41 matches found
CVE-2010-10001
A vulnerability, which was classified as problematic, was found in Shemes GrabIt up to 1.7.2 Beta 4. This affects the component NZB Date Parser. The manipulation of the argument date with the input 1000000000000000 as part of a NZB File leads to a denial of service. It is possible to initiate the...
RockyLinux 8 : mysql:8.0 (RLSA-2025:1673)
The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:1673 advisory. openssl: SSLselectnextproto buffer overread CVE-2024-5535 krb5: GSS message token handling CVE-2024-37371 curl: libcurl: ASN.1 date parser overread...
Security update for curl
This update for curl fixes the following issues: Security issues fixed: CVE-2024-7264: ASN.1 date parser overread bsc1228535 CVE-2024-6197: Freeing stack buffer in utf8asn1str bsc1227888 CVE-2024-2379: QUIC certificate check bypass with wolfSSL bsc1221666 CVE-2024-2466: TLS certificate check bypa...
SUSE-SU-2025:20029-1 Security update for curl
This update for curl fixes the following issues: Security issues fixed: - CVE-2024-7264: ASN.1 date parser overread bsc1228535 - CVE-2024-6197: Freeing stack buffer in utf8asn1str bsc1227888 - CVE-2024-2379: QUIC certificate check bypass with wolfSSL bsc1221666 - CVE-2024-2466: TLS certificate...
ASN.1 date parser overread
...
Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.2
Red Hat OpenShift Service Mesh Containers for 2.6.2 This update has a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section. Red Hat OpenShift...
SUSE-SU-2024:3080-2 Security update for curl
This update for curl fixes the following issues: - CVE-2024-7264: Fixed out-of-bounds read in ASN.1 date parser GTime2str bsc1228535...
SUSE-SU-2024:3202-1 Security update for curl
This update for curl fixes the following issues: - CVE-2024-8096: OCSP stapling bypass with GnuTLS. bsc1230093 - CVE-2024-7264: ASN.1 date parser overread. bsc1228535...
openSUSE Security Advisory (SUSE-SU-2024:3080-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15: curl / libcurl-devel / libcurl-devel-32bit / libcurl4 / etc (SUSE-SU-2024:3080-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3080-1 advisory. - CVE-2024-7264: Fixed out-of-bounds read in ASN.1 date parser GTime2str bsc1228535 Tenable has extracted...
SUSE-SU-2024:3080-1 Security update for curl
This update for curl fixes the following issues: - CVE-2024-7264: Fixed out-of-bounds read in ASN.1 date parser GTime2str bsc1228535...
SUSE-SU-2024:2938-1 Security update for curl
This update for curl fixes the following issues: - CVE-2024-7264: Fixed out-of-bounds read in ASN.1 date parser GTime2str bsc1228535...
SUSE-SU-2024:2930-1 Security update for curl
This update for curl fixes the following issues: - CVE-2024-7264: Fixed out-of-bounds read in ASN.1 date parser GTime2str bsc1228535...
SUSE-SU-2024:2784-1 Security update for curl
This update for curl fixes the following issues: - CVE-2024-7264: Fixed ASN.1 date parser overread bsc1228535 - CVE-2024-6197: Fixed freeing stack buffer in utf8asn1str bsc1227888...
curl: CVE-2024-7264: ASN.1 date parser overread
Vulnerability description not provided...
CVE-2010-10001
A vulnerability, which was classified as problematic, was found in Shemes GrabIt up to 1.7.2 Beta 4. This affects the component NZB Date Parser. The manipulation of the argument date with the input 1000000000000000 as part of a NZB File leads to a denial of service. It is possible to initiate the...
CVE-2010-10001 Shemes GrabIt NZB Date Parser denial of service
A vulnerability, which was classified as problematic, was found in Shemes GrabIt up to 1.7.2 Beta 4. This affects the component NZB Date Parser. The manipulation of the argument date with the input 1000000000000000 as part of a NZB File leads to a denial of service. It is possible to initiate the...
CVE-2010-10001 Shemes GrabIt NZB Date Parser denial of service
A vulnerability, which was classified as problematic, was found in Shemes GrabIt up to 1.7.2 Beta 4. This affects the component NZB Date Parser. The manipulation of the argument date with the input 1000000000000000 as part of a NZB File leads to a denial of service. It is possible to initiate the...
Shemes Grabit 安全漏洞
Shemes Grabit is a popular freeware client for binary Usenet interaction from Shemes. A security vulnerability exists in Shemes Grabit version 1.7.2 Beta 4 and prior versions of the NZB Date Parser component, which originates from a denial of service caused by entering 1000000000000000 as part of...
Regular Expression Denial of Service (ReDoS)
Overview chrono-node is an A natural language date parser in Javascript Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS. It hangs on a date-like string with lots of embedded spaces. Details Denial of Service DoS describes a family of attacks, all aim...