Lucene search
K

5 matches found

OSV
OSV
added 2026/06/23 12:59 p.m.7 views

JLSEC-2026-624 HTTP/2 client HPACK desynchronization via header blocks for unknown streams in HTTP.jl

Description The HTTP/2 client's processincomingframe! dropped HEADERS/CONTINUATION frames for stream ids absent from conn.streams without passing the header block through the connection's HPACK decoder. Because HPACK's dynamic table is connection-scoped and mutated as a side effect of decoding ea...

5.9AI score
Exploits0References2
CVE
CVE
added 2025/03/12 9:42 a.m.151 views

CVE-2025-21844

CVE-2025-21844 affects the Linux kernel SMB client path. The vulnerability could allow a NULL pointer dereference in the receive_encrypted_standard() path due to missing checks, which could crash the kernel. The fix adds checks for the next_buffer in receive_encrypted_standard() and validates the...

5.5CVSS6.6AI score0.0021EPSS
Exploits0References10Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/02/20 12:0 a.m.22 views

RHEL 8 : libpq (RHSA-2025:1737)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:1737 advisory. The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. Security Fixes: postgresql:...

8.1CVSS8AI score0.89472EPSS
Exploits10References4
RedHat Linux
RedHat Linux
added 2022/05/27 7:2 p.m.39 views

Critical: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

8.8CVSS7.6AI score0.26709EPSS
Exploits0References3
Friends Of PHP
Friends Of PHP
added 2012/11/28 10:4 a.m.10 views

local file access in `Client:send` via manipulation of `$protocol` argument

security fix: hardened the Client::send method against misuse of the $method argument issue 81. Abusing its value, it was possible to force the client to access local files or connect to undesired urls instead of the intended target server's url the one used in the Client constructor. This weakne...

7.3AI score
Exploits0Affected Software1
Rows per page
Query Builder