MiracleLinux 7 : glibc-2.17-292.el7 (AXSA:2019-4313:05)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-4313:05 advisory. glibc: getaddrinfo should reject IP addresses with trailing characters CVE-2016-10739 Tenable has extracted the preceding description block directly from the...

EUVD-2023-54382

Malicious code in bioql PyPI...

Medium: libuv

Issue Overview: libuv is a multi-platform support library with a focus on asynchronous I/O. The uvgetaddrinfo function in src/unix/getaddrinfo.c and its windows counterpart src/win/getaddrinfo.c, truncates hostnames to 256 characters before calling getaddrinfo. This behavior can be exploited to...

DEBIAN-CVE-2024-24806

libuv is a multi-platform support library with a focus on asynchronous I/O. The uvgetaddrinfo function in src/unix/getaddrinfo.c and its windows counterpart src/win/getaddrinfo.c, truncates hostnames to 256 characters before calling getaddrinfo. This behavior can be exploited to create addresses...

CVE-2023-5156 Glibc: dos due to memory leak in getaddrinfo.c

A flaw was found in the GNU C Library. A recent fix for CVE-2023-4806 introduced the potential for a memory leak, which may result in an application crash...

CVE-2023-4806 Glibc: potential use-after-free in getaddrinfo()

A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the nssgethostbyname2r and nssgetcanonnamer hooks without...

SUSE-SU-2020:14468-1 Security update for openvpn-openssl1

This update for openvpn-openssl1 fixes the following issues: - Fixed Out of bounds read on getaddrinfo result bsc959714...