RHEL 7 : libmicrohttpd (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libmicrohttpd: remote DoS CVE-2023-27371 Note that Nessus has not tested for this issue but has instead relied on t...

RHEL 6 : libmicrohttpd (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libmicrohttpd: remote DoS CVE-2023-27371 Note that Nessus has not tested for this issue but has instead relied on t...

Denial Of Service (DOS)

libmicrohttpd.so is vulnerable to Denial of service attack. The vulnerability is due to an out-of-bounds memory read flaw in the MHDhttpunescape function within libmicrohttpd. This could potentially lead to information disclosure or enable a remote attacker to cause an application crash...

Moderate: Red Hat Security Advisory: libmicrohttpd security update

An update for libmicrohttpd is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

libmicrohttpd: remote DoS

An out-of-bounds flaw was found in GNU's libmicrohttpd due to improper parsing of a multipart/form-data boundary in the MHDcreatepostprocessor method in postprocessor.c. This flaw allows an attacker to remotely send a malicious HTTP POST packet that includes one or more ‘\0’ bytes in a...

RHEL 8 : libmicrohttpd (RHSA-2024:1109)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:1109 advisory. GNU libmicrohttpd is a small C library that makes it easy to run an HTTP server as part of another application. Security Fixes: libmicrohttpd: remote...

CentOS 9 : libmicrohttpd-0.9.72-5.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the libmicrohttpd-0.9.72-5.el9 build changelog. - GNU libmicrohttpd before 0.9.76 allows remote DoS Denial of Service due to improper parsing of a multipart/form-data boundary in the...

Huawei EulerOS: Security Advisory for libmicrohttpd (EulerOS-SA-2024-1146)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP5 : libmicrohttpd (EulerOS-SA-2024-1146)

According to the versions of the libmicrohttpd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - GNU libmicrohttpd before 0.9.76 allows remote DoS Denial of Service due to improper parsing of a multipart/form-data boundary in the...

Moderate: Red Hat Security Advisory: libmicrohttpd security update

An update for libmicrohttpd is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

libmicrohttpd: remote DoS

An out-of-bounds flaw was found in GNU's libmicrohttpd due to improper parsing of a multipart/form-data boundary in the MHDcreatepostprocessor method in postprocessor.c. This flaw allows an attacker to remotely send a malicious HTTP POST packet that includes one or more ‘\0’ bytes in a...

RHEL 8 : libmicrohttpd (RHSA-2024:0584)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:0584 advisory. GNU libmicrohttpd is a small C library that makes it easy to run an HTTP server as part of another application. Security Fixes: libmicrohttpd: remote...

EulerOS 2.0 SP8 : libmicrohttpd (EulerOS-SA-2023-3133)

According to the versions of the libmicrohttpd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - GNU libmicrohttpd before 0.9.76 allows remote DoS Denial of Service due to improper parsing of a multipart/form-data boundary in the...

GLSA-202311-08 : GNU Libmicrohttpd: Buffer Overflow Vulnerability

The remote host is affected by the vulnerability described in GLSA-202311-08 GNU Libmicrohttpd: Buffer Overflow Vulnerability - A flaw was found in libmicrohttpd. A missing bounds check in the postprocessurlencoded function leads to a buffer overflow, allowing a remote attacker to write arbitrary...

GNU Libmicrohttpd: Buffer Overflow Vulnerability

Background GNU libmicrohttpd is a small C library that makes it easy to run an HTTP server as part of another application. GNU Libmicrohttpd is free software and part of the GNU project. Description A buffer overflow vulnerability has been discovered in GNU Libmicrohttpd. Please review the CVE...

Oracle Linux 8 : libmicrohttpd (ELSA-2023-7090)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-7090 advisory. 1:0.9.59-3 - Add cve-2023-27371.patch Related: rhbz2174639 CVE-2023-27371 Tenable has extracted the preceding description block directly from the Oracle Linux...

libmicrohttpd security update

1:0.9.59-3 - Add cve-2023-27371.patch Related: rhbz2174639 CVE-2023-27371...

Oracle Linux 9 : libmicrohttpd (ELSA-2023-6566)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6566 advisory. 1:0.9.72-5 - Add cve-2023-27371.patch Related: rhbz2174640 CVE-2023-27371 Tenable has extracted the preceding description block directly from the Oracle Linux...

libmicrohttpd: remote DoS

An out-of-bounds flaw was found in GNU's libmicrohttpd due to improper parsing of a multipart/form-data boundary in the MHDcreatepostprocessor method in postprocessor.c. This flaw allows an attacker to remotely send a malicious HTTP POST packet that includes one or more ‘\0’ bytes in a...

Moderate: Red Hat Security Advisory: libmicrohttpd security update

An update for libmicrohttpd is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...