10 matches found
EUVD-2023-2573
Malicious code in bioql PyPI...
CVE-2025-9094
A vulnerability was detected in ThingsBoard 4.1. This vulnerability affects unknown code of the component Add Gateway Handler. The manipulation leads to improper neutralization of special elements used in a template engine. The attack can be initiated remotely. The exploit has been disclosed to t...
PT-2025-33619
Name of the Vulnerable Software and Affected Versions: ThingsBoard version 4.1 Description: A vulnerability exists in ThingsBoard that affects unknown code within the Add Gateway Handler component. The issue involves improper neutralization of special elements used in a template engine, allowing...
Denial of Service issue in quinn-proto
Impact Receiving unknown QUIC frames in a QUIC packet could result in a panic. Patches The problem has been fixed in 0.9.5 and 0.10.5 maintenance releases. References Fixed in https://github.com/quinn-rs/quinn/pull/1667, backported in https://github.com/quinn-rs/quinn/pull/1668 and...
GHSA-Q8WC-J5M9-27W3 Denial of Service issue in quinn-proto
Impact Receiving unknown QUIC frames in a QUIC packet could result in a panic. Patches The problem has been fixed in 0.9.5 and 0.10.5 maintenance releases. References Fixed in https://github.com/quinn-rs/quinn/pull/1667, backported in https://github.com/quinn-rs/quinn/pull/1668 and...
DEBIAN-CVE-2023-42805
quinn-proto is a state machine for the QUIC transport protocol. Prior to versions 0.9.5 and 0.10.5, receiving unknown QUIC frames in a QUIC packet could result in a panic. The problem has been fixed in 0.9.5 and 0.10.5 maintenance releases...
CVE-2023-42805 quinn-proto Denial of Service vulnerability
quinn-proto is a state machine for the QUIC transport protocol. Prior to versions 0.9.5 and 0.10.5, receiving unknown QUIC frames in a QUIC packet could result in a panic. The problem has been fixed in 0.9.5 and 0.10.5 maintenance releases...
Updated libpng(12) packages fix security vulnerability
In libpng until version 1.6.35, a wrong calculation of rowfactor in the pngcheckchunklength function pngrutil.c may trigger an integer overflow and resultant divide-by-zero while processing a crafted PNG file, leading to a denial of service. CVE-2018-13785 This update fixes it, also providing the...
CakePHP 2.6.6 and 3.0.6 Released
CakePHP 2.6.6 and 3.0.6 Released The CakePHP core team is ready to announce the immediate availability of CakePHP 2.6.6 and 3.0.6. These are maintenance releases that contain important security fixes. Security Fixes Earlier this week we were notified that RequestHandlerComponent had a vulnerabili...
Security Advisory 0006
Security Advisory 0006 PDF Date: September 29th 2014 Revision | Date | Changes ---|---|--- 1.0 | September 29th 2014 | Initial release 1.1 | September 30th 2014 | Additional details on maintenance releases 1.2 | October 29th 2014 | Additional details on fixed releases 1.3 | November 4th 2014 |...