3332 matches found
CVE-2021-44686
calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS Regular Expression Denial of Service in htmlpreprocessrules in ebooks/conversion/preprocess.py...
CVE-2021-44686
CVE-2021-44686 affects calibre before 5.32.0. Affected component: html_preprocess_rules in ebooks/conversion/preprocess.py, where a regular expression is vulnerable to ReDoS. Impact is denial of service under crafted input. Mitigation: upgrade calibre to version 5.32.0 or newer (as per linked adv...
openSUSE: Security Advisory for python-Pygments (openSUSE-SU-2021:1521-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2021:1521-1 Security update for python-Pygments
This update for python-Pygments fixes the following issues: - CVE-2021-27291: Fixed ReDoS via crafted malicious input bsc1184812. This update was imported from the SUSE:SLE-15-SP1:Update update project...
Security update for python-Pygments (important)
openSUSE Security Update: Security update for python-Pygments Announcement ID: openSUSE-SU-2021:1521-1 Rating: important References: 1184812 Cross-References: CVE-2021-27291 CVSS scores: CVE-2021-27291 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-27291 SUSE: 7.5...
XStream: ReDoS vulnerability
XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability which may allow a remote attacker to occupy a thread that consumes maximum CPU time and will never return. No user is affected, who followed the recommendation to setup...
SUSE SLED15 / SLES15 Security Update : python-Pygments (SUSE-SU-2021:3839-1)
The remote SUSE Linux SLED15 / SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2021:3839-1 advisory. - In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming languages rely heavily on regular expressions. Some of the regular...
openSUSE: Security Advisory for python-Pygments (openSUSE-SU-2021:3839-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for python-sqlparse (openSUSE-SU-2021:3857-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for python-Pygments (openSUSE-SU-2021:3841-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2021:3857-1 Security update for python-sqlparse
This update for python-sqlparse fixes the following issues: - CVE-2021-32839: Fixed ReDoS via regular expression in StripComments filter bsc1190741...
SUSE-SU-2021:3857-1 Security update for python-sqlparse
This update for python-sqlparse fixes the following issues: - CVE-2021-32839: Fixed ReDoS via regular expression in StripComments filter bsc1190741...
SUSE-SU-2021:3841-1 Security update for python-Pygments
This update for python-Pygments fixes the following issues: - CVE-2021-27291: Fixed ReDoS via crafted malicious input bsc1184812...
OPENSUSE-SU-2021:3841-1 Security update for python-Pygments
This update for python-Pygments fixes the following issues: - CVE-2021-27291: Fixed ReDoS via crafted malicious input bsc1184812...
SUSE-SU-2021:3840-1 Security update for python-Pygments
This update for python-Pygments fixes the following issues: - CVE-2021-27291: Fixed ReDoS via crafted malicious input bsc1184812...
OPENSUSE-SU-2021:3839-1 Security update for python-Pygments
This update for python-Pygments fixes the following issues: - CVE-2021-27291: Fixed ReDoS via crafted malicious input bsc1184812...
SUSE-SU-2021:3839-1 Security update for python-Pygments
This update for python-Pygments fixes the following issues: - CVE-2021-27291: Fixed ReDoS via crafted malicious input bsc1184812...
Regular Expression Denial Of Service (ReDoS)
python-ldap is vulnerable to regular expression denial of service attacks. The vulnerability exists in ldap.schema package which allows an attacker to parse malicious strings to LDAP schema which causes a ReDoS attack...
SUSE: Security Advisory (SUSE-SU-2021:3814-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GHSA-R8WQ-QRXC-HMCM ReDoS in LDAP schema parser
https://github.com/python-ldap/python-ldap/issues/424 Impact The LDAP schema parser of python-ldap 3.3.1 and earlier are vulnerable to a regular expression denial-of-service attack. The issue affects clients that use ldap.schema package to parse LDAP schema definitions from an untrusted source...