Lucene search
K

33 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:44 a.m.4 views

SUSE CVE-2017-9433

Document Liberation Project libmwaw before 2017-04-08 has an out-of-bounds write caused by a heap-based buffer overflow related to the MsWrd1Parser::readFootnoteCorrespondance function in lib/MsWrd1Parser.cxx...

5.3CVSS7.6AI score0.02276EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:27 a.m.4 views

SUSE CVE-2018-11503

The isfootnote function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted file, as demonstrated by mkd2html...

5.5CVSS6.9AI score0.01599EPSS
Exploits0References3
NVD
NVD
added 2021/12/14 11:15 p.m.30 views

CVE-2021-43827

discourse-footnote is a library providing footnotes for posts in Discourse. Impact When posting an inline footnote wrapped in tags e.g. ^footnote, the resulting rendered HTML would include a nested , which is stripped by Nokogiri because it is not valid. This then caused a javascript error on top...

4.3CVSS0.00803EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/12/14 11:15 p.m.2 views

CVE-2021-43827

discourse-footnote is a library providing footnotes for posts in Discourse. Impact When posting an inline footnote wrapped in tags e.g. ^footnote, the resulting rendered HTML would include a nested , which is stripped by Nokogiri because it is not valid. This then caused a javascript error on top...

4.3CVSS5.8AI score0.00803EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2021/12/14 10:20 p.m.60 views

CVE-2021-43827

The CVE-2021-43827 issue concerns the discourse-footnote library used with Discourse. Affected behavior occurs when an inline footnote is wrapped in tags, producing a nested element in rendered HTML. Nokogiri strips the nested tag, leading to a JavaScript error on topic pages when code searches...

4.3CVSS4.6AI score0.00803EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2021/12/14 12:0 a.m.4 views

Discourse 安全漏洞

Discourse is an open source community discussion platform that includes community, email and chat room features. The platform includes community, email and chat room features. discourse-footnote has a security vulnerability that could be exploited to trigger null-reference javascript errors...

4.3CVSS5.6AI score0.00803EPSS
Exploits0References3
Microsoft KB
Microsoft KB
added 2020/10/13 7:0 a.m.27 views

End of support for Office 2016 and Office 2019

None None...

8.8CVSS7AI score0.02737EPSS
Exploits0
OSV
OSV
added 2018/05/26 9:29 p.m.2 views

DEBIAN-CVE-2018-11503

The isfootnote function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted file, as demonstrated by mkd2html...

5.5CVSS6.9AI score0.01599EPSS
Exploits0References1
OSV
OSV
added 2018/05/26 9:29 p.m.7 views

UBUNTU-CVE-2018-11503

The isfootnote function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted file, as demonstrated by mkd2html...

5.5CVSS6.2AI score0.01599EPSS
Exploits0References3
CNVD
CNVD
added 2017/06/06 12:0 a.m.6 views

Document Liberation Project libmwaw Buffer Overflow Vulnerability

Document Liberation Project is a project that enables users to work with vendor-locked content. libmwaw is an older version of the Mac document import library. Document Liberation Project libmwaw The 'MsWrd1Parser::readFootnoteCorrespondance' function in the lib/MsWrd1Parser.cxx file in versions...

9.8CVSS7.2AI score0.02276EPSS
Exploits0References1
OSV
OSV
added 2017/06/04 12:0 a.m.10 views

UBUNTU-CVE-2017-9433

Document Liberation Project libmwaw before 2017-04-08 has an out-of-bounds write caused by a heap-based buffer overflow related to the MsWrd1Parser::readFootnoteCorrespondance function in lib/MsWrd1Parser.cxx...

9.8CVSS7AI score0.02276EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2013/01/25 12:0 a.m.38 views

SuSE 11.2 Security Update : LibreOffice (SAT Patch Number 6804)

LibreOffice was updated to SUSE 3.5 bugfix release 13 based on upstream 3.5.6-rc2 which fixes a lot of bugs. The following bugs have been fixed : - polygon fill rule. bnc759172 - open XML in Writer. bnc777181 - undo in text objects fdo36138 - broken numbering level. bnc760019 - better MathML...

4.3CVSS8.1AI score0.03482EPSS
Exploits0References25
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.5 views

Security update 1970-01-01

...

5.3AI score
Exploits0
Rows per page
Query Builder