271 matches found
Improper Certificate Validation
org.opensearch.dataprepper.plugins:geoip-processor is vulnerable to Improper Certificate Validation. The vulnerability is due to the use of deprecated "SSL" when creating SSL contexts, which allows an attacker to potentially force negotiation of outdated and insecure SSL protocols, increasing the...
[SECURITY] Fedora 43 Update: suricata-7.0.13-1.fc43
The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...
[SECURITY] Fedora 42 Update: suricata-7.0.12-1.fc42
The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...
GeoIP processor disables SSL certificate validation when downloading databases
Impact The GeoIP processor in Data Prepper was configured to trust all SSL certificates and disable hostname verification when downloading GeoIP databases from HTTP URLs, making downloads vulnerable to man-in-the-middle attacks. The GeoIP processor included a custom SSL implementation that...
GHSA-3XGR-H5HQ-7299 GeoIP processor disables SSL certificate validation when downloading databases
Impact The GeoIP processor in Data Prepper was configured to trust all SSL certificates and disable hostname verification when downloading GeoIP databases from HTTP URLs, making downloads vulnerable to man-in-the-middle attacks. The GeoIP processor included a custom SSL implementation that...
OpenSearch Data Prepper uses deprecated SSL protocol identifier
Impact The GeoIP processor and Kafka source and buffer were using the deprecated "SSL" protocol identifier when creating SSL contexts, potentially allowing the use of insecure SSL protocols instead of modern TLS versions. Multiple Data Prepper plugins used SSLContext.getInstance"SSL" which could...
GHSA-28GG-8QQJ-FHH5 OpenSearch Data Prepper uses deprecated SSL protocol identifier
Impact The GeoIP processor and Kafka source and buffer were using the deprecated "SSL" protocol identifier when creating SSL contexts, potentially allowing the use of insecure SSL protocols instead of modern TLS versions. Multiple Data Prepper plugins used SSLContext.getInstance"SSL" which could...
Improper Certificate Validation
Overview org.opensearch.dataprepper.plugins:geoip-processor is a Data Prepper project: geoip-processor Affected versions of this package are vulnerable to Improper Certificate Validation in the SSL certificate validation process when the cert parameter is not explicitly provided. An attacker can...
[SECURITY] Fedora 41 Update: rust-maxminddb-0.26.0-1.fc41
Library for reading MaxMind DB format used by GeoIP2 and GeoLite2...
EUVD-2018-17290
Malware in sbrugna...
EUVD-2007-0163
Malware in sbrugna...
EUVD-2020-1084
Malware in sbrugna...
EUVD-2007-5684
Malware in sbrugna...
EUVD-2014-8516
Malware in sbrugna...
EUVD-2019-0283
Malware in sbrugna...
CVE-2025-47906 vulnerabilities
Vulnerabilities for packages: hivemind, vexctl, ctop, terraform-provider-time, dagdotdev, sftpgo-plugin-geoipfilter, sftpgo-plugin-pubsub, custom-pod-autoscaler-operator, cloud-provider-aws, kuberay-operator, falco, grafana-operator, shfmt, octo-sts, addon-resizer, gitlab-runner,...
[SECURITY] Fedora 42 Update: suricata-7.0.11-1.fc42
The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...
[SECURITY] Fedora 42 Update: suricata-7.0.10-1.fc42
The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...
[SECURITY] Fedora 40 Update: suricata-7.0.10-1.fc40
The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...
[SECURITY] Fedora 41 Update: suricata-7.0.10-1.fc41
The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...