PT-2020-12950 · Re2C +2 · Re2C +2

Name of the Vulnerable Software and Affected Versions: re2c version 1.3 Description: The issue is a heap-based buffer overflow in the Scanner::fill function located in parse/scanner.cc, which can be triggered by a long lexeme. Recommendations: For re2c version 1.3, consider restricting the input...

The vulnerability of the parse_rollei() function in the LibRaw image processing library allows a hacker to trigger a service failure.

The vulnerability of the “parserollei” function internal/dcrawcommon.cpp in the LibRaw image processing library is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the soup_ntlm_parse_challenge() function in the libsoup library allows a attacker to compromise the integrity, confidentiality, and accessibility of the protected information.

The vulnerability of the soupntlmparsechallenge function in the libsoup library arises due to an out-of-buffer operation in memory. Exploiting this vulnerability could allow a remote attacker to compromise the integrity, confidentiality, and accessibility of the protected information...

UBUNTU-CVE-2020-11558

An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box. audiosampleentryRead in isomedia/boxcodebase.c does not properly decide when to make gfisomboxdel calls. This leads to various use-after-free outcomes involving mdiaRead, gfisomdeletemovie, and gfisomparsemovieboxes...

PT-2020-2318 · Linux +6 · Linux Kernel +6

Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 5.6.2 Description: The issue is related to a stack-based out-of-bounds write in the mpol parse str function in mm/mempolicy.c due to mishandling of an empty nodelist during mount option parsing. This could...

gettext: double free in default_add_message in read-catalog.c

An issue was discovered in GNU gettext 0.19.8. There is a double free in defaultaddmessage in read-catalog.c, related to an invalid free in pogramparse in po-gram-gen.y, as demonstrated by lt-msgfmt...

python: email.utils.parseaddr wrongly parses email addresses

An issue was discovered in Python through 2.7.16, 3.x through 3.5.7, 3.6.x through 3.6.9, and 3.7.x through 3.7.4. The email module wrongly parses email addresses that contain multiple @ characters. An application that uses the email module and implements some kind of checks on the From/To header...

npmjs-url-parse: Improper validation of protocol of the returned URL

An input validation flaw exists in the node.js-url-parse, which results in the URL being incorrectly set to the document location protocol instead of the URL being passed as an argument. An attacker could use this flaw to bypass security checks on URLs...

Moderate: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 1.0.10 Jaeger and Kiali security update

An update for Jaeger and Kiali is now available for Openshift Service Mesh 1.0. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

Information Disclosure

parse-server is vulnerable to information disclosure. An insecure regular expression parsing of the sessionToken and token$regex variables allows an attacker to discover and retrieve valid accounts, or verify and reset another user's account...

Information disclosure in parse-server

you can fetch all the users' objects, by using regex in the NoSQL query. Using the NoSQL, you can use a regex on sessionToken "SessionToken":"$regex":"r:027f" and find valid accounts this way. Using this method, it's possible to retrieve accounts without interaction from the users. GET...

GHSA-H4MF-75HF-67W4 Information disclosure in parse-server

you can fetch all the users' objects, by using regex in the NoSQL query. Using the NoSQL, you can use a regex on sessionToken "SessionToken":"$regex":"r:027f" and find valid accounts this way. Using this method, it's possible to retrieve accounts without interaction from the users. GET...

CVE-2020-5251 Information disclosure in parse-server

In parser-server before version 4.1.0, you can fetch all the users objects, by using regex in the NoSQL query. Using the NoSQL, you can use a regex on sessionToken and find valid accounts this way...

The vulnerability of the L2CAP_PARSE_CONF_RSP function in Linux operating systems, related to the disclosure of information, allows attackers to gain access to confidential data.

The vulnerability of the L2CAPPARSECONFRSP function in Linux operating systems is related to buffer overflows in the queue. Exploiting this vulnerability allows a remote attacker to gain access to confidential data...

The vulnerability of the `__zzip_parse_root_directory` function in the ZZIPlib compression library, which involves unlimited distribution of resources, allows a hacker to cause a service failure.

The vulnerability of the zzipparserootdirectory function in the ZZIPlib compression library is related to the unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service interruptions by using a specially created zip file...

The vulnerability of the `__zzip_parse_root_directory` function in the ZZIPlib archive library arises from the fact that resources are not released after their useful period has ended. This allows a malicious actor to cause service failures.

The vulnerability of the zzipparserootdirectory function in the ZZIPlib compression library is related to the failure to release resources after their useful period has ended. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

The vulnerability of the `__zzip_parse_root_directory` function in the ZZIPlib compression library, related to the occurrence of operations outside the buffer’s boundaries, allows a hacker to trigger a service failure.

The vulnerability of the zzipparserootdirectory function in the ZZIPlib compression library is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by using a specially created zip file...

CVE-2020-1815

Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have a memory leak vulnerability. The software does not sufficiently track and release allocated memory while...

DEBIAN-CVE-2020-8124

Insufficient validation and sanitization of user input exists in url-parse npm package version 1.4.4 and earlier may allow attacker to bypass security checks...

CVE-2020-8124

Insufficient validation and sanitization of user input exists in url-parse npm package version 1.4.4 and earlier may allow attacker to bypass security checks...