541 matches found
CVE-2024-45313 Insecure default setting for Server Pro installed via Overleaf toolkit
Overleaf is a web-based collaborative LaTeX editor. When installing Server Pro using the Overleaf Toolkit from before 2024-07-17 or legacy docker-compose.yml from before 2024-08-28, the configuration for LaTeX compiles was insecure by default, requiring the administrator to enable the security...
CVE-2024-45313 Insecure default setting for Server Pro installed via Overleaf toolkit
Overleaf is a web-based collaborative LaTeX editor. When installing Server Pro using the Overleaf Toolkit from before 2024-07-17 or legacy docker-compose.yml from before 2024-08-28, the configuration for LaTeX compiles was insecure by default, requiring the administrator to enable the security...
CVE-2024-45313
Summary: CVE-2024-45313 affects Overleaf Server Pro when installed via the Overleaf Toolkit or legacy docker-compose deployments prior to mid-2024. By default, LaTeX compiles could access the sharelatex container resources (filesystem, network, environment variables) if security features were not...
EulerOS 2.0 SP12 : docker-engine (EulerOS-SA-2024-2209)
According to the versions of the docker-engine packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Moby is an open source container framework that is a key component of Docker Engine, Docker Desktop, and other distributions of container...
Important: docker
Issue Overview: The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set...
Spring Tips: Testcontainers, Docker Compose, and Service Connections, oh my
Hi, Spring fans! In this installment, we look at the amazing service connection mechanism in Spring Boot. Service connections are what allow Spring Boot to connect to Testcontainers or Docker Compose containers for supporting infrastructure like SQL databases, middleare, and more. java...
CBL Mariner 2.0 Security Update: containerd / cri-tools / docker-buildx / docker-compose / moby-containerd-cc (CVE-2023-47108)
The version of containerd / cri-tools / docker-buildx / docker-compose / moby-containerd-cc installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-47108 advisory. - OpenTelemetry-Go Contrib is a collecti...
CBL Mariner 2.0 Security Update: docker-buildx / docker-compose / moby-compose / moby-engine (CVE-2024-23650)
The version of docker-buildx / docker-compose / moby-compose / moby-engine installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-23650 advisory. - BuildKit is a toolkit for converting source code to bui...
CBL Mariner 2.0 Security Update: docker-compose / moby-engine / docker-buildx / moby-cli (CVE-2024-23653)
The version of docker-compose / moby-engine / docker-buildx / moby-cli installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-23653 advisory. - BuildKit is a toolkit for converting source code to build...
CBL Mariner 2.0 Security Update: application-gateway-kubernetes-ingress / azcopy / blobfuse2 / cert-manager / coredns (CVE-2023-45288)
The version of application-gateway-kubernetes-ingress / azcopy / blobfuse2 / cert-manager / coredns installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45288 advisory. - An attacker May cause an HTTP/...
OPENSUSE-SU-2024:12430-1 docker-compose-2.12.2-1.1 on GA media
These are all security issues fixed in the docker-compose-2.12.2-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:12421-1 docker-compose-2.12.0-1.1 on GA media
These are all security issues fixed in the docker-compose-2.12.0-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:12809-1 docker-compose-2.17.0-1.1 on GA media
These are all security issues fixed in the docker-compose-2.17.0-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:12600-1 docker-compose-2.15.1-1.1 on GA media
These are all security issues fixed in the docker-compose-2.15.1-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:12876-1 docker-compose-2.17.3-1.1 on GA media
These are all security issues fixed in the docker-compose-2.17.3-1.1 package on the GA media of openSUSE Tumbleweed...
CVE-2023-44487 affecting package docker-compose for versions less than 2.27.0-1
CVE-2023-44487 affecting package docker-compose for versions less than 2.27.0-1. An upgraded version of the package is available that resolves this issue...
CVE-2023-47108 affecting package docker-compose for versions less than 2.27.0-1
CVE-2023-47108 affecting package docker-compose for versions less than 2.27.0-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-23653 affecting package docker-compose for versions less than 2.27.0-1
CVE-2024-23653 affecting package docker-compose for versions less than 2.27.0-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-23650 affecting package docker-compose for versions less than 2.27.0-1
CVE-2024-23650 affecting package docker-compose for versions less than 2.27.0-1. An upgraded version of the package is available that resolves this issue...
CVE-2023-45288 affecting package docker-compose for versions less than 2.27.0-1
CVE-2023-45288 affecting package docker-compose for versions less than 2.27.0-1. An upgraded version of the package is available that resolves this issue...