3 matches found
Dovecot 安全漏洞
Dovecot is Dovecot Open Source an open source IMAP and POP3 mail server based on Linux/UNIX-like systems. A security vulnerability exists in Dovecot that stems from a non-RFC-compliant recognition of the DATA command end symbol, which causes a single message containing the LF DOT LF to be...
tpm: TCG TPM2.0 implementations vulnerable to memory corruption
An out-of-bounds write vulnerability was found in the TPM 2.0's Module Library, which allows the writing of 2-byte data after the end of the TPM command. This flaw may lead to a denial of service or arbitrary code execution within the libtpms scope...
Command Injection
Firejail is vulnerable to command injection. The vulnerability exist because the end-of-option indicator after the --output option is not checked...