Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2019/10/08 12:0 a.m.80 views

Debian: Security Advisory (DLA-1948-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.07639EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/10/08 12:0 a.m.31 views

Debian DLA-1948-1 : ruby-mini-magick security update

In lib/minimagick/image.rb in ruby-mini-magick, a fetched remote image filename could cause remote command execution because Image.open input is directly passed to Kernelopen, which accepts a '|' character followed by a command. For Debian 8 'Jessie', this problem has been fixed in version...

7.8CVSS7.5AI score0.07639EPSS
Exploits1References3
Debian
Debian
added 2019/10/07 11:14 a.m.61 views

[SECURITY] [DLA 1948-1] ruby-mini-magick security update

Package : ruby-mini-magick Version : 3.8.1-1+deb8u1 CVE ID : CVE-2019-13574 Debian Bug : 931932 In lib/minimagick/image.rb in ruby-mini-magick, a fetched remote image filename could cause remote command execution because Image.open input is directly passed to Kernelopen, which accepts a | charact...

7.8CVSS7.6AI score0.07639EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2019/07/15 12:0 a.m.20 views

Debian DSA-4481-1 : ruby-mini-magick - security update

Harsh Jaiswal discovered a remote shell execution vulnerability in ruby-mini-magick, a Ruby library providing a wrapper around ImageMagick or GraphicsMagick, exploitable when using MiniMagick::Image.open with specially crafted URLs coming from unsanitized user input. C Tenable Network Security,...

7.8CVSS7.6AI score0.07639EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2019/07/14 12:0 a.m.15 views

Debian: Security Advisory (DSA-4481-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.07639EPSS
Exploits1References4
OSV
OSV
added 2019/07/13 12:0 a.m.16 views

DSA-4481-1 ruby-mini-magick - security update

Bulletin has no description...

7.8CVSS7.4AI score0.07639EPSS
Exploits1
Rows per page
Query Builder