1139 matches found
SUSE-SU-2022:1833-1 Security update for libxml2
This update for libxml2 fixes the following issues: - CVE-2022-29824: Fixed integer overflow leading to out-of-bounds write in buf.c and tree.c bsc1199132. - CVE-2017-16932: Prevent infinite recursion in parameter entities bsc1069689...
Artifex Software Artifex MuJS 安全漏洞
Artifex Software Artifex MuJS is a lightweight JavaScript interpreter from Artifex Software, Inc. that is used to embed into other software to provide script execution functionality.Artifex Software Artifex MuJS version 1.2.0 and earlier versions are vulnerable to denial of service vulnerability,...
Slackware: Security Advisory (SSA:2013-287-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2022-0145 Updated mediawiki packages fix security vulnerability
Title::newMainPage goes into an infinite recursion loop if it points to a local interwiki CVE-2022-28201. Messages widthheight/widthheightpage/nbytes not escaped when used in galleries or Special:RevisionDelete CVE-2022-28202. Requesting Special:NewFiles on a wiki with many file uploads with acto...
PT-2022-18870 · Mediawiki +1 · Mediawiki +1
Name of the Vulnerable Software and Affected Versions: MediaWiki versions prior to 1.35.6 MediaWiki versions 1.36.x prior to 1.36.4 MediaWiki versions 1.37.x prior to 1.37.2 Description: An issue was discovered in MediaWiki where users with the editinterface permission can trigger infinite...
Debian DLA-2972-1 : libxml2 - LTS security update
The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2972 advisory. Five security issues have been discovered in libxml2: XML C parser and toolkit. CVE-2016-9318 Vulnerable versions do not offer a flag directly indicating that the...
JerryScript 缓冲区错误漏洞
JerryScript is a lightweight JavaScript engine from the Jerryscript project. A security vulnerability exists in JerryScript that stems from an infinite recursive call to the new opt function...
Buffer Overflow
Overview Affected versions of this package are vulnerable to Buffer Overflow due to infinite recursion issues in src/dfa/deadrules.cc. Remediation Upgrade re2c to version 3.0 or higher. References - GitHub Commit - GitHub Commit - GitHub Issue...
AZL-45369 CVE-2022-23901 affecting package re2c for versions less than 3.1-4
A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...
CVE-2022-23901
A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...
DEBIAN-CVE-2022-23901
A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...
CVE-2022-23901
A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...
AZL-43948 CVE-2022-23901 affecting package re2c 2.0-1
A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...
CVE-2022-23901
A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...
Stack overflow
A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...
CVE-2022-23901
A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...
UBUNTU-CVE-2022-23901
A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...
CVE-2022-23901
CVE-2022-23901 describes a stack overflow in re2c 2.2 due to infinite recursion in src/dfa/dead_rules.cc. Connected advisories show affected environments (e.g., Amazon Linux 2/ALAS2023-2344 and ALAS2023-438; Azure Linux security update) and fixes upgrading to re2c 3.1.x (e.g., 3.1-2) or later. Th...
CVE-2022-23901
A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...
CVE-2022-23901
A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/deadrules.cc...