9526 matches found
Mozilla: Denial of Service via complex regular expressions
regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those tunable mitigations already provide sane defaults to preven...
Mozilla: Denial of Service via complex regular expressions
regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those tunable mitigations already provide sane defaults to preven...
Mozilla: Denial of Service via complex regular expressions
regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those tunable mitigations already provide sane defaults to preven...
The vulnerability of the HTTP library for Rust Hyper, related to integer overflow, allows attackers to compromise data integrity and cause service failures.
The vulnerability of the HTTP library for Rust Hyper is related to integer overflow. Exploiting this vulnerability allows a remote attacker to compromise data integrity and cause service failures...
The vulnerability of the Rust stack generator library “Generator-rs” lies in improper type conversion, which allows attackers to trigger a service failure.
The vulnerability of the Rust generator library, Generator-rs, is related to the lack of restrictions on the use of types that are not of the Send type. Exploiting this vulnerability allows a remote attacker to cause a service failure...
CVE-2022-21658 affecting package rust for versions less than 1.59.0-1
CVE-2022-21658 affecting package rust for versions less than 1.59.0-1. An upgraded version of the package is available that resolves this issue...
Researchers Connect BlackCat Ransomware with Past BlackMatter Malware Activity
Cybersecurity researchers have uncovered further links between BlackCat aka ALPHV and BlackMatter ransomware families, the former of which emerged as a replacement following international scrutiny last year. "At least some members of the new BlackCat group have links to the BlackMatter group,...
Mozilla: Denial of Service via complex regular expressions
regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those tunable mitigations already provide sane defaults to preven...
Mozilla: Denial of Service via complex regular expressions
regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those tunable mitigations already provide sane defaults to preven...
Mozilla: Denial of Service via complex regular expressions
regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those tunable mitigations already provide sane defaults to preven...
Mozilla: Denial of Service via complex regular expressions
regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those tunable mitigations already provide sane defaults to preven...
Mozilla: Denial of Service via complex regular expressions
regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those tunable mitigations already provide sane defaults to preven...
OPENSUSE-SU-2022:1127-1 Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.8.0 ESR bsc1197903: MFSA 2022-14 bsc1197903 CVE-2022-1097: Fixed memory safety violations that could occur when PKCS11 tokens are removed while in use CVE-2022-28281: Fixed an out of bounds write due to...
A Bad Luck BlackCat
In early December 2021, a new ransomware actor started advertising its services on a Russian underground forum. They presented themselves as ALPHV, a new generation Ransomware-as-a-Service RaaS group. Shortly afterwards, they dialed up their activity, infecting numerous corporate victims around t...
SWHKD Resource Management Error Vulnerability
SWHKD is a display protocol-independent hotkey daemon made in Rust. SWHKD has a security vulnerability that stems from insecure parsing and can be exploited by an attacker to cause a simple denial of service memory exhaustion when attempting to parse large or unlimited files such as blocks or...
The vulnerability of the Generic-array module in Rust, related to type handling errors, allows attackers to cause service failures.
The vulnerability of the Generic-array module in Rust is related to the increased lifespan of the arr! macro. Exploiting this vulnerability allows a remote attacker to cause service failures...
CVE-2022-24713
regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those tunable mitigations already provide sane defaults to preven...
AZL-41093 CVE-2022-1201 affecting package rust for versions less than 1.75.0-1
NULL Pointer Dereference in mrbvmexec with super in GitHub repository mruby/mruby prior to 3.2. This vulnerability is capable of making the mruby interpreter crash, thus affecting the availability of the system...
SWHKD Denial of Service Vulnerability
SWHKD is a display protocol independent hotkey daemon made in Rust. A denial of service vulnerability exists in SWHKD version 1.1.5, which stems from the insecure use of the /tmp/swhks.pid pathname and can be exploited by an attacker to potentially cause a denial of service...
The vulnerability of the HTTP library for Rust Hyper, related to shortcomings in HTTP request processing, allows attackers to compromise data integrity.
The vulnerability of the HTTP library for Rust Hyper relates to the improper handling of requests with a “+” prefix in the Content-Length header. Exploiting this vulnerability allows an attacker to compromise data integrity...