208 matches found
GHSA-6973-8887-87FF nimiq-block has skip block quorum bypass via out-of-range BitSet indices & u16 truncation
Impact SkipBlockProof::verify computes its quorum check using BitSet.len, then iterates BitSet indices and casts each usize index to u16 slot as u16 for slot lookup. If an attacker can get a SkipBlockProof verified where MultiSignature.signers contains out-of-range indices spaced by 65536, these...
EUVD-2026-25054
nimiq-block has skip block quorum bypass via out-of-range BitSet indices & u16 truncation...
nimiq-block has skip block quorum bypass via out-of-range BitSet indices & u16 truncation
Impact SkipBlockProof::verify computes its quorum check using BitSet.len, then iterates BitSet indices and casts each usize index to u16 slot as u16 for slot lookup. If an attacker can get a SkipBlockProof verified where MultiSignature.signers contains out-of-range indices spaced by 65536, these...
CVE-2026-33471
CVE-2026-33471 affects nim i q/core-rs-albatross (Rust Nimiq PoS) prior to v1.3.0. The vulnerability arises in SkipBlockProof::verify, which checks quorum using BitSet.len() and then casts each index (slot as u16) for lookup. Attackers can craft a SkipBlockProof where out-of-range indices spaced ...
CVE-2026-33471 nimiq-block has skip block quorum bypass via out-of-range BitSet indices & u16 truncation
nimiq-block contains block primitives to be used in Nimiq's Rust implementation. SkipBlockProof::verify computes its quorum check using BitSet.len, then iterates BitSet indices and casts each usize index to u16 slot as u16 for slot lookup. Prior to version 1.3.0, if an attacker can get a...
PT-2026-24613
Hostname verification in Apache ZooKeeper ZKTrustManager falls back to reverse DNS PTR when IP SAN validation fails, allowing attackers who control or spoof PTR records to impersonate ZooKeeper servers or clients with a valid certificate for the PTR name. It's important to note that attacker must...
CVE-2026-24281
Hostname verification in Apache ZooKeeper ZKTrustManager falls back to reverse DNS PTR when IP SAN validation fails, allowing attackers who control or spoof PTR records to impersonate ZooKeeper servers or clients with a valid certificate for the PTR name. It's important to note that attacker must...
openSUSE 16 Security Update : rabbitmq-server (openSUSE-SU-2026:20082-1)
The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20082-1 advisory. Changes in rabbitmq-server: Update to 4.1.5: Highlights - Khepri, an alternative schema data store developed to replace Mnesia, has matured and is now...
Security update for rabbitmq-server (moderate)
openSUSE security update: security update for rabbitmq-server ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20082-1 Rating: moderate References: bsc1246091 Cross-References: CVE-2025-30219 CVSS scores: CVE-2025-30219 SUSE : 6.1...
SUSE-SU-2026:20126-1 Security update for rabbitmq-server
This update for rabbitmq-server fixes the following issues: Changes in rabbitmq-server: Update to 4.1.5: Highlights - Khepri, an alternative schema data store developed to replace Mnesia, has matured and is now fully supported it previously was an experimental feature - AMQP 1.0 is now a core...
OPENSUSE-SU-2026:20082-1 Security update for rabbitmq-server
This update for rabbitmq-server fixes the following issues: Changes in rabbitmq-server: Update to 4.1.5: Highlights - Khepri, an alternative schema data store developed to replace Mnesia, has matured and is now fully supported it previously was an experimental feature - AMQP 1.0 is now a core...
CVE-2022-31198
OpenZeppelin Contracts is a library for secure smart contract development. This issue concerns instances of Governor that use the module GovernorVotesQuorumFraction, a mechanism that determines quorum requirements as a percentage of the voting token's total supply. In affected instances, when a...
EUVD-2021-24010
Malware in sbrugna...
EUVD-2021-24030
Malware in sbrugna...
EUVD-2021-24028
Malware in sbrugna...
EUVD-2021-24011
Malware in sbrugna...
EUVD-2021-24017
Malware in sbrugna...
EUVD-2021-10123
Malware in sbrugna...
EUVD-2021-24029
Malware in sbrugna...
EUVD-2021-24032
Malware in sbrugna...