121 matches found
CVE-2018-10243
CVE-2018-10243 affects LibHTP 0.5.26: the function htp_parse_authorization_digest in htp_parsers.c can cause a heap-based buffer over-read when processing an authorization digest header. This is a remote, network-exploitable condition reported across multiple sources (OSV, Debian/NASL references)...
CVE-2018-10243
htpparseauthorizationdigest in htpparsers.c in LibHTP 0.5.26 allows remote attackers to cause a heap-based buffer over-read via an authorization digest header...
CVE-2015-0928
libhtp 0.5.15 allows remote attackers to cause a denial of service NULL pointer dereference...
CVE-2015-0928
libhtp 0.5.15 allows remote attackers to cause a denial of service NULL pointer dereference...
DEBIAN-CVE-2015-0928
libhtp 0.5.15 allows remote attackers to cause a denial of service NULL pointer dereference...
CVE-2015-0928
libhtp 0.5.15 allows remote attackers to cause a denial of service NULL pointer dereference...
Null pointer dereference
libhtp 0.5.15 allows remote attackers to cause a denial of service NULL pointer dereference...
UBUNTU-CVE-2015-0928
libhtp 0.5.15 allows remote attackers to cause a denial of service NULL pointer dereference...
CVE-2015-0928
libhtp 0.5.15 allows remote attackers to cause a denial of service NULL pointer dereference...
CVE-2015-0928
CVE-2015-0928 affects libhtp 0.5.15. The connected sources consistently describe a remote denial-of-service condition caused by a NULL pointer dereference in libhtp. The provided documents do not specify the exact trigger, affected products beyond libhtp, versions other than 0.5.15, or a concrete...
CVE-2015-0928
libhtp 0.5.15 allows remote attackers to cause a denial of service NULL pointer dereference...
Updated suricata packages fix security vulnerabilities
Updated suricata packages fix security vulnerability: It was reported that libhtp handling of streams in error state could lead to NULL pointer dereference, leading to caller crash. Suricata Intrusion Detection System embeds libhtp, and is one of the affected components...
Fedora Update for libhtp FEDORA-2015-2223
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 20 Update: libhtp-0.5.6-3.fc20
LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. The goals of the project, in the order of importance, are as follows: 1. Completeness of coverage; 2. Permissive parsing; 3. Awareness of evasion techniques; 4. Performance;...
Fedora 20 : libhtp-0.5.6-3.fc20 (2015-2223)
Backport an upstream patch to fix a security issue. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora 20 : suricata-2.0.6-1.fc20 (2015-0792)
This is a new upstream release fixing several serious bugs: reports of eveasion issues, sequence gaps in tcp stream reassembly under TLS detection, segfault in libhtp 0.5.15 which can lead to denial of service, and several others. See change log for details. Note that Tenable Network Security has...
Fedora 21 : libhtp-0.5.16-1.fc21 (2014-16880)
0.5.16 11 December 2014 - Per personality requestline leading whitespace handling Victor Julien - Improve request line parsing with leading spaces Victor Julien - Harden decompress code against memory stress Victor Julien Note that Tenable Network Security has extracted the preceding description...
Fedora 20 : libhtp-0.5.6-2.fc20 (2014-16932)
Backport an upstream patch to fix a security issue. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
[SECURITY] Fedora 21 Update: libhtp-0.5.16-1.fc21
LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. The goals of the project, in the order of importance, are as follows: 1. Completeness of coverage; 2. Permissive parsing; 3. Awareness of evasion techniques; 4. Performance;...
Fedora Update for libhtp FEDORA-2014-16932
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...