EUVD-2017-6687

Malware in sbrugna...

EUVD-2022-43535

Malicious code in bioql PyPI...

PT-2025-37464

Name of the Vulnerable Software and Affected Versions Mattermost versions 10.10.x through 10.10.1 Description Mattermost Server instances with shared channels enabled are susceptible to an information disclosure issue. The software fails to properly sanitize user data during shared channel...

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. A security vulnerability exists in Mattermost 10.10.1 and prior versions 10.10.x that stems from user data not being properly cleaned during shared channel member synchronization, which could allow a...

Unspecified Vulnerability in Mattermost (CNVD-2024-35160)

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a security vulnerability that stems from a failure to disable modification of local users when synchronizing users in a shared channel. An attacker could use the vulnerability t...

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a security vulnerability that stems from a failure to disable modification of local users when synchronizing users in a shared channel. An attacker could use the vulnerability t...

Security Bulletin: IBM MQ is affected by a denial of service vulnerability due to an error within the CCDT and channel synchronization logic (CVE-2022-40237)

Summary An issue was identifed within the MQ channel processing when a channel CCDT file contains invalid or corrupted records. Vulnerability Details CVEID:CVE-2022-40237 DESCRIPTION: IBM MQ is vulnerable to a denial of service attack due to an error within the CCDT and channel synchronization...

CVE-2022-40237

IBM MQ for HPE NonStop 8.1.0 is affected by a denial-of-service vulnerability (CVE-2022-40237) caused by an error in the CCDT and channel synchronization logic. IBM’s bulletin (APAR IT43171) fixes this issue for the 8.1 line (8.1.0.12) and related 9.x LTS/CD lines with corresponding updates; reme...

PT-2023-13778 · Ibm · Ibm Mq

Name of the Vulnerable Software and Affected Versions: IBM MQ for HPE NonStop version 8.1.0 Description: The issue is related to a denial of service attack due to an error within the CCDT and channel synchronization logic. Recommendations: For IBM MQ for HPE NonStop version 8.1.0, at the moment,...

IBM MQ 输入验证错误漏洞

IBM MQ IBM WebSphere MQ is a messaging middleware product from International Business Machines IBM. The product focuses on providing a reliable, validated messaging backbone for service-oriented architectures SOA. An input validation error vulnerability exists in IBM MQ for HPE NonStop version...

Updated irssi packages fix security vulnerabilities

While waiting for the channel synchronization, Irssi may incorrectly fail to remove destroyed channels from the query list, resulting in use after free conditions when updating the state later on CVE-2017-15227. When installing themes with unterminated color formatting sequences, Irssi may access...

CVE-2017-15227

Irssi before 1.0.5, while waiting for the channel synchronisation, may incorrectly fail to remove destroyed channels from the query list, resulting in use-after-free conditions when updating the state later on...

ALPINE-CVE-2017-15227

Irssi before 1.0.5, while waiting for the channel synchronisation, may incorrectly fail to remove destroyed channels from the query list, resulting in use-after-free conditions when updating the state later on...

Design/Logic Flaw

Irssi before 1.0.5, while waiting for the channel synchronisation, may incorrectly fail to remove destroyed channels from the query list, resulting in use-after-free conditions when updating the state later on...

CVE-2017-15227

Irssi before 1.0.5, while waiting for the channel synchronisation, may incorrectly fail to remove destroyed channels from the query list, resulting in use-after-free conditions when updating the state later on...

CVE-2017-15227

CVE-2017-15227 affects Irssi before 1.0.5. The vulnerability occurs when waiting for channel synchronization, where destroyed channels may not be removed from the query list, leading to use-after-free during state updates. Documented in multiple advisories (EulerOS, Debian, Red Hat/Nessus feeds) ...

CVE-2017-15227

Irssi before 1.0.5, while waiting for the channel synchronisation, may incorrectly fail to remove destroyed channels from the query list, resulting in use-after-free conditions when updating the state later on...