3 matches found
github-action-merge-dependabot 数据伪造问题漏洞
github-action-merge-dependabot is used to automatically approve and merge dependabot PRs. A security vulnerability exists in github-action-merge-dependabot versions prior to 3.2.0, which stems from the fact that it does not check whether commits created by dependabot are verified with the correct...
The vulnerability of the hp-plugin driver for HPLIP printers allows a hacker to execute arbitrary code.
The vulnerability of the hp-plugin driver for HPLIP printers is related to the use of a short key identifier GPG from the key server, which is used to verify the loading of the printing plugin. Exploiting this vulnerability allows an attacker to execute arbitrary code...
Product update: Virtuozzo 7.0 Update 6 (7.0.6-635)
The Update 6 for Virtuozzo 7.0 provides new features, security fixes as well as stability and usability bug fixes. Vulnerability id: PSBM-69459 Downloadable ISO images of Virtuozzo as well as their MD5 and SHA256 checksums can now be verified against the GPG key stored at a secure location. For...