38 matches found
Astra Linux - уязвимость в exim4
A vulnerability was discovered in Exim and has been classified as problematic. This issue affects certain aspects of the component Regex Handler’s processing. The vulnerability results in memory leaks after the component is freed from memory. The name of the patch is...
EUVD-2022-42925
Malicious code in bioql PyPI...
OESA-2024-1927 exim security update
Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...
OESA-2024-1926 exim security update
Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...
SUSE CVE-2022-3559
A vulnerability was found in Exim and classified as problematic. This issue affects some unknown processing of the component Regex Handler. The manipulation leads to use after free. The name of the patch is 4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2. It is recommended to apply a patch to fix this...
Amazon Linux AMI : exim (ALAS-2023-1662)
The version of exim installed on the remote host is prior to 4.92-1.34. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1662 advisory. A vulnerability was found in Exim and classified as problematic. This issue affects some unknown processing of the component Regex...
Fedora 36 : exim (2022-6125582f45)
The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-6125582f45 advisory. Fixed use after free in regex handler Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...
Fedora 35 : exim (2022-ebb3db782c)
The remote Fedora 35 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-ebb3db782c advisory. Fixed use after free in regex handler Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...
Regular Expression Denial of Service (ReDoS)
Overview Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS in the call function of the component Regex Handler. Details Denial of Service DoS describes a family of attacks, all aimed at making a system inaccessible to its original and legitimate users...
active_attr Improper Resource Shutdown or Release vulnerability
A vulnerability classified as problematic has been found in cgriego activeattr up to 0.15.3. This affects the function call of the file lib/activeattr/typecasting/booleantypecaster.rb of the component Regex Handler. The manipulation of the argument value leads to denial of service. The exploit ha...
CVE-2021-4250
A vulnerability classified as problematic has been found in cgriego activeattr up to 0.15.2. This affects the function call of the file lib/activeattr/typecasting/booleantypecaster.rb of the component Regex Handler. The manipulation of the argument value leads to denial of service. The exploit ha...
CVE-2021-4250
A vulnerability classified as problematic has been found in cgriego activeattr up to 0.15.2. This affects the function call of the file lib/activeattr/typecasting/booleantypecaster.rb of the component Regex Handler. The manipulation of the argument value leads to denial of service. The exploit ha...
Design/Logic Flaw
A vulnerability classified as problematic has been found in cgriego activeattr up to 0.15.2. This affects the function call of the file lib/activeattr/typecasting/booleantypecaster.rb of the component Regex Handler. The manipulation of the argument value leads to denial of service. The exploit ha...
ActiveAttr 安全漏洞
ActiveAttr is a set of modules from Chris Griego's personal developer. Simple old Ruby models can be easily created using features in ORM such as ActiveRecord. A security vulnerability exists in ActiveAttr 0.15.3 and earlier versions, which stems from a denial of service due to the manipulation o...
CVE-2021-4250 cgriego active_attr Regex boolean_typecaster.rb call denial of service
A vulnerability classified as problematic has been found in cgriego activeattr up to 0.15.2. This affects the function call of the file lib/activeattr/typecasting/booleantypecaster.rb of the component Regex Handler. The manipulation of the argument value leads to denial of service. The exploit ha...
CVE-2021-4250
The CVE-2021-4250 entry concerns the cgriego active_attr Ruby gem (Regex Handler) up to version 0.15.2/0.15.3, where the boolean_typecaster.rb function in lib/active_attr/typecasting can be manipulated to cause a denial of service. Concrete details across connected records identify the vulnerable...
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Exim vulnerability (USN-5741-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5741-1 advisory. It was discovered that Exim incorrectly handled certain regular expressions. An attacker could use this issue to cause Exim to crash,...
Denial Of Service (DoS)
exim4 is vulnerable to denial of service. The vulnerability exists in src/expand.c due to use after free in Regex Handler which allows an attacker to crash the application via malicious input...
openSUSE 15 Security Update : exim (openSUSE-SU-2022:10191-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:10191-1 advisory. - A vulnerability was found in Exim and classified as problematic. This issue affects some unknown processing of the component Regex Handler. The...
OPENSUSE-SU-2022:10191-1 Security update for exim
This update for exim fixes the following issues: - CVE-2022-3559: Fixed use after free in processing of the component Regex Handler boo1204427, Bug 2915...