SUSE-SU-2026:21630-1 Security update for containerd

This update for containerd fixes the following issue: - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-header bsc1260296...

SUSE-SU-2026:21490-1 Security update for containerd

This update for containerd fixes the following issue: - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-header bsc1260296...

SUSE-SU-2026:21115-1 Security update for ignition

This update for ignition fixes the following issue: - CVE-2026-33186: Fixed an authorization bypass due to improper validation of the HTTP/2: path pseudo-header bsc1260251...

libsoup 安全漏洞

libsoup is a GNOME HTTP client/server library from the GNOME Project. A security vulnerability exists in libsoup that stems from an HTTP/2 server that does not fully validate pseudo header values, which could lead to a denial of service...

SUSE CVE-2021-45955

Dnsmasq 2.86 has a heap-based buffer overflow in resizepacket called from FuzzResizePacket and fuzzrfc1035.c because of the lack of a proper bounds check upon pseudo header re-insertion. NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real...

Dnsmasq 2.86 has a heap-based buffer overflow in resize_packet (called from FuzzResizePacket and fuzz_rfc1035.c) because of the lack of a proper bounds check upon pseudo header re-insertion. NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities to the best of our knowledge." However a contributor states that a security patch (mentioned in 016162.html) is needed

...

AZL-8962 CVE-2021-45955 affecting package dnsmasq for versions less than 2.89-2

Dnsmasq 2.86 has a heap-based buffer overflow in resizepacket called from FuzzResizePacket and fuzzrfc1035.c because of the lack of a proper bounds check upon pseudo header re-insertion. NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real...

ALPINE-CVE-2017-14496

Integer underflow in the addpseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request...

dpkg Source Package - Index: pseudo-header Processing Multiple Local Directory Traversals

dpkg Source Package - Index: pseudo-header Processing Multiple Local Directory Traversals source: https://www.securityfocus.com/bid/67727/info dpkg is prone to multiple directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues will...

CVE-2012-1595

The pcapprocesspseudoheader function in wiretap/pcap-common.c in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service application crash via a WTAPENCAPERF file containing an Extension or Multi-Channel header with an invalid pseudoheader size,...

Code injection

The pcapprocesspseudoheader function in wiretap/pcap-common.c in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service application crash via a WTAPENCAPERF file containing an Extension or Multi-Channel header with an invalid pseudoheader size,...