5 matches found
EUVD-2022-44912
Malicious code in bioql PyPI...
Low: nginx
Issue Overview: No CVE associated with this advisory Affected Packages: nginx Issue Correction: Run dnf update nginx --releasever 2023.0.20230322 or dnf update --advisory ALAS2023-2023-090 --releasever 2023.0.20230322 to update your system. More information on how to update your system can be fou...
Denial Of Service (DoS)
nginx is vulnerable to denial of service. The module ngxhttpmp4module allows a local attacker to cause a worker process to crash, trigger a memory disclosure by using a specially crafted audio or video file...
PT-2022-5185
Name of the Vulnerable Software and Affected Versions NGINX Open Source versions 1.23.2 and 1.22.1 and earlier NGINX Open Source Subscription versions R2 P1 and R1 P1 and earlier NGINX Plus versions R27 P1 and R26 P1 and earlier Description The issue is related to a buffer-over-read vulnerability...
exempi: Infinite Loop in Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp
An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service infinite loop via crafted XMP data in a .avi file...