42 matches found
Ubuntu: Security Advisory (USN-5301-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-2931-1 : cyrus-sasl2 - LTS security update
The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-2931 advisory. - In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement. CVE-2022-24407 Note that Nessus has no...
Debian: Security Advisory (DLA-2931-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2931-1] cyrus-sasl2 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2931-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz March 06, 2022 https://wiki.debian.org/LTS -...
DLA-2931-1 cyrus-sasl2 - security update
Bulletin has no description...
Debian DSA-5087-1 : cyrus-sasl2 - security update
The remote Debian 10 / 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5087 advisory. - In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement. CVE-2022-24407 Note that Nessus...
Debian: Security Advisory (DSA-5087-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 5087-1] cyrus-sasl2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5087-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 25, 2022 https://www.debian.org/security/faq -...
DSA-5087-1 cyrus-sasl2 - security update
Bulletin has no description...
Ubuntu: Security Advisory (USN-5301-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-5301-1: Cyrus SASL vulnerability
It was discovered that the Cyrus SASL SQL plugin incorrectly handled SQL input. A remote attacker could use this issue to execute arbitrary SQL commands...
Ubuntu: Security Advisory (USN-4256-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-2044-1 : cyrus-sasl2 security update
There has been an out-of-bounds write in Cyrus SASL leading to unauthenticated remote denial of service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash was ultimately caused by an off-by-one error in sasladdstring in common.c in cyrus-sasl. For Debian 8 'Jessie', this problem has been...
Debian DSA-4591-1 : cyrus-sasl2 - security update
Stephan Zeisberg reported an out-of-bounds write vulnerability in the sasladdstring function in cyrus-sasl2, a library implementing the Simple Authentication and Security Layer. A remote attacker can take advantage of this issue to cause denial-of-service conditions for applications using the...
Debian: Security Advisory (DSA-4591-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DLA-2044-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 4591-1] cyrus-sasl2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4591-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 20, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4591-1] cyrus-sasl2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4591-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 20, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2044-1] cyrus-sasl2 security update
Package : cyrus-sasl2 Version : 2.1.26.dfsg1-13+deb8u2 CVE ID : CVE-2019-19906 Debian Bug : 947043 There has been an out-of-bounds write in Cyrus SASL leading to unauthenticated remote denial-of-service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash was ultimately caused by an...
DSA-4591-1 cyrus-sasl2 - security update
Bulletin has no description...