Lucene search
+L

148 matches found

Prion
Prion
added 2021/07/12 1:15 p.m.18 views

Input validation

Fossil before 2.14.2 and 2.15.x before 2.15.2 often skips the hostname check during TLS certificate validation...

5CVSS7.5AI score0.00574EPSS
Exploits0References2Affected Software2
ATTACKERKB
ATTACKERKB
added 2021/07/12 1:15 p.m.5 views

CVE-2021-36377

Fossil before 2.14.2 and 2.15.x before 2.15.2 often skips the hostname check during TLS certificate validation...

7.5CVSS5.3AI score0.00574EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2021/07/12 1:15 p.m.25 views

CVE-2021-36377

Fossil before 2.14.2 and 2.15.x before 2.15.2 often skips the hostname check during TLS certificate validation...

7.5CVSS7.5AI score0.00574EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2021/07/12 1:15 p.m.25 views

CVE-2021-36377

Fossil before 2.14.2 and 2.15.x before 2.15.2 often skips the hostname check during TLS certificate validation...

7.5CVSS7.1AI score0.00574EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/07/12 12:11 p.m.25 views

CVE-2021-36377

Fossil before 2.14.2 and 2.15.x before 2.15.2 often skips the hostname check during TLS certificate validation...

7.7AI score0.00574EPSS
Exploits0References2
CVE
CVE
added 2021/07/12 12:11 p.m.71 views

CVE-2021-36377

CVE-2021-36377 affects Fossil prior to 2.14.2 and 2.15.x before 2.15.2, where TLS hostname verification can be bypassed due to hostname checks being skipped during certificate validation. Impact: potential MITM spoofing of Fossil repositories and information disclosure. Remediation: upgrade Fossi...

7.5CVSS7.4AI score0.00574EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2021/07/12 12:11 p.m.27 views

CVE-2021-36377

Fossil before 2.14.2 and 2.15.x before 2.15.2 often skips the hostname check during TLS certificate validation...

7.5CVSS7.5AI score0.00574EPSS
Exploits0
CNNVD
CNNVD
added 2021/07/12 12:0 a.m.7 views

Fossil 信任管理问题漏洞

Fossil is a simple, highly reliable distributed software configuration management system. A security vulnerability exists in Fossil that stems from a hostname check that is commonly skipped during certificate validation. This issue affects: versions prior to 2.15, versions prior to 2.14. No detai...

7.5CVSS5.6AI score0.00574EPSS
Exploits0References2
Schneier on Security
Schneier on Security
added 2021/06/11 9:18 p.m.19 views

Friday Squid Blogging: Fossil of Squid Eating and Being Eaten

We now have a fossil of a squid eating a crustacean while it is being eaten by a shark. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here...

1AI score
Exploits0
Schneier on Security
Schneier on Security
added 2021/04/02 9:10 p.m.49 views

Friday Squid Blogging: 500-Million-Year-Old Cephalopod

The oldest known cephalopod -- the ancestor of all modern octopuses, squid, cuttlefish and nautiluses -- is 500 million years old. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here...

2.3AI score
Exploits0
Schneier on Security
Schneier on Security
added 2021/03/05 10:7 p.m.54 views

Friday Squid Blogging: Vampire Squid Fossil

A 30-million-year-old vampire squid fossil was found, lost, and then re-found in Hungary. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here...

0.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/12/07 12:0 a.m.30 views

Fedora 32 : fossil (2020-50be892d25)

Upgrade to fossil 2.12.1 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Securit...

8.8CVSS7.8AI score0.03122EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/12/07 12:0 a.m.27 views

Fedora 33 : fossil (2020-ac6cf99f87)

Upgrade to fossil 2.12.1 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Securit...

8.8CVSS7.8AI score0.03122EPSS
Exploits0References2
Fedora
Fedora
added 2020/12/05 1:40 a.m.32 views

[SECURITY] Fedora 33 Update: fossil-2.12.1-1.fc33

Fossil is a simple, high-reliability, distributed software configuration management with distributed bug tracking, distributed wiki and built-in web interface...

8.8CVSS2.7AI score0.03122EPSS
Exploits0
Fedora
Fedora
added 2020/12/05 1:16 a.m.33 views

[SECURITY] Fedora 32 Update: fossil-2.12.1-1.fc32

Fossil is a simple, high-reliability, distributed software configuration management with distributed bug tracking, distributed wiki and built-in web interface...

8.8CVSS2.7AI score0.03122EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/12/05 12:0 a.m.17 views

Fedora: Security Advisory for fossil (FEDORA-2020-50be892d25)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.8AI score0.03122EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/12/05 12:0 a.m.17 views

Fedora: Security Advisory for fossil (FEDORA-2020-ac6cf99f87)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.8AI score0.03122EPSS
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2020/11/03 12:0 a.m.39 views

Fossil: Multiple vulnerabilities

Background Fossil is a simple, high-reliability, distributed software configuration management system. Description Multiple vulnerabilities have been discovered in Fossil. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a...

8.8CVSS3.8AI score0.03122EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/11/03 12:0 a.m.35 views

GLSA-202011-04 : Fossil: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202011-04 Fossil: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Fossil. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could entice a user to open a specially...

8.8CVSS8.2AI score0.03122EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/09/21 12:0 a.m.27 views

openSUSE Security Update : fossil (openSUSE-2020-1478)

This update for fossil fixes the following issues : - fossil 2.12.1 : - CVE-2020-24614: Remote authenticated users with check-in or administrative privileges could have executed arbitrary code boo1175760 - Security fix in the 'fossil git export' command. New 'safety-net' features were added to...

8.8CVSS8.2AI score0.03122EPSS
Exploits0References3
Rows per page
Query Builder