EulerOS 2.0 SP8 : python-idna (EulerOS-SA-2024-2049)

According to the versions of the python-idna packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was identified in the kjd/idna library, specifically within the idna.encode function, affecting version 3.6. The issue arises...

CVE-2023-4100 Multiple vulnerabilities in IDM Sistemas QSige

Allows an attacker to perform XSS attacks stored on certain resources. Exploiting this vulnerability can lead to a DoS condition, among other actions...

EulerOS 2.0 SP10 : busybox (EulerOS-SA-2022-2643)

According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in...

CVE-2021-39230

Butter is a system usability utility. Due to a kernel error the JPNS kernel is being discontinued. Affected users are recommend to update to the Trinity kernel. There are no workarounds...

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2019-2491)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Design/Logic Flaw

OpenKMIP PyKMIP version All versions before 0.8.0 contains a CWE 399: Resource Management Errors similar issue to CVE-2015-5262 vulnerability in PyKMIP server that can result in DOS: the server can be made unavailable by one or more clients opening all of the available sockets. This attack appear...

CVE-2018-1000872

OpenKMIP PyKMIP version All versions before 0.8.0 contains a CWE 399: Resource Management Errors similar issue to CVE-2015-5262 vulnerability in PyKMIP server that can result in DOS: the server can be made unavailable by one or more clients opening all of the available sockets. This attack appear...

CVE-2018-1000872

OpenKMIP PyKMIP version All versions before 0.8.0 contains a CWE 399: Resource Management Errors similar issue to CVE-2015-5262 vulnerability in PyKMIP server that can result in DOS: the server can be made unavailable by one or more clients opening all of the available sockets. This attack appear...

CVE-2014-9403

The CWebAdminMod::ChanPage function in modules/webadmin.cpp in ZNC before 1.4 allows remote authenticated users to cause a denial of service NULL pointer dereference and crash by adding a channel with the same name as an existing channel but without the leading character, related to a...

openSUSE Security Update : libmysqlclient-devel (openSUSE-SU-2011:1250-1)

This mysql update fixes the following security issues - CVE-2010-3833: CVSS v2 Base Score: 4.0 moderate AV:N/AC:L/Au:S/C:N/I:N/A:P: Resource Management Errors CWE-399 - CVE-2010-3834: CVSS v2 Base Score: 4.0 moderate AV:N/AC:L/Au:S/C:N/I:N/A:P: Insufficient Information CWE-noinfo - CVE-2010-3835:...

openSUSE Security Update : libwebkit (openSUSE-SU-2011:0482-1)

This version upgrade of webkit to 1.2.7 fixes the following bugs : - CVE-2010-2441: CVSS v2 Base Score: 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N: Permissions, Privileges, and Access Control CWE-264 - CVE-2010-2901: CVSS v2 Base Score: 3.7 AV:L/AC:H/Au:N/C:P/I:P/A:P: Buffer Errors CWE-119 - CVE-2010-4042:...

SuSE 11.1 Security Update : MySQL (SAT Patch Number 5285)

This MySQL version update to 5.0.94 update fixes the following security issues : - CVE-2010-3833: CVSS v2 Base Score: 4.0 moderate AV:N/AC:L/Au:S/C:N/I:N/A:P: Resource Management Errors CWE-399 - CVE-2010-3834: CVSS v2 Base Score: 4.0 moderate AV:N/AC:L/Au:S/C:N/I:N/A:P: Insufficient Information...

SuSE 11.1 Security Update : wireshark (SAT Patch Number 4476)

This update to wireshark version 1.4.5 fixes the following security issues : - Resource Management Errors. CWE-399, CVE-2011-1590 - Buffer Errors. CWE-119, CVE-2011-1591 - Numeric Errors CWE-189, CVE-2011-1592 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

Apache 1.42.2.x - APR apr_fnmatch() Denial of Service

Apache 1.42.2.x - APR aprfnmatch Denial of Service source: https://www.securityfocus.com/bid/47820/info Apache APR is prone to a vulnerability that may allow attackers to cause a denial-of-service condition. Apache APR versions prior to 1.4.4 are vulnerable. ?php / Apache 2.2.17 modautoindex...

openSUSE Security Update : cups (openSUSE-SU-2010:1018-1)

This updates fix several bugs, but only the security fixes are listed here : - CVE-2010-2941: CVSS v2 Base Score: 3.3 AV:A/AC:L/Au:N/C:N/I:N/A:P: CWE-399 Special IPP requests allow to crashcupsd remotely. - CVE-2010-0542: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P: CWE-264 A NULL pointer...

SuSE 11 / 11.1 Security Update : CUPS (SAT Patch Numbers 3575 / 3576)

This updates fix several bugs, but only the security fixes are listed here : - Special IPP requests allow to crash cupsd remotely. CVE-2010-2941: CVSS v2 Base Score: 3.3 AV:A/AC:L/Au:N/C:N/I:N/A:P: CWE-399 - A NULL pointer dereference exists in the WriteProlog function of the texttops image filte...

openSUSE Security Update : opera (openSUSE-SU-2010:0540-1)

This update of opera fixes the following vulnerabilities : - CVE-2010-2576: CVSS v2 Base Score: 6.8 CWE-94: unexpected changes in tab focus could be used to run programs from the Internet, as reported by Jakob Balle and Sven Krewitt of Secunia - CVE-2010-3019: CVSS v2 Base Score: 9.3 CWE-119: hea...

openSUSE Security Update : opera (openSUSE-SU-2010:0540-1)

This update of opera fixes the following vulnerabilities : - CVE-2010-2576: CVSS v2 Base Score: 6.8 CWE-94: unexpected changes in tab focus could be used to run programs from the Internet, as reported by Jakob Balle and Sven Krewitt of Secunia - CVE-2010-3019: CVSS v2 Base Score: 9.3 CWE-119: hea...