68 matches found
EUVD-2018-0377
Malware in sbrugna...
EUVD-2006-2751
Malware in sbrugna...
EUVD-2006-2702
Malware in sbrugna...
EUVD-2021-0511
Malware in sbrugna...
Fedora: Security Advisory for rubygem-redcarpet (FEDORA-2023-44daa9c1d4)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for rubygem-redcarpet (FEDORA-2023-8682a0e17d)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for rubygem-redcarpet (FEDORA-2023-597f13ffb9)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 38 Update: rubygem-redcarpet-3.3.2-26.fc38
A fast, safe and extensible Markdown to XHTML parser...
[SECURITY] Fedora 37 Update: rubygem-redcarpet-3.3.2-26.fc37
A fast, safe and extensible Markdown to XHTML parser...
[SECURITY] Fedora 36 Update: rubygem-redcarpet-3.3.2-26.fc36
A fast, safe and extensible Markdown to XHTML parser...
Fedora 38 : rubygem-redcarpet (2023-44daa9c1d4)
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-44daa9c1d4 advisory. A security flow was found on redcarpet that escaping html was not properly done even if requested on some cases which may cause XSS vulnerability. This issue...
SUSE CVE-2006-2703
The RedCarpet command-line client rug does not verify SSL certificates from a server, which allows remote attackers to read network traffic and execute commands via a man-in-the-middle MITM attack...
SUSE CVE-2006-2752
The RedCarpet /etc/ximian/rcd.conf configuration file in Novell Linux Desktop 9 and SUSE SLES 9 has world-readable permissions, which allows attackers to obtain the rc RedCarpet password...
SUSE CVE-2015-5147
Stack-based buffer overflow in the headeranchor function in the HTML renderer in Redcarpet before 3.3.2 allows attackers to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors...
SUSE CVE-2020-26298
Redcarpet is a Ruby library for Markdown processing. In Redcarpet before version 3.5.1, there is an injection vulnerability which can enable a cross-site scripting attack. In affected versions no HTML escaping was being performed when processing quotes. This applies even when the :escapehtml opti...
Mageia: Security Advisory (MGASA-2015-0206)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2021:3729-1 Security update for ardana-ansible, ardana-monasca, crowbar-openstack, influxdb, kibana, openstack-cinder, openstack-ec2-api, openstack-heat-gbp, openstack-heat-templates, openstack-horizon-plugin-gbp-ui, openstack-keystone, openstack-neutron-gbp, openstack-nova, python-eventlet, rubygem-redcarpet, rubygem-puma
This update for ardana-ansible, ardana-monasca, crowbar-openstack, influxdb, kibana, openstack-cinder, openstack-ec2-api, openstack-heat-gbp, openstack-heat-templates, openstack-horizon-plugin-gbp-ui, openstack-keystone, openstack-neutron-gbp, openstack-nova, python-eventlet, rubygem-redcarpet,...
SUSE-SU-2021:3728-1 Security update for ardana-ansible, ardana-monasca, documentation-suse-openstack-cloud, openstack-ec2-api, openstack-heat-templates, python-Django, python-monasca-common, rubygem-redcarpet, rubygem-puma
This update for ardana-ansible, ardana-monasca, documentation-suse-openstack-cloud, openstack-ec2-api, openstack-heat-templates, python-Django, python-monasca-common, rubygem-redcarpet, rubygem-puma contains the following fixes: Security fixes included in this update: rubygem-redcarpet:...
The vulnerability of the Ruby library for parsing Markdown in HTML Redcarpet, related to the lack of protection for website structure, allows attackers to compromise the integrity of the protected information.
The vulnerability of the Ruby library for parsing Markdown in HTML Redcarpet is related to improper cleaning of input data. Exploiting this vulnerability can allow an attacker to compromise the integrity of the protected information...
OESA-2021-1175 rubygem-redcarpet security update
A fast, safe and extensible Markdown to XHTML parser. Security Fixes: Redcarpet is a Ruby library for Markdown processing. In Redcarpet before version 3.5.1, there is an injection vulnerability which can enable a cross-site scripting attack. In affected versions no HTML escaping was being perform...