aviziacomponents (=1.0.1), avz-temp-components (>=1.0.1 <=1.0.6) +8 more potentially affected by CVE-2021-32854 via textangular (>=1.3.11 <=1.5.16)

textangular NPM version =1.3.11, =1.0.1, =1.1.0, =0.1.0, =1.0.1, =1.0.18, =0.0.2, =1.0.0, =1.1.2 Source cves: CVE-2021-32854 Source advisory: OSV:GHSA-7H4W-6P98-R3WX...

Security fix for the ALT Linux 10 package git version 2.33.7-alt1

2.33.7-alt1 built Feb. 20, 2023 Dmitry V. Levin in task 315248 Feb. 6, 2023 Dmitry V. Levin - 2.33.6 - 2.33.7 fixes: CVE-2023-22490, CVE-2023-23946...

Ubuntu: Security Advisory (USN-1719-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-36285

Authenticated Arbitrary File Upload vulnerability in dmitrylitvinov Uploading SVG, WEBP and ICO files plugin = 1.0.1 at WordPress...

CVE-2022-34648

Authenticated author+ Stored Cross-Site Scripting XSS vulnerability in dmitrylitvinov Uploading SVG, WEBP and ICO files plugin = 1.0.1 at WordPress...

Security fix for the ALT Linux 10 package gzip version 1.12-alt1

1.12-alt1 built April 11, 2022 Dmitry V. Levin in task 298175 --- April 8, 2022 Dmitry V. Levin - gzip: v1.10-31-g34db0a2 - v1.12-3-g83c65d1 fixes: CVE-2022-1271...

U.S. Treasury Department Sanctions Russia-based Hydra Darknet Marketplace

The U.S. Treasury Department on Tuesday sanctioned Hydra, the same day German law enforcement authorities disrupted the world's largest and longest-running dark web marketplace following a coordinated operation in partnership with U.S. officials. The sanctions are part of an "international effort...

PT-2021-09: Possibility of authorization in Remote Password mechanism using password hash

The vulnerability of the FX5UC CPU and FX5UJ CPU modules of Mitsubishi Electric FA products is associated with the possibility of using a weak password hash. Exploiting the vulnerability may allow an attacker to use the resulting hash value to recover the password value. Advisory status 15.12.202...

Security fix for the ALT Linux 9 package glibc version 6:2.27-alt13

6:2.27-alt13 built Nov. 23, 2020 Dmitry V. Levin in task 261868 Nov. 16, 2020 Dmitry V. Levin - Updated to glibc-2.27-155-gdaf88b1dd1 from 2.27 branch fixes: CVE-2020-1752, CVE-2020-6096...

Intel® Server Board M10JNP2SB Advisory

Summary: Potential security vulnerabilities in the Intel® Server Board M10JNP2SB may allow escalation of privilege. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2020-8733 Description: Improper buffer restrictions in the firmwar...

Intel® Server Board Families Advisory

Summary: Potential security vulnerabilities in some Intel® Server Board Families may allow escalation of privilege. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2020-12300 Description: Uninitialized pointer in BIOS firmware for...

Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4412-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4412-1 advisory. Matthew Sheets discovered that the SELinux network label handling implementation in the Linux kernel could be coerced into de-referencing a NULL pointer....

USN-4413-1: Linux kernel vulnerabilities

Matthew Sheets discovered that the SELinux network label handling implementation in the Linux kernel could be coerced into de-referencing a NULL pointer. A remote attacker could use this to cause a denial of service system crash. CVE-2020-10711 It was discovered that the SCSI generic sg driver in...

CVE-2020-14931

A stack-based buffer overflow in DMitry Deepmagic Information Gathering Tool 1.3a might allow remote WHOIS servers to execute arbitrary code via a long line in a response that is mishandled by nicformatbuff...

CVE-2020-14931

A stack-based buffer overflow in DMitry Deepmagic Information Gathering Tool 1.3a might allow remote WHOIS servers to execute arbitrary code via a long line in a response that is mishandled by nicformatbuff...

DEBIAN-CVE-2020-14931

A stack-based buffer overflow in DMitry Deepmagic Information Gathering Tool 1.3a might allow remote WHOIS servers to execute arbitrary code via a long line in a response that is mishandled by nicformatbuff...

Stack overflow

A stack-based buffer overflow in DMitry Deepmagic Information Gathering Tool 1.3a might allow remote WHOIS servers to execute arbitrary code via a long line in a response that is mishandled by nicformatbuff...

UBUNTU-CVE-2020-14931

A stack-based buffer overflow in DMitry Deepmagic Information Gathering Tool 1.3a might allow remote WHOIS servers to execute arbitrary code via a long line in a response that is mishandled by nicformatbuff...

CVE-2020-14931

CVE-2020-14931 concerns a stack-based buffer overflow in DMitry (Deepmagic Information Gathering Tool) version 1.3a. The vulnerability can allow remote WHOIS servers to execute arbitrary code when handling a long line in a response, due to improper handling by nic_format_buff. Public sources in t...

CVE-2020-14931

A stack-based buffer overflow in DMitry Deepmagic Information Gathering Tool 1.3a might allow remote WHOIS servers to execute arbitrary code via a long line in a response that is mishandled by nicformatbuff...