[SECURITY] [DLA 3014-1] elog security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-3014-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta May 18, 2022 https://wiki.debian.org/LTS - -----------------------------------------------------------------------...

Debian DLA-3014-1 : elog - LTS security update

The remote Debian 9 host has a package installed that is affected by a vulnerability as referenced in the dla-3014 advisory. A vulnerability was reported in src:elog, a logbook system to manage notes through a Web interface. This vulnerability allows remote attackers to create a denial-of-service...

DLA-3014-1 elog - security update

Bulletin has no description...

Huawei Data Communication: Multiple Vulnerabilities Released on Microsoft security advisory 4025685 (huawei-sa-20170909-01-windows)

Microsoft had released a Security Advisory 4025685 on June 14 to fix multiple critical security vulnerabilities in such systems as Microsoft Windows XP, Windows Server 2003, Windows VISTA, and Windows 8. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a...

ELOG Project Information Disclosure (CVE-2019-3993)

An information disclosure vulnerability exists in ELOG Project. Successful exploitation of this vulnerability could cause the ELOG server to disclose the password hash for a user...

ELOG < 3.1.4 DoS Vulnerability

ELOG is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:elogproject:elog";...

CVE-2020-8859

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of ELOG Electronic Logbook 3.1.4-283534d. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of HTTP parameters. A crafted request...

CVE-2020-8859

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of ELOG Electronic Logbook 3.1.4-283534d. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of HTTP parameters. A crafted request...

CVE-2020-8859

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of ELOG Electronic Logbook 3.1.4-283534d. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of HTTP parameters. A crafted request...

Null pointer dereference

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of ELOG Electronic Logbook 3.1.4-283534d. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of HTTP parameters. A crafted request...

UBUNTU-CVE-2020-8859

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of ELOG Electronic Logbook 3.1.4-283534d. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of HTTP parameters. A crafted request...

CVE-2020-8859

CVE-2020-8859 affects ELOG Electronic Logbook 3.1.4-283534d. The flaw is in HTTP parameter processing, where a crafted request can trigger a dereference of a null pointer, allowing remote attackers to cause a denial-of-service. Exploitation is unauthenticated and over the network, with the impact...

CVE-2020-8859

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of ELOG Electronic Logbook 3.1.4-283534d. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of HTTP parameters. A crafted request...

CVE-2020-8859

Removed by vendor...

Elog Project Denial of Service (CVE-2019-3995; CVE-2020-8859)

A denial of service vulnerability exists in Elog. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on the affected system...

ELOG Electronic Logbook drop-count Null Pointer Dereference Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of ELOG Electronic Logbook. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of HTTP parameters. A crafted request can trigger t...

Fedora 31 : elog (2020-f49fe7f011)

Security fix for CVE-2019-3993, CVE-2019-3994, CVE-2019-3995, CVE-2019-3992, CVE-2019-3996 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possibl...

Fedora 30 : elog (2020-9f8bc040c8)

Security fix for CVE-2019-3993, CVE-2019-3994, CVE-2019-3995, CVE-2019-3992, CVE-2019-3996 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possibl...

Fedora: Security Advisory for elog (FEDORA-2020-9f8bc040c8)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for elog (FEDORA-2020-f49fe7f011)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...