CVE-2025-61984

ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted sources, potentially leading to code execution when a ProxyCommand is used. The untrusted sources are the command line and %-sequence expansion of a configuration file. A configuration...

HackerOne: Minor security issue with Hackerone Invitations from sandbox program

The Hackerone team had enabled the "Invite Users" feature to add users to an organization in a sandbox program. When inviting other users through email, there was no warning message in the email stating that the invitation was sent from an unverified program on Hackerone...

CVE-2020-36406

uWebSockets 18.11.0 and 18.12.0 has a stack-based buffer overflow in uWS::TopicTree::trimTree called from uWS::TopicTree::unsubscribeAll. NOTE: the vendor's position is that this is "a minor issue or not even an issue at all" because the developer of an application that uses uWebSockets should no...

Mandriva Update for rpmdrake MDVA-2008:061 (rpmdrake)

Check for the Version of rpmdrake OpenVAS Vulnerability Test Mandriva Update for rpmdrake MDVA-2008:061 rpmdrake Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Slackware 12.0 : pidgin (SSA:2007-275-01)

A new pidgin package is available for Slackware 12.0 to fix a minor fix security issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2007-275-01. The text itself is copyright C Slackware...