UBUNTU-CVE-2021-36691

libjxl v0.5.0 is affected by a Assertion failed issue in lib/jxl/image.cc jxl::PlaneBase::PlaneBase. When encoding a malicous GIF file using cjxl, an attacker can trigger a denial of service...

CVE-2021-36691

CVE-2021-36691 affects libjxl v0.5.0. The issue is an assertion failure in lib/jxl/image.cc jxl::PlaneBase::PlaneBase(), which can be triggered when encoding a malicious GIF file with cjxl, leading to a denial of service. The available connected documents describe the same vulnerability pattern a...

CVE-2021-36691

libjxl v0.5.0 is affected by a Assertion failed issue in lib/jxl/image.cc jxl::PlaneBase::PlaneBase. When encoding a malicous GIF file using cjxl, an attacker can trigger a denial of service...

SUSE-SU-2021:2876-1 Security update for bind

This update for bind fixes the following issues: - CVE-2020-8622: A truncated TSIG response can lead to an assertion failure bsc1175443...

CVE-2021-38385

Tor before 0.3.5.16, 0.4.5.10, and 0.4.6.7 mishandles the relationship between batch-signature verification and single-signature verification, leading to a remote assertion failure, aka TROVE-2021-007...

CVE-2021-38385

Tor before 0.3.5.16, 0.4.5.10, and 0.4.6.7 mishandles the relationship between batch-signature verification and single-signature verification, leading to a remote assertion failure, aka TROVE-2021-007...

CVE-2021-38385

Tor before 0.3.5.16, 0.4.5.10, and 0.4.6.7 mishandles the relationship between batch-signature verification and single-signature verification, leading to a remote assertion failure, aka TROVE-2021-007...

UBUNTU-CVE-2021-38385

Tor before 0.3.5.16, 0.4.5.10, and 0.4.6.7 mishandles the relationship between batch-signature verification and single-signature verification, leading to a remote assertion failure, aka TROVE-2021-007...

CVE-2021-38385

Tor vulnerable in versions before 0.3.5.16, 0.4.5.10, and 0.4.6.7 due to mishandling the relationship between batch-signature and single-signature verification, causing remote assertion failures (TROVE-2021-007). Connected advisories confirm the issue across multiple distributions and recommend u...

Github libjxl 安全漏洞

libjxl is a reference implementation of the JPEG XL image format. libjxl version 0.5.0 contains an assertion failure vulnerability in lib/jxl/image.cc jxl::PlaneBase::PlaneBase. An attacker can exploit the vulnerability to cause a denial of service via a malicious GIF file...

CVE-2021-38385

Tor before 0.3.5.16, 0.4.5.10, and 0.4.6.7 mishandles the relationship between batch-signature verification and single-signature verification, leading to a remote assertion failure, aka TROVE-2021-007...

CVE-2021-38385

Tor before 0.3.5.16, 0.4.5.10, and 0.4.6.7 mishandles the relationship between batch-signature verification and single-signature verification, leading to a remote assertion failure, aka TROVE-2021-007...

CVE-2021-37154

In ForgeRock Access Management AM before 7.0.2, the SAML2 implementation allows XML injection, potentially enabling a fraudulent SAML 2.0 assertion...

CVE-2021-37154

In ForgeRock Access Management AM before 7.0.2, the SAML2 implementation allows XML injection, potentially enabling a fraudulent SAML 2.0 assertion...

CVE-2021-40083

Knot Resolver before 5.3.2 is prone to an assertion failure, triggerable by a remote attacker in an edge case NSEC3 with too many iterations used for a positive wildcard proof...

CVE-2021-40083

Knot Resolver before 5.3.2 is prone to an assertion failure, triggerable by a remote attacker in an edge case NSEC3 with too many iterations used for a positive wildcard proof...

CVE-2021-40083

Knot Resolver before 5.3.2 is prone to an assertion failure, triggerable by a remote attacker in an edge case NSEC3 with too many iterations used for a positive wildcard proof...

Design/Logic Flaw

Knot Resolver before 5.3.2 is prone to an assertion failure, triggerable by a remote attacker in an edge case NSEC3 with too many iterations used for a positive wildcard proof...

CVE-2021-40083

Knot Resolver before 5.3.2 is prone to an assertion failure that can be triggered remotely in a specific edge case: NSEC3 with too many iterations used for a positive wildcard proof. The vulnerability is documented across multiple sources in this CVE, confirming the affected software (Knot Resolv...

CVE-2021-40083

Knot Resolver before 5.3.2 is prone to an assertion failure, triggerable by a remote attacker in an edge case NSEC3 with too many iterations used for a positive wildcard proof...