88 matches found
EUVD-2020-5887
Malware in sbrugna...
EUVD-2007-4988
Malware in sbrugna...
EUVD-2020-8084
Malware in sbrugna...
EUVD-2003-0163
Malware in sbrugna...
EUVD-2003-0294
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2020-16118
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH...
Malicious code in test-mlw2-swoon-balsa-bells-odium (npm)
The package test-mlw2-swoon-balsa-bells-odium was found to contain malicious code...
MAL-2025-36389 Malicious code in test-mlw2-swoon-balsa-bells-odium (npm)
The package test-mlw2-swoon-balsa-bells-odium was found to contain malicious code...
CVE-2020-16118
In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imapmboxconnect in libbalsa/imap/imap-handle.c...
SUSE CVE-2007-5007
Stack-based buffer overflow in the irfetchseq function in balsa before 2.3.20 might allow remote IMAP servers to execute arbitrary code via a long response to a FETCH command...
SUSE CVE-2020-13645
In GNOME glib-networking through 2.64.2, the implementation of GTlsClientConnection skips hostname verification of the server's TLS certificate if the application fails to specify the expected server identity. This is in contrast to its intended documented behavior, to fail the certificate...
SUSE CVE-2020-16118
In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imapmboxconnect in libbalsa/imap/imap-handle.c...
openSUSE: Security Advisory for balsa (openSUSE-SU-2021:1094-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE 15 Security Update : balsa (openSUSE-SU-2021:1094-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1094-1 advisory. - In GNOME glib-networking through 2.64.2, the implementation of GTlsClientConnection skips hostname verification of the server's TLS certificate if...
OPENSUSE-SU-2021:1094-1 Security update for balsa
This update for balsa fixes the following issues: Update to version 2.6.1 - CVE-2020-13645: fix server identity verification boo1172460...
Security update for balsa (moderate)
openSUSE Security Update: Security update for balsa Announcement ID: openSUSE-SU-2021:1094-1 Rating: moderate References: 1172460 Cross-References: CVE-2020-13645 CVSS scores: CVE-2020-13645 NVD : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2020-13645 SUSE: 6.5...
EulerOS Virtualization 3.0.6.6 : glib-networking (EulerOS-SA-2020-2466)
According to the version of the glib-networking package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - In GNOME glib-networking through 2.64.2, the implementation of GTlsClientConnection skips hostname verification of the...
Huawei EulerOS: Security Advisory for glib-networking (EulerOS-SA-2020-1975)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
In GNOME glib-networking through 2.64.2 the implementation of GTlsClientConnection skips hostname verification of the server's TLS certificate if the application fails to specify the expected server identity. This is in contrast to its intended documented behavior to fail the certificate verification. Applications that fail to provide the server identity including Balsa before 2.5.11 and 2.6.x before 2.6.1 accept a TLS certificate if the certificate is valid for any host.
...
OPENSUSE-SU-2020:1230-1 Security update for balsa
This update for balsa fixes the following issues: - CVE-2020-16118: Fixed a NULL pointer dereference boo1174711. This update was imported from the openSUSE:Leap:15.1:Update update project...