EUVD-2022-3954

Malicious code in bioql PyPI...

Fedora: Security Advisory for antlrworks (FEDORA-2024-129d8ca6fc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for antlr (FEDORA-2024-129d8ca6fc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 40 Update: jflex-1.7.0-18.fc40

JFlex is a lexical analyzer generator also known as scanner generator for Java, written in Java. It is also a rewrite of the very useful tool JLex which was developed by Elliot Berk at Princeton University. As Vern Paxson states for his C/C++ tool flex: They do not share any code though. JFlex is...

[SECURITY] Fedora 40 Update: antlr-2.7.7-77.fc40

ANTLR, ANother Tool for Language Recognition, formerly PCCTS is a language tool that provides a framework for constructing recognizers, compilers, and translators from grammatical descriptions containing C++ or Java actions You can use PCCTS 1.xx to generate C-based parsers...

cn.hserver:hserver-plugin-beetlsql (>=3.1.1 <=3.2.M2), com.ejdoc:jdocGenerate (>=0.6.2 <=0.6.6) +72 more potentially affected by CVE-2024-22533 via com.ibeetl:beetl-core (>=3.12.0.RELEASE <=3.15.12.RELEASE)

com.ibeetl:beetl-core MAVEN version =3.12.0.RELEASE, =3.1.1, =0.6.2, =2.0.0, =2.6.0-release, =2.6.0, =2.6.0-release, =2.6.0, =3.12.0.RELEASE, =3.15.0.RELEASE, =3.15.0.RELEASE, =3.12.0.RELEASE, =3.14.1.RELEASE, =3.12.0.RELEASE, =3.14.1.RELEASE, =3.14.1.RELEASE, =3.15.12.RELEASE and more Source cve...

PT-2023-35979 · Oracle · Java.Base

Name of the Vulnerable Software and Affected Versions: org.antlr.v4.runtime affected versions not specified Description: A security exception crash has been reported. The crash involves the fromRuleContext function in org.antlr.v4.runtime.atn.PredictionContext, along with weakCompareAndSetInt and...

Spring Data JPA introduces query parser!

The Problem One of Spring Data JPA’s handy features is letting you plugin in custom JPA queries through its @Query annotation. This allows some flexiblity because you are still able to offer sort parameters to the consumers of your app. Check out the example below: interface SampleRepository...

Fedora: Security Advisory for antlr4-project (FEDORA-2022-5ef0bd9a27)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

new packages: antlr

An update is available for antlr. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterprise...

Apache Struts RCE Vulnerability

The TextParseUtil.translateVariables method in Apache Struts 2.x before 2.3.20 allows remote attackers to execute arbitrary code via a crafted OGNL expression with ANTLR tooling...

GHSA-GGMP-FXFG-277R Apache Struts RCE Vulnerability

The TextParseUtil.translateVariables method in Apache Struts 2.x before 2.3.20 allows remote attackers to execute arbitrary code via a crafted OGNL expression with ANTLR tooling...

CVE-2016-3090

The TextParseUtil.translateVariables method in Apache Struts 2.x before 2.3.20 allows remote attackers to execute arbitrary code via a crafted OGNL expression with ANTLR tooling...

CVE-2016-3090

The TextParseUtil.translateVariables method in Apache Struts 2.x before 2.3.20 allows remote attackers to execute arbitrary code via a crafted OGNL expression with ANTLR tooling...