97 matches found
What Generation Z can teach us about cybersecurity
Girl Security National Security Fellows Program fellow Amulya, a 17-year-old interested in countering online disinformation, said she feels her sense of personal privacy has been largely nonexistent “growing up in a media-saturated world.” She believes her sense of privacy was stolen by a...
MariaDB through 10.5.9 allows a sql_parse.cc application crash because of incorrect used_tables expectations.
...
DEBIAN-CVE-2021-46665
MariaDB through 10.5.9 allows a sqlparse.cc application crash because of incorrect usedtables expectations...
CVE-2021-46665
MariaDB through 10.5.9 allows a sqlparse.cc application crash because of incorrect usedtables expectations...
CVE-2021-46665
CVE-2021-46665 affects MariaDB before 10.5.9; root cause is an incorrect used_tables handling in sql_parse.cc that allows an application crash (local, low/medium impact as per referenced CVE data). Public advisories indicate this is a vulnerability in the 10.5.x line with crashes rather than remo...
CVE-2021-46665
MariaDB through 10.5.9 allows a sqlparse.cc application crash because of incorrect usedtables expectations...
GHSA-V3CG-H3F6-2242 Injection in MockServer
MockServer is open source software which enables easy mocking of any system you integrate with via HTTP or HTTPS. An attacker that can trick a victim into visiting a malicious site while running MockServer locally, will be able to run arbitrary code on the MockServer machine. With an overly broad...
Injection in MockServer
MockServer is open source software which enables easy mocking of any system you integrate with via HTTP or HTTPS. An attacker that can trick a victim into visiting a malicious site while running MockServer locally, will be able to run arbitrary code on the MockServer machine. With an overly broad...
CVE-2021-32827
MockServer is open source software which enables easy mocking of any system you integrate with via HTTP or HTTPS. An attacker that can trick a victim into visiting a malicious site while running MockServer locally, will be able to run arbitrary code on the MockServer machine. With an overly broad...
CVE-2021-32827
CVE-2021-32827 affects MockServer. The issue arises from a combination of an overly broad default CORS configuration and support for dynamic expectations via Javascript/Velocity templates , which may allow an attacker to perform script injection and arbitrary code execution on the MockServer host...
GSD-2021-1000746 netfilter: nft_ct: skip expectations for confirmed conntrack
netfilter: nftct: skip expectations for confirmed conntrack This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.125 by commit...
Clubhouse's Security and Privacy Lag Behind Its Huge Growth
The platform has promised to do better after a string of incidents. But the hardest part might be managing user expectations...
CVE-2020-35865
An issue was discovered in the osstrbytes crate before 2.0.0 for Rust. It has false expectations about char::fromu32unchecked behavior...
CVE-2020-35865
An issue was discovered in the osstrbytes crate before 2.0.0 for Rust. It has false expectations about char::fromu32unchecked behavior...
Design/Logic Flaw
An issue was discovered in the osstrbytes crate before 2.0.0 for Rust. It has false expectations about char::fromu32unchecked behavior...
CVE-2020-35920
An issue was discovered in the socket2 crate before 0.3.16 for Rust. It has false expectations about the std::net::SocketAddr memory representation...
CVE-2020-35919
An issue was discovered in the net2 crate before 0.2.36 for Rust. It has false expectations about the std::net::SocketAddr memory representation...
CVE-2020-35922
An issue was discovered in the mio crate before 0.7.6 for Rust. It has false expectations about the std::net::SocketAddr memory representation...
Memory corruption
An issue was discovered in the mio crate before 0.7.6 for Rust. It has false expectations about the std::net::SocketAddr memory representation...
CVE-2020-35919
An issue was discovered in the net2 crate before 0.2.36 for Rust. It has false expectations about the std::net::SocketAddr memory representation...