Lucene search
K

6 matches found

SUSE CVE
SUSE CVE
added 2025/12/30 12:23 a.m.8 views

SUSE CVE-2025-68972

In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds although an "invalid armor" message is printed...

5.9CVSS7AI score0.00104EPSS
Exploits0References3
OSV
OSV
added 2025/12/27 11:15 p.m.6 views

CVE-2025-68972

In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds although an "invalid armor" message is printed...

4.7CVSS5.8AI score
Exploits0References3
Debian CVE
Debian CVE
added 2025/12/27 10:52 p.m.6 views

CVE-2025-68972

In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds although an "invalid armor" message is printed...

5.9CVSS5.3AI score0.00104EPSS
Exploits0
OSV
OSV
added 2025/12/24 1:16 p.m.2 views

UBUNTU-CVE-2023-54145

In the Linux kernel, the following vulnerability has been resolved: bpf: drop unnecessary user-triggerable WARNONCE in verifierl log It's trivial for user to trigger "verifier log line truncated" warning, as verifier has a fixed-sized buffer of 1024 bytes as of now, and there are at least two...

5.9AI score0.00166EPSS
Exploits0References5
OSV
OSV
added 2025/12/24 1:6 p.m.2 views

CVE-2023-54145 bpf: drop unnecessary user-triggerable WARN_ONCE in verifierl log

In the Linux kernel, the following vulnerability has been resolved: bpf: drop unnecessary user-triggerable WARNONCE in verifierl log It's trivial for user to trigger "verifier log line truncated" warning, as verifier has a fixed-sized buffer of 1024 bytes as of now, and there are at least two...

6.5AI score0.00166EPSS
Exploits0References6
curl security advisories
curl security advisories
added 2016/11/02 8:0 a.m.7 views

cookie injection for other servers

If cookie state is written into a cookie jar file that is later read back and used for subsequent requests, a malicious HTTP server can inject new cookies for arbitrary domains into said cookie jar. The issue pertains to the function that loads cookies into memory, which reads the specified file...

7.5CVSS7.4AI score0.04498EPSS
Exploits0Affected Software2
Rows per page
Query Builder