Lucene search
K

30 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/06/03 11:35 a.m.25 views

Security Bulletin: QRadar Suite Software includes components with multiple known vulnerabilities

Summary QRadar Suite Software includes components with known vulnerabilities. These have been addressed in the update. Vulnerability Details CVEID:CVE-2023-43804 DESCRIPTION: urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the Cookie HTTP header special or provide...

8.1CVSS10AI score0.13204EPSS
Exploits7Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2018:0308-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7.8AI score0.79949EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2018:0260-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS7AI score0.13204EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/03/24 12:0 a.m.67 views

Slackware 14.2 / current : gd (SSA:2020-083-01)

New gd packages are available for Slackware 14.2 and -current to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2020-083-01. The text itself is copyright C Slackware Linux, Inc...

9.8CVSS6.6AI score0.65116EPSS
Exploits9References7
RedHat Linux
RedHat Linux
added 2019/08/19 8:42 a.m.202 views

Moderate: Red Hat Security Advisory: rh-php71-php security, bug fix, and enhancement update

An update for rh-php71-php is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.9AI score0.87606EPSS
Exploits30References34
Debian
Debian
added 2019/01/30 8:45 p.m.202 views

[SECURITY] [DLA 1651-1] libgd2 security update

Package : libgd2 Version : 2.1.0-5+deb8u12 CVE ID : CVE-2018-5711 CVE-2018-1000222 CVE-2019-6977 CVE-2019-6978 Several issues in libgd2, a graphics library that allows to quickly draw images, have been found. CVE-2019-6977 A potential double free in gdImagePtr has been reported by Solmaz Salimi...

9.8CVSS9.2AI score0.65116EPSS
Exploits8
OpenVAS
OpenVAS
added 2019/01/30 12:0 a.m.75 views

Debian: Security Advisory (DLA-1651-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.65116EPSS
Exploits8References3
Prion
Prion
added 2019/01/16 7:30 p.m.38 views

Code injection

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.7.24 and prior and 8.0.13 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4CVSS4.8AI score0.03443EPSS
Exploits0References9Affected Software8
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.36 views

SUSE SLES12 Security Update : php7 (SUSE-SU-2018:0308-1)

This update for php7 fixes several issues. These security issues were fixed : - CVE-2018-5712: Prevent reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file that allowed for information disclosure bsc1076220. - CVE-2018-5711: Prevent integer signedness error that coul...

6.1CVSS6.6AI score0.79949EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2018/10/26 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-3755-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.13204EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2018/09/17 12:0 a.m.30 views

Fedora Update for gd FEDORA-2018-bb7f3f7ecf

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.13204EPSS
Exploits1References2
Mageia
Mageia
added 2018/09/02 7:7 p.m.41 views

Updated libgd packages fix security vulnerabilities

The updated packages fix security vulnerabilities: gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1, has an integer signedness error that leads to an infinite loop via a crafted GIF file, as demonstrated...

8.8CVSS7.8AI score0.13204EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/08/28 12:0 a.m.39 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : GD vulnerabilities (USN-3755-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3755-1 advisory. It was discovered that GD incorrectly handled certain images. An attacker could possibly use this issue to execute arbitrary code...

8.8CVSS7.4AI score0.13204EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2018/08/27 2:26 p.m.62 views

USN-3755-1: GD vulnerabilities

It was discovered that GD incorrectly handled certain images. An attacker could possibly use this issue to execute arbitrary code. CVE-2018-1000222 It was discovered that GD incorrectly handled certain GIF files. An attacker could possibly use this issue to cause a denial of service. CVE-2018-571...

8.8CVSS7.3AI score0.13204EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/04/05 12:0 a.m.31 views

Fedora 26 : gd (2018-331af74020)

Fix CVE-2018-5711 - Potential infinite loop in gdImageCreateFromGifCtx Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducin...

5.5CVSS6.6AI score0.13204EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/03/29 12:0 a.m.31 views

Fedora 27 : gd (2018-ba81e4e4a0)

Fix CVE-2018-5711 - Potential infinite loop in gdImageCreateFromGifCtx Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducin...

5.5CVSS6.6AI score0.13204EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/03/27 12:0 a.m.59 views

SUSE SLES11 Security Update : php53 (SUSE-SU-2018:0806-1)

This update for php53 fixes several issues. These security issues were fixed : - CVE-2016-10712: In PHP all of the return values of streamgetmetadata could be controlled if the input can be controlled e.g., during file uploads. bsc1080234 - CVE-2018-5712: Prevent reflected XSS on the PHAR 404 err...

9.8CVSS8.5AI score0.87606EPSS
Exploits11References19
Tenable Nessus
Tenable Nessus
added 2018/02/09 12:0 a.m.35 views

Amazon Linux AMI : php56 / php70,php71 (ALAS-2018-946)

Reflected XSS in .phar 404 page An issue was discovered in PHP; there is Reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file. CVE-2018-5712 Denial of Service DoS via infinite loop in libgd gdImageCreateFromGifCtx function in ext/gd/libgd/gdgifin.c The gdgifin.c file...

6.1CVSS6.4AI score0.79949EPSS
Exploits1References3
Amazon
Amazon
added 2018/02/07 12:0 a.m.78 views

Medium: php56, php70, php71

Issue Overview: Reflected XSS in .phar 404 page An issue was discovered in PHP; there is Reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file. CVE-2018-5712 Denial of Service DoS via infinite loop in libgd gdImageCreateFromGifCtx function in ext/gd/libgd/gdgifin.c Th...

6.1CVSS6.8AI score0.79949EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/02/05 12:0 a.m.45 views

Slackware 14.0 / 14.1 / 14.2 / current : php (SSA:2018-034-01)

New php packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2018-034-01. The text itself is copyright C Slackware Linux,...

6.1CVSS6.8AI score0.79949EPSS
Exploits1References3
Rows per page
Query Builder