Lucene search
+L

101 matches found

openvas
openvas
added 2024/09/10 12:0 a.m.21 views

Fedora: Security Advisory (FEDORA-2023-acbee8f31a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.8AI score0.99999EPSS
Exploits19References15
openvas
openvas
added 2023/11/05 12:0 a.m.36 views

Fedora: Security Advisory for proxygen (FEDORA-2023-7934802344)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.8AI score0.99999EPSS
Exploits19References4
fedora
fedora
added 2023/11/03 7:1 p.m.62 views

[SECURITY] Fedora 39 Update: proxygen-2023.10.16.00-1.fc39

Proxygen comprises the core C++ HTTP abstractions used at Facebook. Internally, it is used as the basis for building many HTTP servers, proxies, and clients. This release focuses on the common HTTP abstractions and our simple HTTPServer framework. Future releases will provide simple client APIs a...

7.5CVSS7.2AI score0.99999EPSS
Exploits19
openvas
openvas
added 2023/10/25 12:0 a.m.31 views

Fedora: Security Advisory for proxygen (FEDORA-2023-17efd3f2cd)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.6AI score0.99999EPSS
Exploits19References4
fedora
fedora
added 2023/10/24 1:23 a.m.49 views

[SECURITY] Fedora 38 Update: proxygen-2023.10.16.00-1.fc38

Proxygen comprises the core C++ HTTP abstractions used at Facebook. Internally, it is used as the basis for building many HTTP servers, proxies, and clients. This release focuses on the common HTTP abstractions and our simple HTTPServer framework. Future releases will provide simple client APIs a...

7.5CVSS7AI score0.99999EPSS
Exploits19
fedora
fedora
added 2023/10/24 1:13 a.m.51 views

[SECURITY] Fedora 37 Update: proxygen-2023.10.16.00-1.fc37

Proxygen comprises the core C++ HTTP abstractions used at Facebook. Internally, it is used as the basis for building many HTTP servers, proxies, and clients. This release focuses on the common HTTP abstractions and our simple HTTPServer framework. Future releases will provide simple client APIs a...

7.5CVSS7AI score0.99999EPSS
Exploits19
nvd
nvd
added 2021/03/15 10:15 p.m.33 views

CVE-2021-24029

A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC session, which causes a crash via a failed assertion. Per QUIC specification, this particular message should be treated as a connection error. This issue affects mvfst versions prior to commit...

7.5CVSS0.01186EPSS
Exploits0References2
osv
osv
added 2021/03/15 10:15 p.m.29 views

CVE-2021-24029

A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC session, which causes a crash via a failed assertion. Per QUIC specification, this particular message should be treated as a connection error. This issue affects mvfst versions prior to commit...

7.5CVSS6.7AI score0.01186EPSS
Exploits0References2
prion
prion
added 2021/03/15 10:15 p.m.25 views

Session fixation

A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC session, which causes a crash via a failed assertion. Per QUIC specification, this particular message should be treated as a connection error. This issue affects mvfst versions prior to commit...

5CVSS7.4AI score0.01186EPSS
Exploits0References2Affected Software2
cve
cve
added 2021/03/15 9:15 p.m.68 views

CVE-2021-24029

Summary of CVE-2021-24029 (mvfst/proxygen) : A specially crafted QUIC message can trigger a crash via a failed assertion in mvfst, treated as a connection error per QUIC spec. The issue affects mvfst versions prior to commit a67083ff4b8dcbb7ee2839da6338032030d712b0 and proxygen versions prior to ...

7.5CVSS7.4AI score0.01186EPSS
Exploits0References2Affected Software2
cvelist
cvelist
added 2021/03/15 9:15 p.m.38 views

CVE-2021-24029

A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC session, which causes a crash via a failed assertion. Per QUIC specification, this particular message should be treated as a connection error. This issue affects mvfst versions prior to commit...

7.6AI score0.01186EPSS
Exploits0References2
cnnvd
cnnvd
added 2021/03/15 12:0 a.m.5 views

Facebook Proxygen 安全漏洞

Facebook Proxygen is a set of open source C++ HTTP libraries from Facebook, Inc. in the United States. A security vulnerability exists in proxygen versions prior to v2021.03.15.00, which originates from a crash via a failed assertion...

7.5CVSS7.4AI score0.01186EPSS
Exploits0References3
cnvd
cnvd
added 2020/05/19 12:0 a.m.11 views

Facebook Proxygen Resource Management Error Vulnerability

Facebook Proxygen is a set of open source C++ HTTP class libraries from the U.S. company Facebook . A resource management error vulnerability exists in the lifecycle management of the request adaptor in versions prior to Facebook Proxygen v2020.05.18.00. An attacker can exploit this vulnerability...

9.8CVSS7.3AI score0.01149EPSS
Exploits0References1
nvd
nvd
added 2020/05/18 10:15 p.m.28 views

CVE-2020-1897

A use-after-free is possible due to an error in lifetime management in the request adaptor when a malicious client invokes request error handling in a specific sequence. This issue affects versions of proxygen prior to v2020.05.18.00...

9.8CVSS9.4AI score0.01149EPSS
Exploits0References1
osv
osv
added 2020/05/18 10:15 p.m.24 views

CVE-2020-1897

A use-after-free is possible due to an error in lifetime management in the request adaptor when a malicious client invokes request error handling in a specific sequence. This issue affects versions of proxygen prior to v2020.05.18.00...

9.8CVSS6.8AI score0.01149EPSS
Exploits0References1
prion
prion
added 2020/05/18 10:15 p.m.19 views

Design/Logic Flaw

A use-after-free is possible due to an error in lifetime management in the request adaptor when a malicious client invokes request error handling in a specific sequence. This issue affects versions of proxygen prior to v2020.05.18.00...

7.5CVSS9.3AI score0.01149EPSS
Exploits0References1Affected Software1
cve
cve
added 2020/05/18 9:30 p.m.103 views

CVE-2020-1897

CVE-2020-1897 affects Facebook Proxygen (open‑source C++ HTTP libraries). The issue is a use‑after‑free caused by faulty lifetime management in the request adaptor when a malicious client triggers request error handling in a specific sequence. Affected versions are prior to Proxygen v2020.05.18.0...

9.8CVSS9.3AI score0.01149EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2020/05/18 9:30 p.m.30 views

CVE-2020-1897

A use-after-free is possible due to an error in lifetime management in the request adaptor when a malicious client invokes request error handling in a specific sequence. This issue affects versions of proxygen prior to v2020.05.18.00...

9.4AI score0.01149EPSS
Exploits0References1
cnvd
cnvd
added 2019/12/06 12:0 a.m.10 views

Facebook Proxygen Resource Management Error Vulnerability

Facebook Proxygen is a set of open source C++ HTTP class libraries from the U.S. company Facebook . A resource management error vulnerability exists in Facebook Proxygen versions v0.29.0 through v2017.04.03.00. The vulnerability stems from the mismanagement of system resources e.g., memory, disk...

9.8CVSS6.6AI score0.01364EPSS
Exploits0References1
nvd
nvd
added 2019/12/04 5:16 p.m.28 views

CVE-2019-11940

In the course of decompressing HPACK inside the HTTP2 protocol, an unexpected sequence of header table resize operations can place the header table into a corrupted state, leading to a use-after-free condition and undefined behavior. This issue affects Proxygen from v0.29.0 until v2017.04.03.00...

9.8CVSS9.5AI score0.01364EPSS
Exploits0References2
Rows per page
Query Builder