2 matches found
CLSA-2026-1779296292 httpd: Fix of 5 CVEs
CVE-2026-28780: modproxyajp 4-byte heap buffer overflow when contacting a malicious AJP backend off-by-AJPHEADERLEN check in ajpmsgcheckheader - CVE-2026-34059: modproxyajp heap over-read in ajpparsedata on short AJP replies - CVE-2026-33006: modauthdigest used non-constant-time strcmp for...
SUSE-SU-2025:20594-1 Security update for libarchive
This update for libarchive fixes the following issues: - CVE-2025-5918: reading past EOF may be triggered for piped file streams bsc1244279 - CVE-2025-5917: off by one error in buildustarentryname at archivewritesetformatpax.c bsc1244336 - CVE-2025-5916: integer overflow while reading warc files ...