Lucene search
K

89 matches found

OSV
OSV
added 2020/08/18 4:18 a.m.4 views

OPENSUSE-SU-2020:1230-1 Security update for balsa

This update for balsa fixes the following issues: - CVE-2020-16118: Fixed a NULL pointer dereference boo1174711. This update was imported from the openSUSE:Leap:15.1:Update update project...

7.5CVSS7.5AI score0.0205EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2020/08/18 12:0 a.m.20 views

openSUSE Security Update : balsa (openSUSE-2020-1207)

This update for balsa fixes the following issues : - CVE-2020-16118: Fixed a NULL pointer dereference boo1174711. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2020-1207. The text description of this...

7.5CVSS7.2AI score0.0205EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
added 2020/08/18 12:0 a.m.38 views

Security update for balsa (moderate)

openSUSE Security Update: Security update for balsa Announcement ID: openSUSE-SU-2020:1230-1 Rating: moderate References: 1174711 Cross-References: CVE-2020-16118 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update for...

7.5CVSS7.4AI score0.0205EPSS
Exploits1References1
OSV
OSV
added 2020/08/16 11:9 a.m.5 views

MGASA-2020-0314 Updated glib-networking packages fix security vulnerability

The updated packages fix a security vulnerability: In GNOME glib-networking through 2.64.2, the implementation of GTlsClientConnection skips hostname verification of the server's TLS certificate if the application fails to specify the expected server identity. This is in contrast to its intended...

6.5CVSS6.6AI score0.01933EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2020/08/15 12:0 a.m.12 views

openSUSE: Security Advisory for balsa (openSUSE-SU-2020:1207-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.6AI score0.0205EPSS
Exploits1References2
OSV
OSV
added 2020/08/14 4:20 p.m.2 views

OPENSUSE-SU-2020:1207-1 Security update for balsa

This update for balsa fixes the following issues: - CVE-2020-16118: Fixed a NULL pointer dereference boo1174711...

7.5CVSS7.5AI score0.0205EPSS
Exploits1References3
OPENSUSE Linux
OPENSUSE Linux
added 2020/08/14 12:0 a.m.73 views

Security update for balsa (moderate)

openSUSE Security Update: Security update for balsa Announcement ID: openSUSE-SU-2020:1207-1 Rating: moderate References: 1174711 Cross-References: CVE-2020-16118 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for balsa fixe...

7.5CVSS7.4AI score0.0205EPSS
Exploits1References1
OSV
OSV
added 2020/07/29 6:15 p.m.21 views

CVE-2020-16118

In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imapmboxconnect in libbalsa/imap/imap-handle.c...

7.5CVSS6.7AI score
Exploits0References4
OSV
OSV
added 2020/07/29 6:15 p.m.6 views

DEBIAN-CVE-2020-16118

In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imapmboxconnect in libbalsa/imap/imap-handle.c...

7.5CVSS7.3AI score0.0205EPSS
Exploits1References1
NVD
NVD
added 2020/07/29 6:15 p.m.18 views

CVE-2020-16118

In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imapmboxconnect in libbalsa/imap/imap-handle.c...

7.5CVSS7.4AI score0.0205EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2020/07/29 6:15 p.m.19 views

CVE-2020-16118

In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imapmboxconnect in libbalsa/imap/imap-handle.c...

7.5CVSS7.1AI score0.0205EPSS
Exploits1References3
Prion
Prion
added 2020/07/29 6:15 p.m.15 views

Null pointer dereference

In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imapmboxconnect in libbalsa/imap/imap-handle.c...

5CVSS7.4AI score0.0205EPSS
Exploits1References4Affected Software3
OSV
OSV
added 2020/07/29 6:15 p.m.3 views

UBUNTU-CVE-2020-16118

In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imapmboxconnect in libbalsa/imap/imap-handle.c...

7.5CVSS7.1AI score0.0205EPSS
Exploits1References4
Cvelist
Cvelist
added 2020/07/29 5:58 p.m.25 views

CVE-2020-16118

In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imapmboxconnect in libbalsa/imap/imap-handle.c...

7.4AI score0.0205EPSS
Exploits1References4
CVE
CVE
added 2020/07/29 5:58 p.m.148 views

CVE-2020-16118

CVE-2020-16118 affects GNOME Balsa prior to 2.6.0. A malicious server operator or MiTM can trigger a NULL pointer dereference in libbalsa/imap/imap-handle.c by sending a PREAUTH response to imap_mbox_connect, causing a client crash. Several connected sources confirm a fix was released in openSUSE...

7.5CVSS7.3AI score0.0205EPSS
Exploits1References4Affected Software1
Debian CVE
Debian CVE
added 2020/07/29 5:58 p.m.18 views

CVE-2020-16118

In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imapmboxconnect in libbalsa/imap/imap-handle.c...

7.5CVSS7.3AI score0.0205EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2020/07/29 12:0 a.m.5 views

PT-2020-14758 · Gnome +1 · Gnome Balsa +1

Name of the Vulnerable Software and Affected Versions: GNOME Balsa versions prior to 2.6.0 Description: A malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imap mbox connect in libbalsa/imap/imap-handle.c. This...

7.5CVSS7.3AI score0.0205EPSS
Exploits1References18
OSV
OSV
added 2020/05/28 12:15 p.m.7 views

AZL-6440 CVE-2020-13645 affecting package glib-networking for versions less than 2.59.1-8

In GNOME glib-networking through 2.64.2, the implementation of GTlsClientConnection skips hostname verification of the server's TLS certificate if the application fails to specify the expected server identity. This is in contrast to its intended documented behavior, to fail the certificate...

6.5CVSS6.8AI score0.01933EPSS
Exploits1References1
OSV
OSV
added 2020/05/28 12:15 p.m.21 views

CVE-2020-13645

In GNOME glib-networking through 2.64.2, the implementation of GTlsClientConnection skips hostname verification of the server's TLS certificate if the application fails to specify the expected server identity. This is in contrast to its intended documented behavior, to fail the certificate...

6.5CVSS6.5AI score
Exploits0References8
OSV
OSV
added 2020/05/28 12:15 p.m.4 views

UBUNTU-CVE-2020-13645

In GNOME glib-networking through 2.64.2, the implementation of GTlsClientConnection skips hostname verification of the server's TLS certificate if the application fails to specify the expected server identity. This is in contrast to its intended documented behavior, to fail the certificate...

6.5CVSS7AI score0.01933EPSS
Exploits1References3
Rows per page
Query Builder