Remote Memory Disclosure in bittorrent-dht

Versions of bittorrent-dht prior to 5.1.3 are affected by a remote memory disclosure vulnerability. This vulnerability allows an attacker to send a specific series of of messages to a listening peer and get it to reveal internal memory. There are two mitigating factors here, that slightly reduce...

DSA-4754-1 thunderbird - security update

Bulletin has no description...

DLA-2354-1 ndpi - security update

Bulletin has no description...

Multiple vulnerabilities in XOOPS module "XooNIps"

Overview XOOPS module "XooNIps" contains multiple vulnerabilities listed below. SQL injection CWE-89 - CVE-2020-5624 Cross-site Scripting CWE-79 - CVE-2020-5625 Neuroinformatics Unit, Integrative Computational Brain Science Collaboration Division, RIKEN Center for Brain Science reported this...

JVN#40725650: Multiple vulnerabilities in XOOPS module "XooNIps"

XOOPS module "XooNIps" contains multiple vulnerabilities listed below. SQL injectionCWE-89 - CVE-2020-5624 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L| Base Score: 7.3 CVSS v2| AV:N/AC:L/Au:N/C:P/I:P/A:P| Base Score: 7.5 Cross-site Scripting CWE-79 -...

DLA-2325-1 openjdk-8 - security update

Bulletin has no description...

DSA-4741-1 json-c - security update

Bulletin has no description...

DLA-2305-1 transmission - security update

Bulletin has no description...

JVN#73169744: Multiple vulnerabilities in multiple PHP Factory products

Multiple products provided by PHP Factory contain multiple vulnerabilities listed below. Cross-site Request Forgery CWE-352 - CVE-2020-5615 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N| Base Score: 4.3 CVSS v2| AV:N/AC:H/Au:N/C:N/I:P/A:N| Base Score: 2....

DLA-2300-1 kdepim-runtime - security update

Bulletin has no description...

DSA-4735-2 grub2 - regression update

Bulletin has no description...

JVN#48194211: Multiple vulnerabilities in KonaWiki2 and KonaWiki3

KonaWiki2 and KonaWiki3 are lightweight wiki clones that support Japanese wiki notation. KonaWiki2 and KonaWiki3 contain multiple vulnerabilities listed below. KonaWiki2 Cross-site Scripting CWE-79 - CVE-2020-5612 Version| Vector| Score ---|---|--- CVSS v3|...

OPENSUSE-SU-2020:1003-1 Security update for cairo

This update for cairo fixes the following issues: - Fix a memory corruption in pango. - Revert 'Correctly decode Adobe CMYK JPEGs in PDF export'. - Add more FreeeType font color conversions to support COLR/CPAL. - Fix crash when rendering Microsoft's Segoe UI Emoji Regular font. - Fix memory leak...

DSA-4728-1 qemu - security update

Bulletin has no description...

OPENSUSE-SU-2020:0994-1 Security update for slirp4netns

This update for slirp4netns fixes the following issues: - Update to 0.4.7 bsc1172380 libslirp: update to v4.3.1 Fix CVE-2020-10756 Fix configfromoptions to correctly enable ipv6 This update was imported from the SUSE:SLE-15-SP1:Update update project...

DSA-4727-1 tomcat9 - security update

Bulletin has no description...

OPENSUSE-SU-2020:0934-1 Security update for ntp

This update for ntp fixes the following issues: ntp was updated to 4.2.8p15 - CVE-2020-11868: Fixed an issue which a server mode packet with spoofed source address frequently send to the client ntpd could have caused denial of service bsc1169740. - CVE-2018-8956: Fixed an issue which could have...

DSA-4716-1 docker.io - security update

Bulletin has no description...

PT-2020-3064 · Cisco · Cisco Small Business Rv042 Dual Wan Vpn Routers +1

Name of the Vulnerable Software and Affected Versions: Cisco Small Business RV042 Dual WAN VPN Routers affected versions not specified Cisco Small Business RV042G Dual Gigabit WAN VPN Routers affected versions not specified Description: A vulnerability in the web-based management interface could...

DSA-4713-1 firefox-esr - security update

Bulletin has no description...