Out-of-bounds

In JerryScript 2.3.0, there is an out-of-bounds read in mainprintunhandledexception in the main-utils.c file...

CVE-2020-29657

In JerryScript 2.3.0, there is an out-of-bounds read in mainprintunhandledexception in the main-utils.c file...

CVE-2020-29657

CVE-2020-29657 affects JerryScript 2.3.0, with an out-of-bounds read in main_print_unhandled_exception in main-utils.c. NVD CVSSv2: 6.4 (MEDIUM) and CVSSv3.1: 9.1 (CRITICAL) indicate network access, low attack complexity, no authentication, and high impact to confidentiality and availability. Con...

CVE-2020-29657

Removed by vendor...

NewStart CGSL CORE 5.05 / MAIN 5.05 : gnome-shell Vulnerability (NS-SA-2020-0100)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has gnome-shell packages installed that are affected by a vulnerability: - It was discovered that the gnome-shell lock screen since version 3.15.91 did not properly restrict all contextual actions. An attacker with physical...

NewStart CGSL CORE 5.05 / MAIN 5.05 : thunderbird Multiple Vulnerabilities (NS-SA-2020-0093)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has thunderbird packages installed that are affected by multiple vulnerabilities: - When removing data about an origin whose tab was recently closed, a use-after-free could occur in the Quota manager, resulting in a potentially...

NewStart CGSL CORE 5.05 / MAIN 5.05 : python-pip Multiple Vulnerabilities (NS-SA-2020-0112)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has python-pip packages installed that are affected by multiple vulnerabilities: - The urllib3 library before 1.24.2 for Python mishandles certain cases where the desired set of CA certificates is different from the OS store of...

NewStart CGSL CORE 5.04 / MAIN 5.04 : mailman Multiple Vulnerabilities (NS-SA-2020-0061)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has mailman packages installed that are affected by multiple vulnerabilities: - An issue was discovered in GNU Mailman before 2.1.28. A crafted URL can cause arbitrary text to be displayed on a web page from a trusted site...

NewStart CGSL CORE 5.05 / MAIN 5.05 : rsyslog Multiple Vulnerabilities (NS-SA-2020-0120)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has rsyslog packages installed that are affected by multiple vulnerabilities: - An issue was discovered in Rsyslog v8.1908.0. contrib/pmcisconames/pmcisconames.c has a heap overflow in the parser for Cisco log messages. The...

NewStart CGSL CORE 5.04 / MAIN 5.04 : lftp Vulnerability (NS-SA-2020-0068)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has lftp packages installed that are affected by a vulnerability: - It has been discovered that lftp up to and including version 4.8.3 does not properly sanitize remote file names, leading to a loss of integrity on the local...

NewStart CGSL CORE 5.04 / MAIN 5.04 : evolution-data-server Vulnerability (NS-SA-2020-0075)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has evolution-data-server packages installed that are affected by a vulnerability: - It was discovered evolution-ews before 3.31.3 does not check the validity of SSL certificates. An attacker could abuse this flaw to get...

NewStart CGSL CORE 5.05 / MAIN 5.05 : avahi Vulnerability (NS-SA-2020-0088)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has avahi packages installed that are affected by a vulnerability: - avahi-daemon in Avahi through 0.6.32 and 0.7 inadvertently responds to IPv6 unicast queries with source addresses that are not on-link, which allows remote...

NewStart CGSL CORE 5.05 / MAIN 5.05 : chrony Multiple Vulnerabilities (NS-SA-2020-0112)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has chrony packages installed that are affected by multiple vulnerabilities: - Multiple integer overflows in pktlength.c in Chrony before 1.29 allow remote attackers to cause a denial of service crash via a crafted 1...

NewStart CGSL CORE 5.04 / MAIN 5.04 : doxygen Vulnerability (NS-SA-2020-0073)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has doxygen packages installed that are affected by a vulnerability: - Insufficient sanitization of the query parameter in templates/html/searchopensearch.php could lead to reflected cross-site scripting or iframe injection...

NewStart CGSL CORE 5.05 / MAIN 5.05 : openjpeg2 Multiple Vulnerabilities (NS-SA-2020-0099)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has openjpeg2 packages installed that are affected by multiple vulnerabilities: - OpenJPEG through 2.3.1 has a heap-based buffer overflow in opjt1clbldecodeprocessor in openjp2/t1.c because of lack of opjj2kupdateimagedimension...

NewStart CGSL CORE 5.05 / MAIN 5.05 : bash Vulnerability (NS-SA-2020-0101)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has bash packages installed that are affected by a vulnerability: - rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASHCMDS, thus allowing the user to execute any command with the permissions of th...

NewStart CGSL CORE 5.04 / MAIN 5.04 : unzip Vulnerability (NS-SA-2020-0065)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has unzip packages installed that are affected by a vulnerability: - Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service resource consumption, aka a better zip bomb issue...

NewStart CGSL CORE 5.05 / MAIN 5.05 : evince Vulnerability (NS-SA-2020-0089)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has evince packages installed that are affected by a vulnerability: - The tiffdocumentrender and tiffdocumentgetthumbnail functions in the TIFF document backend in GNOME Evince through 3.32.0 did not handle errors from...

NewStart CGSL CORE 5.05 / MAIN 5.05 : poppler Multiple Vulnerabilities (NS-SA-2020-0110)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has poppler packages installed that are affected by multiple vulnerabilities: - An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc...

NewStart CGSL CORE 5.05 / MAIN 5.05 : xerces-c Vulnerability (NS-SA-2020-0114)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has xerces-c packages installed that are affected by a vulnerability: - The Apache Xerces-C 3.0.0 to 3.2.3 XML parser contains a use-after-free error triggered during the scanning of external DTDs. This flaw has not been...