2 matches found
AZL-31097 CVE-2023-41175 affecting package libtiff for versions less than 4.6.0-1
A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c. This flaw allows remote attackers to cause a denial of service or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow...
AZL-41422 CVE-2020-28851 affecting package multus for versions less than 4.0.2-1
In x/text in Go 1.15.4, an "index out of range" panic occurs in language.ParseAcceptLanguage while parsing the -u- extension. x/text/language is supposed to be able to parse an HTTP Accept-Language header...