openSUSE: Security Advisory for gnutls (openSUSE-SU-2020:1743-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

mycoin (=1.0.0), simple-blockchain-implement (>=1.0.0 <=1.0.4) potentially affected by unknown CVE via crytpo-js (=0.0.1-security)

crytpo-js NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on crytpo-js and may be impacted: - mycoin =1.0.0 - simple-blockchain-implement =1.0.0, =1.0.4 Source cves: unknown CVE Source advisory: OSV:GHSA-M4FQ-XH7W-JHFM...

Important: nghttp2

Issue Overview: In nghttp2 before version 1.41.0, the overly large HTTP/2 SETTINGS frame payload causes denial of service. The proof of concept attack involves a malicious client constructing a SETTINGS frame with a length of 14,400 bytes 2400 individual settings entries over and over again. The...

`array!` macro is unsound in presence of traits that implement methods it calls internally

Affected versions of this crate called some methods using auto-ref. The affected code looked like this. rust let mut arr = $crate::core::mem::MaybeUninit::uninit; let mut vec = $crate::ArrayVec::::newarr.asmutptr as mut T; In this case, the problem is that asmutptr is a method of &mut MaybeUninit...

CVE-2019-20441

An issue was discovered in WSO2 API Manager 2.6.0. A potential Stored Cross-Site Scripting XSS vulnerability has been identified in the 'implement phase' of the API Publisher...

Citrix *Client Folder Redirection* (CFR) is not *Folder Redirection*

Client Folder Redirection, Folder Redirection and Special Folder Redirection are not the same. Client Folder Redirection CFR provides access to client-side folders in an ICA session while not having to redirect complete client-side drives. Support throughClient Drive Mapping CDM has enabled...

UDPack - An Extensible Generic UDP Packet Obfuscator

UDPack is an extensible generic UDP packet obfuscator. The purpose of this application is to sit in the path of a UDP data stream, and obfuscate, deobfuscate or otherwise modify the packets. Python 3.4 or above is required, since this script uses the asyncio library. Currently there are no other...

CVE-2013-2245

rss/file.php in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, and 2.5.x before 2.5.1 does not properly implement the use of RSS tokens for impersonation, which allows remote authenticated users to obtain sensitive block information by reading an RSS feed...

Fedora Update for rubygem-activerecord FEDORA-2008-8282

Check for the Version of rubygem-activerecord OpenVAS Vulnerability Test Fedora Update for rubygem-activerecord FEDORA-2008-8282 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...