GHSA-CRMG-9M86-636R lxd's non-recursive certificate listing bypasses per-object authorization and leaks all fingerprints

Summary The GET /1.0/certificates endpoint non-recursive mode returns URLs containing fingerprints for all certificates in the trust store, bypassing the per-object canview authorization check that is correctly applied in the recursive path. Any authenticated identity — including restricted,...

lxd's non-recursive certificate listing bypasses per-object authorization and leaks all fingerprints

Summary The GET /1.0/certificates endpoint non-recursive mode returns URLs containing fingerprints for all certificates in the trust store, bypassing the per-object canview authorization check that is correctly applied in the recursive path. Any authenticated identity — including restricted,...

PortSwigger-DirectroyTraversal

PortSwigger Lab: File Path Traversal Non-Recursive Strip Bypa...

SUSE CVE-2023-22490

Git is a revision control system. Using a specially-crafted repository, Git prior to versions 2.39.2, 2.38.4, 2.37.6, 2.36.5, 2.35.7, 2.34.7, 2.33.7, 2.32.6, 2.31.7, and 2.30.8 can be tricked into using its local clone optimization even when using a non-local transport. Though Git will abort loca...

UBUNTU-CVE-2023-22490

Git is a revision control system. Using a specially-crafted repository, Git prior to versions 2.39.2, 2.38.4, 2.37.6, 2.36.5, 2.35.7, 2.34.7, 2.33.7, 2.32.6, 2.31.7, and 2.30.8 can be tricked into using its local clone optimization even when using a non-local transport. Though Git will abort loca...

dnsmasq security, bug fix, and enhancement update

2.79-11 - Support multiple static leases for single mac on IPv6 1779187 2.79-10 - Fix memory leak in helper.c 1795370 2.79-9 - Fix replies to non-recursive queries 1700916 2.79-8 - Fix dhcpleasetime 1746411 2.79-7 - Fix TCP queries after interface recreation 1728698...

GHSA-3J7M-HMH3-9JMP Cross-Site Scripting in sanitize-html

Affected versions of sanitize-html do not sanitize input recursively, which may allow an attacker to execute arbitrary Javascript. Recommendation Update to version 1.4.3 or later...

Fedora 14 : apr-1.4.5-1.fc14 (2011-6918)

Move to 1.4.x branch. Various bug fixes since 1.4.2. Security: CVE-2011-0419 Reimplement aprfnmatch from scratch using a non-recursive algorithm; now has improved compliance with the fnmatch spec. Note: 1.4.3 was never officially released. Fix CVE-2011-1928 introduced in 1.4.4. Note that Tenable...

Fedora 13 : apr-1.4.5-1.fc13 (2011-7340)

Move to 1.4.x branch. Various bug fixes since 1.4.2. Security: CVE-2011-0419 Reimplement aprfnmatch from scratch using a non-recursive algorithm; now has improved compliance with the fnmatch spec. Note: 1.4.3 was never officially released. Fix CVE-2011-1928 introduced in 1.4.4. Note that Tenable...

Fedora 15 : apr-1.4.5-1.fc15 (2011-6750)

Various bug fixes since 1.4.2. Security: CVE-2011-0419 Reimplement aprfnmatch from scratch using a non-recursive algorithm; now has improved compliance with the fnmatch spec. Note: 1.4.3 was never officially released. Release -2 should fix topbuilddir problem from -1. Fix CVE-2011-1928 introduced...

Design/Logic Flaw

regex/v4/perlmatchernonrecursive.hpp in the Boost regex library aka Boost.Regex in Boost 1.33 and 1.34 allows context-dependent attackers to cause a denial of service failed assertion and crash via an invalid regular expression...