3 matches found
openSUSE 15 Security Update : nim (openSUSE-SU-2022:10101-1)
The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:10101-1 advisory. Includes upstream security fixes for: boo1175333, CVE-2020-15693 httpClient is vulnerable to a CR-LF injection boo1175334, CVE-2020-15692...
OPENSUSE-SU-2022:10095-1 Security update for nim
This update for nim fixes the following issues: Includes upstream security fixes for: boo1175333, CVE-2020-15693 httpClient is vulnerable to a CR-LF injection boo1175334, CVE-2020-15692 mishandle of argument to browsers.openDefaultBrowser boo1175332, CVE-2020-15694 httpClient.get.contentLength...
CVE-2020-15690
CVE-2020-15690 affects Nim prior to 1.2.6, where the standard library asyncftpclient does not check for newline characters in messages. This can enable CRLF-like input handling issues in the FTP-related path, as described in multiple advisories referencing Nim’s asyncftpclient newline check omiss...