SUSE CVE-2022-30115

Using its HSTS support, curl can be instructed to use HTTPS directly insteadof using an insecure clear-text HTTP step even when HTTP is provided in theURL. This mechanism could be bypassed if the host name in the given URL used atrailing dot while not using one when it built the HSTS cache. Or th...

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox prior to version 105, which stems from a potentially exploitable crash caused by an inconsistency between instructions and data in the data cache when...

PT-2022-2697

Name of the Vulnerable Software and Affected Versions cURL affected versions not specified Description The issue is related to the implementation of the HSTS HTTP Strict Transport Security mechanism in the cURL utility. It could be bypassed if the hostname in the given URL used a trailing dot whi...

Cosmos Network Ethermint Security Vulnerability

KamiD Cosmos Network Ethermint is a pre-alpha software from the US-based KamiD Personal Organization. It provides a scalable, high-throughput proof-of-stake blockchain that is fully compatible and interoperable with Ether.Cosmos Network Ethermint is a scalable, high-throughput proof-of-stake...