EUVD-2020-0958

Malware in sbrugna...

SUSE: Security Advisory (SUSE-SU-2022:2831-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for Recommended (SUSE-SU-2022:2831-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE-SU-2022:2831-1 Recommended update for aws-efs-utils, python-ansi2html, python-py, python-pytest-html, python-pytest-metadata, python-pytest-rerunfailures, python-coverage, python-oniconfig, python-unittest-mixins

This update for aws-efs-utils, python-ansi2html, python-py, python-pytest-html, python-pytest-metadata, python-pytest-rerunfailures fixes the following issues: - Update in SLE-15 bsc1196696, bsc1195916, jscSLE-23972 - Remove redundant python3 dependency from Requires - Update regular expression t...

Regular Expression Denial of Service in ansi2html

The ansi2html package is affected by a regular expression denial of service vulnerability when certain types of user input is passed in. Proof of concept var ansi2html = require'ansi2html' var start = process.hrtime; ansi2html"1111111111111111111111;0000000000000000000000";...

@akryum/hotel (>=0.8.8 <=0.8.12), @bdefore/nivo-patterned-radial-arc (=0.79.1) +19 more potentially affected by CVE-2015-9239 via ansi2html (=0.0.1)

ansi2html NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on ansi2html and may be impacted: - @akryum/hotel =0.8.8, =0.8.7, =2.0.4, =10.3.3, =1.1.0, =1.4.1, =0.9.0-0, =9.12.5, =9.12.9 and more Source cves: CVE-2015-9239 Source advisory:...

GHSA-C2V2-7RCG-2CH7 Regular Expression Denial of Service in ansi2html

The ansi2html package is affected by a regular expression denial of service vulnerability when certain types of user input is passed in. Proof of concept var ansi2html = require'ansi2html' var start = process.hrtime; ansi2html"1111111111111111111111;0000000000000000000000";...

CVE-2017-9387

An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a shell script called relay.sh which is used for creating new SSH relays for the device so that the device connects to Vera servers. All the parameters passed in this specific script are logged to a...

CVE-2017-9387

An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a shell script called relay.sh which is used for creating new SSH relays for the device so that the device connects to Vera servers. All the parameters passed in this specific script are logged to a...

Cross site scripting

An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a shell script called relay.sh which is used for creating new SSH relays for the device so that the device connects to Vera servers. All the parameters passed in this specific script are logged to a...

ansi2html denial of service vulnerability

ansi2html is a tool for converting text to stylized HTML using ANSI escape sequences. A security vulnerability exists in ansi2html. An attacker can exploit this vulnerability by passing in specific types of user input to cause a denial of service...

CVE-2015-9239

ansi2html is vulnerable to regular expression denial of service ReDoS when certain types of user input is passed in...

CVE-2015-9239

CVE-2015-9239 affects the ansi2html package and is a regular expression denial of service (ReDoS) vulnerability triggered by certain types of user input. The connected advisories document a PoC and confirm the issue, with CVSS v3.1 base score 7.5 (HIGH) and High availability impact per the NVD en...

CVE-2015-9239

ansi2html is vulnerable to regular expression denial of service ReDoS when certain types of user input is passed in...

Regular Expression Denial of Service

Overview The ansi2html package is affected by a regular expression denial of service vulnerability when certain types of user input is passed in. Proof of concept var ansi2html = require'ansi2html' var start = process.hrtime; ansi2html"1111111111111111111111;0000000000000000000000";...