20 matches found
CVE-2026-35346
The comm utility in uutils coreutils silently corrupts data by performing lossy UTF-8 conversion on all output lines. The implementation uses String::fromutf8lossy, which replaces invalid UTF-8 byte sequences with the Unicode replacement character U+FFFD. This behavior differs from GNU comm, whic...
LibreChat 访问控制错误漏洞
LibreChat is an enhanced ChatGPT clone. LibreChat suffers from an Improper Access Control vulnerability that can be exploited by an attacker to corrupt application logic and permissions and allow unauthorized operations...
CVE-2022-23815
Improper bounds checking in APCB firmware may allow an attacker to perform an out of bounds write, corrupting the APCB entry, potentially leading to arbitrary code execution...
Mozilla Firefox Security Advisories (MFSA2023-29, MFSA2023-12) - Windows
Mozilla Firefox is prone to heap buffer overflow vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox...
CVE-2022-32549
A flaw was found in Apache Sling Commons Log. This flaw allows an attacker to benefit from the flaw and forge logs, allowing cover tracks and potentially corrupting log files...
Mageia: Security Advisory (MGASA-2018-0373)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated kernel-tmb packages fix security vulnerabilities
This kernel-tmb update is based on the upstream 4.14.69 and adds additional fixes for the L1TF and Spectre security issues. It also fixes at least the following security issues: Memory leak in the irdabind function in net/irda/afirda.c and later in drivers/staging/irda/net/afirda.c in the Linux...
[SECURITY] [DSA 3409-1] putty security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3409-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 01, 2015 https://www.debian.org/security/faq -...
Debian Security Advisory DSA 3409-1 (putty - security update)
A memory-corrupting integer overflow in the handling of the ECH erase characters control sequence was discovered in PuTTY OpenVAS Vulnerability Test $Id: deb3409.nasl 6609 2017-07-07 12:05:59Z cfischer $ Auto-generated from advisory DSA 3409-1 using nvtgen 1.0 Script version: 1.0 Author: Greenbon...
DSA-3409-1 putty - security update
Bulletin has no description...
Debian: Security Advisory (DSA-3409-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2015-0442)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Netbus 2.0 Pro Directory Listings Disclosure and File Upload Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9475/info It has been reported that Netbus may be prone to a a directory listings disclosure and file upload vulnerability that may allow and attacker to disclose sensitive information and the possibility of corrupting...
[SECURITY] [DSA 2736-1] putty security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2736-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso August 11, 2013 http://www.debian.org/security/faq -...
[ MDVSA-2010:239 ] php
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2010:239 http://www.mandriva.com/security/ Package : php Date : November 19, 2010 Affected: 2009.0, 2010.0, 2010.1, Corporate 4.0, Enterprise Server 5.0 Problem Description: A possible double free flaw was found ...
Mandriva Update for php MDVSA-2010:239 (php)
Check for the Version of php OpenVAS Vulnerability Test Mandriva Update for php MDVSA-2010:239 php Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Mandriva Linux Security Advisory : php (MDVSA-2010:239)
A possible double free flaw was found in the imap extension for php CVE-2010-4150. A GC corrupting flaw was found in Zend/zendgc.c for php-5.3.x that under certain circumstances could cause a segmention fault crash. Packages for 2009.0 are provided as of the Extended Maintenance Program. Please...
Fedora 7 : seamonkey-1.1.9-2.fc7 (2008-3231)
Security update: fix memory corrupting crash and possibly code execution in JavaScript garbage collection CVE-2008-1380, 440518. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clea...
Fedora 8 : seamonkey-1.1.9-2.fc8 (2008-3264)
Security update: fix memory corrupting crash and possibly code execution in JavaScript garbage collection CVE-2008-1380, 440518. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clea...
Calyptix Security Advisory CX-2007-001 - Snort 2.6.1.2 Integer Underflow Vulnerability
Calyptix Security Advisory CX-2007-001 Date: 01/11/2007 http://www.calyptix.com/ http://labs.calyptix.com/advisories/CX-2007-01.txt Overview Snort 2.6.1.2 is vulnerable to an integer underflow that allows a remote attacker to cause Snort to read beyond a specified length of memory, potentially...