18 matches found
CLSA-2026-1777942724 vim: Fix of 3 CVEs
CVE-2021-3928: fix reading uninitialized memory in spell suggestions spellsuggest.c - CVE-2022-1616: fix buffer overflow in invalid command with composing chars exdocmd.c - CVE-2022-1620: fix NULL pointer dereference when using invalid pattern buffer.c...
media: vivid: Change the siize of the composing
...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper handling of the composing size in the vivid driver, which could lead to out-of-bounds writes...
Apache James MIME4J improper input validation vulnerability
Improper input validation allows for header injection in MIME4J library when using MIME4J DOM for composing message. This can be exploited by an attacker to add unintended headers to MIME messages...
CVE-2024-21742
Improper input validation allows for header injection in MIME4J library when using MIME4J DOM for composing message. This can be exploited by an attacker to add unintended headers to MIME messages...
EulerOS 2.0 SP5 : mutt (EulerOS-SA-2024-1153)
According to the versions of the mutt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Null pointer dereference when viewing a specially crafted email in Mutt 1.5.2 1.5.2 1.5.2 1...
EulerOS 2.0 SP11 : mutt (EulerOS-SA-2023-3280)
According to the versions of the mutt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Null pointer dereference when viewing a specially crafted email in Mutt 1.5.2 1.5.2 1.5.2 1...
EulerOS 2.0 SP10 : mutt (EulerOS-SA-2023-3187)
According to the versions of the mutt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Null pointer dereference when viewing a specially crafted email in Mutt 1.5.2 1.5.2 1.5.2 1...
EulerOS 2.0 SP11 : mutt (EulerOS-SA-2023-3252)
According to the versions of the mutt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Null pointer dereference when viewing a specially crafted email in Mutt 1.5.2 1.5.2 1.5.2 1...
CVE-2023-4875
Null pointer dereference when composing from a specially crafted draft message in Mutt 1.5.2 2.2.12...
USN-5613-1: Vim vulnerabilities
It was discovered that Vim was not properly performing bounds checks when executing spell suggestion commands. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2022-0943 It was discovered that Vim was using freed memory when dealing with regula...
CLSA-2022-1653328424 Fixed CVEs in vim: CVE-2022-1616, CVE-2022-1621, CVE-2022-1620, CVE-2022-1629, CVE-2022-1619
CVE-2022-1619: fix going before the command line start with latin1 encoding - CVE-2022-1620: fix NULL pointer dereference when using invalig regexp - CVE-2022-1621: fix to avoid adding invalid bytes with :spellgood - CVE-2022-1629: fix reading past end of line if ended with trailing backslash -...
CLSA-2022-1653006752 Fixed CVEs in vim: CVE-2022-1620, CVE-2022-1616, CVE-2022-1629, CVE-2022-1621, CVE-2022-1619
CVE-2022-1619: fix going before the command line start with latin1 encoding - CVE-2022-1620: fix NULL pointer dereference when using invalig regexp - CVE-2022-1621: fix to avoid adding invalid bytes with :spellgood - CVE-2022-1629: fix reading past end of line if ended with trailing backslash -...
Discourse < 2.7.13 Multiple Vulnerabilities
Discourse is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"; ifdescripti...
Discourse 代码问题漏洞
Discourse is an open source community discussion platform. The platform includes community, email and chat room features.Discourse in versions 2.3.2 and 2.6 has a server-side request forgery vulnerability that can be exploited by attackers to upload images from remote websites when writing emails...
[SECURITY] Fedora 25 Update: rpm-ostree-2017.3-2.fc25
rpm-ostree is a hybrid image/package system. It supports "composing" packages on a build server into an OSTree repository, which can then be replicated by client systems with atomic upgrades. Additionally, unlike many "pure" image systems, with rpm-ostree each client system can layer on additiona...
NCTVideoStudio ActiveX DLLs 1.6 Insecure Method File Creation Exploit
No description provided by source. HTML b NCTVideoStudio ActiveX DLLs Version 1.6 Insecure Method File Creation /b b br/br/ Author : Mountassif Moad a.k.a Stack br/ br/ br/ b/ RegKey Safe for Script: Falsebr/ RegKey Safe for Init: Falsebr/ Implements IObjectSafety: Truebr/ IDisp Safe: Safe for...
GMail Mobile DoS
DoS on large message recevied during composing the message...