4 matches found
CLSA-2025-1747855403 squid: Fix of 6 CVEs
CVE-2021-28651: fix memory leak in RFC 2169 response parsing - CVE-2021-28652: fix broken cache manager URL parsing - CVE-2021-31806: fix memory management bug - CVE-2021-31807: fix integer overflow problem - CVE-2021-31808: fix input validation bug - CVE-2021-33620: handle more partial responses...
PYSEC-2019-109
DISPUTED A deserialization vulnerability exists in the way parso through 0.4.0 handles grammar parsing from the cache. Cache loading relies on pickle and, provided that an evil pickle can be written to a cache grammar file and that its parsing can be triggered, this flaw leads to Arbitrary Code...
UBUNTU-CVE-2019-12760
DISPUTED A deserialization vulnerability exists in the way parso through 0.4.0 handles grammar parsing from the cache. Cache loading relies on pickle and, provided that an evil pickle can be written to a cache grammar file and that its parsing can be triggered, this flaw leads to Arbitrary Code...
Deserialization of untrusted data
DISPUTED A deserialization vulnerability exists in the way parso through 0.4.0 handles grammar parsing from the cache. Cache loading relies on pickle and, provided that an evil pickle can be written to a cache grammar file and that its parsing can be triggered, this flaw leads to Arbitrary Code...