20 matches found
EUVD-2020-4295
Malware in sbrugna...
EUVD-2022-37698
Malicious code in bioql PyPI...
BIT-MEDIAWIKI-2024-34502
An issue was discovered in WikibaseLexeme in MediaWiki before 1.39.6, 1.40.x before 1.40.2, and 1.41.x before 1.41.1. Loading Special:MergeLexemes will attempt to make an edit that merges the from-id to the to-id, even if the request was not a POST request, and even if it does not contain an edit...
CVE-2022-34750
An issue was discovered in MediaWiki through 1.38.1. The lemma length of a Wikibase lexeme is currently capped at a thousand characters. Unfortunately, this length is not validated, allowing much larger lexemes to be created, which introduces various denial-of-service attack vectors within the...
MediaWiki < 1.38.2 Unlimited Lexeme Length Denial Of Service
According to its self-reported version number, the instance of MediaWiki hosted on the remote web server is prior to 1.38.2. It is, therefore, affected by a vulnerability which permits remote attackers to specify oversize lexemes to be created, introducing various denial-of-service attacks within...
SUSE CVE-2020-11958
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme...
CVE-2022-34750
An issue was discovered in MediaWiki through 1.38.1. The lemma length of a Wikibase lexeme is currently capped at a thousand characters. Unfortunately, this length is not validated, allowing much larger lexemes to be created, which introduces various denial-of-service attack vectors within the...
PT-2022-22316 · Mediawiki +1 · Mediawiki +1
Name of the Vulnerable Software and Affected Versions: MediaWiki versions through 1.38.1 Description: An issue in MediaWiki allows the creation of larger lexemes than the capped length of a thousand characters, as this length is not validated. This introduces denial-of-service attack vectors with...
Arbitrary Code Execution
re2c is vulnerable to arbitrary code execution. A heap-based buffer overflow in Scanner::fill in parse/scanner.cc allows an attackero to execute arbitrary code on the host OS via a malicious lexeme...
CVE-2020-11958
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme...
CVE-2020-11958
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme...
CVE-2020-11958
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme...
ALPINE-CVE-2020-11958
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme...
DEBIAN-CVE-2020-11958
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme...
UBUNTU-CVE-2020-11958
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme...
CVE-2020-11958
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme...
Heap overflow
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme...
CVE-2020-11958
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme...
CVE-2020-11958
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme...
PT-2020-12950 · Re2C +2 · Re2C +2
Name of the Vulnerable Software and Affected Versions: re2c version 1.3 Description: The issue is a heap-based buffer overflow in the Scanner::fill function located in parse/scanner.cc, which can be triggered by a long lexeme. Recommendations: For re2c version 1.3, consider restricting the input...