EUVD-2018-8004

Malware in sbrugna...

EUVD-2017-16539

Malware in sbrugna...

EUVD-2024-0996

Malicious code in bioql PyPI...

EUVD-2022-24920

Malicious code in bioql PyPI...

openssl: Memory corruption in the ASN.1 encoder

A flaw was found in the way OpenSSL encoded certain ASN.1 data structures. An attacker could use this flaw to create a specially crafted certificate which, when verified or re-encoded by OpenSSL, could cause it to crash, or execute arbitrary code using the permissions of the user running an...

CVE-2016-1280

CVE-2016-1280 affects Juniper Junos OS: remote attackers can bypass certificate validation by presenting a self-signed cert whose issuer name matches a valid Junos CA, impacting certificates used for IKE/IPsec. Affected Junos versions span many 12.x–16.1 releases (e.g., before specific revisions ...

gpgme -- heap-based buffer overflow in gpgsm status handler

Tomas Trnka reports: Gpgme contains a buffer overflow in the gpgsm status handler that could possibly be exploited using a specially crafted certificate...

CVE-2010-0562

The sdump function in sdump.c in fetchmail 6.3.11, 6.3.12, and 6.3.13, when running in verbose mode on platforms for which char is signed, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via an SSL X.509 certificate containing non-printabl...

USN-296-1: firefox vulnerabilities

Jonas Sicking discovered that under some circumstances persisted XUL attributes are associated with the wrong URL. A malicious web site could exploit this to execute arbitrary code with the privileges of the user. MFSA 2006-35, CVE-2006-2775 Paul Nickerson discovered that content-defined setters ...