4 matches found
Server-side Request Forgery (SSRF)
Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF in the process that handles LDAP referrals. An attacker can cause unauthorized access to external LDAP servers by supplying crafted LDAP requests. Remediation Upgrade...
CLSA-2025-1764084458 bind: Fix of 2 CVEs
CVE-2025-40780: fix randomness sources, drop obsolete PRNG test - CVE-2025-40778: fix NS caching, DNAME/referral handling, restore IPv6 TCP tests...
Important: java-1.7.0-openjdk
Issue Overview: DerValue unbounded memory allocation: It was discovered that the Libraries component of OpenJDK failed to sufficiently limit the amount of memory allocated when reading DER encoded input. A remote attacker could possibly use this flaw to make a Java application use an excessive...
SUSE-SU-2015:0353-1 Security update for samba
samba was updated to fix one security issue. This security issue was fixed: - CVE-2015-0240: Don't call tallocfree on an uninitialized pointer bnc917376. These non-security issues were fixed: - Fix vfssnapper DBus string handling bso11055, bnc913238. - Fix libsmbclient DFS referral handling. +...