Axios 安全漏洞

Axios is an open-source HTTP client developed by Axios. Versions prior to Axios 1.15.1 and 0.31.1 contain security vulnerabilities. These vulnerabilities allow attackers to influence the target URL of Axios requests, enabling them to bypass the NOPROXY protection by using any address within the...

WebAssembly 缓冲区错误漏洞

WebAssembly is a binary instruction format for stack-based virtual machines from WebAssembly. A security vulnerability exists in WebAssembly versions prior to 0.31.1 that stems from an out-of-bounds buffer write if the host calls or restores more parameters than the default limit 128 for Wasm...

CVE-2017-5333

Integer overflow in the extractgroupiconcursorresource function in b/wrestool/extract.c in icoutils before 0.31.1 allows local users to cause a denial of service process crash or execute arbitrary code via a crafted executable file...

Matrix Synapse Event Filtering Vulnerability

Matrix is a set of open communication networks of which Synapse is a server implementation. A security vulnerability exists in the 'ongetmissingevents' function in the handlers/federation.py file in Matrix Synapse versions prior to 0.31.1. No details of the vulnerability are provided at this time...

UBUNTU-CVE-2017-5333

Integer overflow in the extractgroupiconcursorresource function in b/wrestool/extract.c in icoutils before 0.31.1 allows local users to cause a denial of service process crash or execute arbitrary code via a crafted executable file...