3 matches found
CVE-2026-58051 libssh2 - Free of Uninitialized Pointer in publickey List Cleanup
libssh2 through 1.11.1 grows its publickey list with SSH2REALLOC but does not zero-initialize new entries before parsing populates them, so a parse failure reaching the cleanup path leaves libssh2publickeylistfree operating on an uninitialized entry. A malicious SSH server offering the publickey...
python security and bug fix update
2.7.5-58.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-58 - Set stream to None in case an open fails. Resolves: rhbz1432003 2.7.5-57 - Fix implicit declaration warnings of functions added by patches 147 and 265 Resolves: rhbz1441237 2.7.5-56 - Fix shutil.makearchive...
YapBB <= 1.2 (forumID) Blind SQL Injection Exploit
Exploit for unknown platform in category web applications ================================================== YapBB ". "\n? Ex. : perl $0 localhost /YapBB root abcdefghijklmnopqrstuvwxyz". "\n\n"; sub query my $user, $chr, $pos = @; my $query = "123 OR IF ASCIISUBSTRINGSELECT password FROM "...