11 matches found
EUVD-2019-0399
Malware in sbrugna...
EUVD-2022-4105
Malicious code in bioql PyPI...
CVE-2024-45552 Buffer Over-read in Data Network Stack & Connectivity
Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesnt adhere to RFC standards...
golang: net/mail: comments in display names are incorrectly handled
A flaw was found in Go's net/mail standard library package. The ParseAddressList function incorrectly handles comments text within parentheses within display names. Since this is a misalignment with conforming address parsers, it can result in different trust decisions made by programs using...
BIT-GOLANG-2024-24784 Comments in display names are incorrectly handled in net/mail
The ParseAddressList function incorrectly handles comments text within parentheses within display names. Since this is a misalignment with conforming address parsers, it can result in different trust decisions being made by programs using different parsers...
GO-2024-2609 Comments in display names are incorrectly handled in net/mail
The ParseAddressList function incorrectly handles comments text within parentheses within display names. Since this is a misalignment with conforming address parsers, it can result in different trust decisions being made by programs using different parsers...
go -- multiple vulnerabilities
The Go project reports reports: crypto/x509: Verify panics on certificates with an unknown public key algorithm Verifying a certificate chain which contains a certificate with an unknown public key algorithm will cause Certificate.Verify to panic. net/http: memory exhaustion in...
SUSE CVE-2012-1618
Interaction error in the PostgreSQL JDBC driver before 8.2, when used with a PostgreSQL server with the "standardconformingstrings" option enabled, such as the default configuration of PostgreSQL 9.1, does not properly escape unspecified JDBC statement parameters, which allows remote attackers to...
CVE-2017-10670
An XML External Entity XXE issue exists in OSCI-Transport 1.2 as used in OSCI Transport Library 1.6.1 Java and OSCI Transport Library 1.6 .NET, exploitable by sending a crafted standard-conforming OSCI message from within the infrastructure...
Mandriva Linux Security Advisory : java-1.6.0-openjdk (MDVSA-2013:010)
Multiple security issues were identified and fixed in OpenJDK icedtea6 : - S6563318, CVE-2013-0424: RMI data sanitization - S6664509, CVE-2013-0425: Add logging context - S6664528, CVE-2013-0426: Find log level matching its name or value given at construction time - S6776941: CVE-2013-0427: Impro...
PT-2012-3386 · Postgresql · Postgresql Jdbc Driver
Name of the Vulnerable Software and Affected Versions: PostgreSQL JDBC driver versions prior to 8.2 Description: The issue arises from an interaction error in the PostgreSQL JDBC driver when used with a PostgreSQL server that has the "standard conforming strings" option enabled. This error allows...