2s 2026-04-07 13:16:15+00:00|...