Lucene search
K

226 matches found

Fedora
Fedora
added 2023/04/04 6:17 p.m.70 views

[SECURITY] Fedora 38 Update: nodejs20-19.8.1-7.fc38

Node.js is a platform built on Chrome's JavaScript runtime \ for easily building fast, scalable network applications. \ Node.js uses an event-driven, non-blocking I/O model that \ makes it lightweight and efficient, perfect for data-intensive \ real-time applications that run across distributed...

7.5CVSS6.6AI score0.02209EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2023/03/06 6:38 p.m.45 views

Moderate: Red Hat Security Advisory: Custom Metrics Autoscaler Operator for Red Hat OpenShift (with security updates)

Custom Metrics Autoscaler Operator for Red Hat OpenShift including security updates. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.9AI score0.04195EPSS
Exploits4References20
SUSE CVE
SUSE CVE
added 2023/02/15 5:45 a.m.4 views

SUSE CVE-2012-3421

The pduread function in pdu.c in libpcp in Performance Co-Pilot PCP before 3.6.5 does not properly time out connections, which allows remote attackers to cause a denial of service pmcd hang by sending individual bytes of a PDU separately, related to an "event-driven programming flaw."...

5CVSS6.8AI score0.03332EPSS
Exploits0References5
Fedora
Fedora
added 2022/11/29 1:28 a.m.38 views

[SECURITY] Fedora 36 Update: nodejs-16.18.1-1.fc36

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

9.1CVSS1.6AI score0.68796EPSS
Exploits4
Fedora
Fedora
added 2022/11/29 1:13 a.m.33 views

[SECURITY] Fedora 37 Update: nodejs-18.12.1-1.fc37

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

9.1CVSS1.6AI score0.68796EPSS
Exploits4
Fedora
Fedora
added 2022/11/29 12:57 a.m.35 views

[SECURITY] Fedora 35 Update: nodejs-16.18.1-1.fc35

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

9.1CVSS1.6AI score0.68796EPSS
Exploits4
OpenVAS
OpenVAS
added 2022/11/29 12:0 a.m.27 views

Fedora: Security Advisory for nodejs (FEDORA-2022-52dec6351a)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.1CVSS7.9AI score0.68796EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2022/11/29 12:0 a.m.33 views

Fedora: Security Advisory for nodejs (FEDORA-2022-1667f7b60a)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.1CVSS7.9AI score0.68796EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2022/11/29 12:0 a.m.28 views

Fedora: Security Advisory for nodejs (FEDORA-2022-de515f765f)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.1CVSS7.9AI score0.68796EPSS
Exploits4References2
Rockylinux
Rockylinux
added 2022/11/15 6:19 a.m.70 views

yajl security update

An update is available for yajl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Yet Another JSON Library YAJL is a small event-driven SAX-style JSON parser...

7.5CVSS8AI score0.03472EPSS
Exploits1
AlmaLinux
AlmaLinux
added 2022/11/15 12:0 a.m.43 views

Moderate: yajl security update

Yet Another JSON Library YAJL is a small event-driven SAX-style JSON parser written in ANSI C, and a small validating JSON generator. Security Fixes: yajl: heap-based buffer overflow when handling large inputs due to an integer overflow CVE-2022-24795 For more details about the security issues,...

7.5CVSS8AI score0.03472EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2022/11/08 9:42 a.m.34 views

Moderate: Red Hat Security Advisory: yajl security update

An update for yajl is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

7.5CVSS7AI score0.03472EPSS
Exploits1References3
Rockylinux
Rockylinux
added 2022/11/08 6:21 a.m.36 views

yajl security update

An update is available for yajl. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Yet Another JSON Library YAJL is a small event-driven SAX-style JSON parser...

7.5CVSS8AI score0.03472EPSS
Exploits1
OSV
OSV
added 2022/11/08 6:21 a.m.25 views

RLSA-2022:7524 Moderate: yajl security update

Yet Another JSON Library YAJL is a small event-driven SAX-style JSON parser written in ANSI C and a small validating JSON generator. Security Fixes: yajl: heap-based buffer overflow when handling large inputs due to an integer overflow CVE-2022-24795 For more details about the security issues,...

5.9CVSS7.2AI score0.03472EPSS
Exploits1References2
OSV
OSV
added 2022/11/08 12:0 a.m.30 views

ALSA-2022:7524 Moderate: yajl security update

Yet Another JSON Library YAJL is a small event-driven SAX-style JSON parser written in ANSI C and a small validating JSON generator. Security Fixes: yajl: heap-based buffer overflow when handling large inputs due to an integer overflow CVE-2022-24795 For more details about the security issues,...

7.5CVSS7.2AI score0.03472EPSS
Exploits1References4
Spring Security Advisories
Spring Security Advisories
added 2022/10/10 7:0 a.m.16 views

Spring Tips: Spring Boot & Apache Kafka

Hi, Spring fans! In this installment of Spring Tips, I look at the venerable Apache Kafka broker and its integrations at various level of abstraction in the Spring Boot ecosystem. Want to learn more about event driven architectures, AOT and GraalVM, Apache Kafka, and Spring Boot? SpringOne 2022 i...

0.6AI score
Exploits0
Spring Security Advisories
Spring Security Advisories
added 2022/10/04 8:0 a.m.17 views

This Week in Spring - October 4th, 2022

Hi, Spring fans! Welcome to another installment of This Week in Spring! Its October 4th, 2022, and Im in Austin, TX, for the new version of show formerly known as the Kafka Summit, here to talk to folks about the amazing opportunities for Spring Boot and Apache Kafka. On the 12th, Ill be in...

7.3AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2022/08/12 12:0 a.m.11 views

Event-Driven Architectures & the Security Implications

This article explores event-driven architecture EDA with a detailed definition and explains how EDA offers many essential benefits to developers. It concludes with an outline of some best practices for mitigating security concerns...

3.5AI score
Exploits0
GitLab Advisory Database
GitLab Advisory Database
added 2022/06/17 12:0 a.m.42 views

Uncontrolled Resource Consumption

Argo Events is an event-driven workflow automation framework for Kubernetes. Prior to version 1.7.1, several HandleRoute endpoints make use of the deprecated ioutil.ReadAll. ioutil.ReadAll reads all the data into memory. As such, an attacker who sends a large request to the Argo Events server wil...

7.5CVSS3.7AI score0.01492EPSS
Exploits0References6Affected Software1
CNVD
CNVD
added 2022/03/04 12:0 a.m.26 views

Twisted has unspecified vulnerabilities

Twisted is an event-driven open source network engine written in Python. Twisted has security vulnerabilities, and no details of the vulnerabilities are currently available...

7.5CVSS2.1AI score0.03608EPSS
Exploits1References1
Rows per page
Query Builder