Moderate: Red Hat Security Advisory: python3.12 security update

An update for python3.12 is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

Moderate: Red Hat Security Advisory: python3.12 security update

An update for python3.12 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

RHEL 8 : python3.12 (RHSA-2026:2419)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:2419 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...

Moderate: Red Hat Security Advisory: python3.11 security update

An update for python3.11 is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

python3.11 security update

An update is available for python3.11. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming languag...

RockyLinux 9 : python3.11 (RLSA-2026:1410)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:1410 advisory. cpython: Excessive read buffering DoS in http.client CVE-2025-13836 cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of...

Moderate: python3.11 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

Rocky Linux 8 : kernel-rt (RLSA-2024:1614)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:1614 advisory. - Integer Overflow or Wraparound vulnerability in openEuler kernel on Linux filesystem modules allows Forced Integer Overflow.This issue affects openEul...

CLSA-2021-1635430087 Fix CVE(s): CVE-2021-3737, CVE-2021-3733

SECURITY UPDATE: Denial of service - debian/patches/CVE-2021-3737-.patch: Fix http client infinite line reading DoS after a HTTP 100 continue in Lib/http/client.py, Lib/test/testhttplib.py. - CVE-2021-3737 SECURITY UPDATE: Denial of service - debian/patches/CVE-2021-3733.patch: fix a ReDoS in...

SUSE-SU-2018:2796-1 Security update for nodejs6

This update for nodejs6 to version 6.14.4 fixes the following issues: Security issues fixed: CVE-2018-12115: Fixed an out-of-bounds OOB write in Buffer.write for UCS-2 encoding bsc1105019 CVE-2018-0732: Upgrade to OpenSSL 1.0.2p, fixing a client DoS due to large DH parameter bsc1097158 Other issu...

[slackware-security] openssl

New openssl packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/openssl-1.0.2p-i586-1slack14.2.txz: Upgraded. This update fixes two low severity security issues: Client DoS due to large DH paramete...

Internet Bug Bounty: Client DoS due to large DH parameter (CVE-2018-0732)

https://www.openssl.org/news/secadv/20180612.txt OpenSSL Security Advisory 12 June 2018 ======================================== Client DoS due to large DH parameter CVE-2018-0732 ==================================================== Severity: Low During key agreement in a TLS handshake using a DH...

OpenSSL -- Client DoS due to large DH parameter

The OpenSSL project reports: During key agreement in a TLS handshake using a DHE based ciphersuite a malicious server can send a very large prime value to the client. This will cause the client to spend an unreasonably long period of time generating a key for this prime resulting in a hang until...

Vulnerability in OpenSSL - Client DoS due to large DH parameter

During key agreement in a TLS handshake using a DHE based ciphersuite a malicious server can send a very large prime value to the client. This will cause the client to spend an unreasonably long period of time generating a key for this prime resulting in a hang until the client has finished. This...

openSUSE Security Update : mumble (openSUSE-SU-2014:0706-1)

mumble was updated to fix two security issues. - The Mumble client did not properly HTML-escape some external strings before using them in a rich-text HTML context CVE-2014-3756. - SVG images with local file references could trigger client DoS CVE-2014-3755. %NASLMINLEVEL 70300 C Tenable Network...

[oss-security] Mumble 1.2.6: Mumble-SA-2014-005 and Mumble-SA-2014-006

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hi oss-security, The Mumble team has just released Mumble 1.2.6, which contains fixes for the two following vulnerabilities: Mumble-SA-2014-005 http://mumble.info/security/Mumble-SA-2014-005.txt - SVG images with local file references could trigger...

mumble -- multiple vulnerabilities

Mumble reports: SVG images with local file references could trigger client DoS The Mumble client did not properly HTML-escape some external strings before using them in a rich-text HTML context...

realvnc-dos.txt

!/usr/bin/php ?php RealVNC Windows Client DoS AppName: vncviewer.exe AppVer: 4.1.2.0 ModName: vncviewer.exe ModVer: 4.1.2.0 Offset: 000229e0 function vncear $port = "5900"; $ser = socketcreateAFINET, SOCKSTREAM, SOLTCP; socketsetoption$ser,SOLSOCKET,SOREUSEADDR,1; socketbind$ser,"0.0.0.0", $port;...

Fedora Core 5 : openssl-0.9.8a-5.4 (2006-1004)

Thu Sep 28 2006 Tomas Mraz 0.9.8a-5.4 - fix CVE-2006-2937 - mishandled error on ASN.1 parsing 207276 - fix CVE-2006-2940 - parasitic public keys DoS 207274 - fix CVE-2006-3738 - buffer overflow in SSLgetsharedciphers 206940 - fix CVE-2006-4343 - sslv2 client DoS 206940 - Sat Sep 9 2006 Tomas Mraz...

Important openssl security update

0.9.7a-43.14 - fix CVE-2006-2937 - mishandled error on ASN.1 parsing 207276 - fix CVE-2006-2940 - parasitic public keys DoS 207274 - fix CVE-2006-3738 - buffer overflow in SSLgetsharedciphers 206940 - fix CVE-2006-4343 - sslv2 client DoS 206940 0.9.7a-43.11 - fix CVE-2006-4339 - prevent attack on...