333 matches found
EUVD-2010-1472
Malware in sbrugna...
EUVD-2011-2868
Malware in sbrugna...
EUVD-2010-2297
Malware in sbrugna...
EUVD-2022-33587
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2011-2896
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The LZW decompressor in the LWZReadByte function in giftoppm.c in the David Koblas GIF decoder in PBMPLUS, as used in the gifreadlzw function in...
Fedora: Security Advisory (FEDORA-2024-b9fc60e1f0)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 39 Update: rust-brotli-decompressor-4.0.1-1.fc39
A brotli decompressor that with an interface avoiding the rust stdlib. This makes it suitable for embedded devices and kernels. It is designed with a pluggable allocator so that the standard lib's allocator may be employed. The default build also includes a stdlib allocator and stream interface...
[SECURITY] Fedora 41 Update: rust-brotli-decompressor-4.0.1-1.fc41
A brotli decompressor that with an interface avoiding the rust stdlib. This makes it suitable for embedded devices and kernels. It is designed with a pluggable allocator so that the standard lib's allocator may be employed. The default build also includes a stdlib allocator and stream interface...
Fedora 40 : python-cramjam / rust-async-compression / rust-brotli / etc (2024-b9fc60e1f0)
The remote Fedora 40 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-b9fc60e1f0 advisory. Update rust-brotli-decompressor to 4.0.1, rust-brotli to 7.0.0, and rust-async-compression to 0.4.13. Patch dependent packages as needed to avoid compat...
Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.4.11
Red Hat OpenShift Service Mesh Containers for 2.4.11 This update has a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section. Red Hat OpenShift...
PT-2024-40876 · Apache · Apache Poi
Name of the Vulnerable Software and Affected Versions: Apache POI affected versions not specified Description: A security exception occurs due to a crash in the LZWDecompresser.decompress function. The issue is related to the decompression process in the CompressedStreamStore.decompress method...
CVE-2024-32976
A flaw was found in Envoy's Brotli decompressor. This flaw allows a remote, unauthenticated attacker to trigger an infinite loop, causing a denial of service...
CVE-2023-52733
In the Linux kernel, the following vulnerability has been resolved: s390/decompressor: specify decompress buf len to avoid overflow Historically calls to decompress didn't specify "outlen" parameter on many architectures including s390, expecting that no writes beyond uncompressed kernel image ar...
Denial of Service via Zip/Decompression Bomb sent over HTTP or gRPC
Summary An unsafe decompression vulnerability allows unauthenticated attackers to crash the collector via excessive memory consumption. Details The OpenTelemetry Collector handles compressed HTTP requests by recognizing the Content-Encoding header, rewriting the HTTP request body, and allowing...
CVE-2023-52733
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CVE-2023-52733
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CVE-2023-52733
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CVE-2023-52733
Removed by vendor...
CVE-2023-52733
...
CVE-2023-52733
CVE-2023-52733 is rejected/not used; this CVE entry does not represent an active vulnerability.