AZL-77034 CVE-2026-25727 affecting package rust 1.72.0-14

time provides date and time handling in Rust. From 0.3.6 to before 0.3.47, when user-provided input is provided to any type that parses with the RFC 2822 format, a denial of service attack via stack exhaustion is possible. The attack relies on formally deprecated and rarely-used features that are...

CVE-2026-25727

time provides date and time handling in Rust. From 0.3.6 to before 0.3.47, when user-provided input is provided to any type that parses with the RFC 2822 format, a denial of service attack via stack exhaustion is possible. The attack relies on formally deprecated and rarely-used features that are...

PT-2026-6659

Name of the Vulnerable Software and Affected Versions time versions 0.3.6 through 0.3.46 rust-keylime versions prior to 0.2.8+116 python-uv-build versions prior to 0.10.2 SCCache versions prior to 0.13.0 Description The time crate provides date and time handling in Rust. Versions 0.3.6 through...

编号撤回

Mozilla Thunderbird is a suite of e-mail client software from the Mozilla Foundation in the United States that is separate from the Mozilla Application Suite. The software supports the IMAP and POP mail protocols as well as the HTML mail format. This CVE number has been withdrawn...

Microsoft Jet Engine stack buffer overflow

Overview The Microsoft Jet Engine contains a stack buffer overflow, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft Jet, or Joint Engine Technology, is a database engine that is used by several Microsoft products, includin...

Evolution format string flaw

Format string vulnerability in the emfmultipartencrypted function in mail/em-format.c in Evolution 2.12.3 and earlier allows remote attackers to execute arbitrary code via a crafted encrypted message, as demonstrated using the Version field...

Mozilla Thunderbird MIME外部主体堆溢出漏洞

CVECAN ID: CVE-2008-0304 Thunderbird是Mozilla发布的邮件客户端，支持IMAP、POP邮件协议以及HTML邮件格式。 Thunderbird在处理畸形格式的邮件数据时存在漏洞，远程攻击者可能利用此漏洞控制用户系统。 Thunderbird没有正确地解析邮件中的external-body MIME类型，在计算所要分配堆缓冲区的字节数时没有为所要拷贝的数据保留足够的空间。如果用户受骗打开了恶意邮件消息的话，就可能最多覆盖3字节的缓冲区，导致执行任意指令。 Mozilla Thunderbird 2.0.0.9 临时解决方法：...

WinZIP mail format buffer overflow

Heap overflow on parsing different mail formats...

DEBIAN-CVE-2003-0130

The handleimage function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier does not properly escape HTML characters, which allows remote attackers to inject arbitrary data and HTML via a MIME Content-ID header in a MIME-encoded image...