31 matches found
CVE-2022-31100
rulex is a new, portable, regular expression language. When parsing untrusted rulex expressions, rulex may crash, possibly enabling a Denial of Service attack. This happens when the expression contains a multi-byte UTF-8 code point in a string literal or after a backslash, because rulex tries to...
CVE-2022-31099
rulex is a new, portable, regular expression language. When parsing untrusted rulex expressions, the stack may overflow, possibly enabling a Denial of Service attack. This happens when parsing an expression with several hundred levels of nesting, causing the process to abort immediately. This is ...
EUVD-2022-6000
Malicious code in bioql PyPI...
EUVD-2022-6161
Malicious code in bioql PyPI...
MAL-2023-388 Malicious code in fca-dark-rulex (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1dc65e0b0172e4250c22303c0778367df0d04b4256634ccb454dbff9bcd8415e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in fca-dark-rulex (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1dc65e0b0172e4250c22303c0778367df0d04b4256634ccb454dbff9bcd8415e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
rulex denial of service vulnerability
rulex is a new, portable regular expression language. A denial of service vulnerability exists in rulex versions prior to 0.4.3, which stems from a failure to properly parse untrusted rulex expressions and can be exploited by an attacker to cause a denial of service attack...
CVE-2022-31099
rulex is a new, portable, regular expression language. When parsing untrusted rulex expressions, the stack may overflow, possibly enabling a Denial of Service attack. This happens when parsing an expression with several hundred levels of nesting, causing the process to abort immediately. This is ...
Stack overflow
rulex is a new, portable, regular expression language. When parsing untrusted rulex expressions, the stack may overflow, possibly enabling a Denial of Service attack. This happens when parsing an expression with several hundred levels of nesting, causing the process to abort immediately. This is ...
CVE-2022-31100
rulex is a new, portable, regular expression language. When parsing untrusted rulex expressions, rulex may crash, possibly enabling a Denial of Service attack. This happens when the expression contains a multi-byte UTF-8 code point in a string literal or after a backslash, because rulex tries to...
Code injection
rulex is a new, portable, regular expression language. When parsing untrusted rulex expressions, rulex may crash, possibly enabling a Denial of Service attack. This happens when the expression contains a multi-byte UTF-8 code point in a string literal or after a backslash, because rulex tries to...
CVE-2022-31099
CVE-2022-31099 affects the rulex regular expression language. The vulnerability is a stack overflow when parsing untrusted rulex expressions with deep nesting, potentially causing Denial of Service and service unavailability. The issue is mitigated by upgrading to version 0.4.3, which contains th...
CVE-2022-31099 Uncontrolled Recursion in rulex
rulex is a new, portable, regular expression language. When parsing untrusted rulex expressions, the stack may overflow, possibly enabling a Denial of Service attack. This happens when parsing an expression with several hundred levels of nesting, causing the process to abort immediately. This is ...
CVE-2022-31099 Uncontrolled Recursion in rulex
rulex is a new, portable, regular expression language. When parsing untrusted rulex expressions, the stack may overflow, possibly enabling a Denial of Service attack. This happens when parsing an expression with several hundred levels of nesting, causing the process to abort immediately. This is ...
CVE-2022-31099 Uncontrolled Recursion in rulex
rulex is a new, portable, regular expression language. When parsing untrusted rulex expressions, the stack may overflow, possibly enabling a Denial of Service attack. This happens when parsing an expression with several hundred levels of nesting, causing the process to abort immediately. This is ...
CVE-2022-31100 Reachable Assertion in rulex
rulex is a new, portable, regular expression language. When parsing untrusted rulex expressions, rulex may crash, possibly enabling a Denial of Service attack. This happens when the expression contains a multi-byte UTF-8 code point in a string literal or after a backslash, because rulex tries to...
CVE-2022-31100 Reachable Assertion in rulex
rulex is a new, portable, regular expression language. When parsing untrusted rulex expressions, rulex may crash, possibly enabling a Denial of Service attack. This happens when the expression contains a multi-byte UTF-8 code point in a string literal or after a backslash, because rulex tries to...
CVE-2022-31100
CVE-2022-31100 – rulex flaw (concrete details from connected docs): The vulnerability affects the rulex expression parser. When parsing untrusted rulex expressions that contain a multi-byte UTF-8 code point in a string literal or after a backslash, rulex may crash and panic, potentially enabling ...
CVE-2022-31100 Reachable Assertion in rulex
rulex is a new, portable, regular expression language. When parsing untrusted rulex expressions, rulex may crash, possibly enabling a Denial of Service attack. This happens when the expression contains a multi-byte UTF-8 code point in a string literal or after a backslash, because rulex tries to...
rulex 安全漏洞
rulex is a new, portable regular expression language. A denial of service vulnerability exists in rulex versions prior to 0.4.3, which stems from a failure to properly parse untrusted rulex expressions and can be exploited by an attacker to cause a denial of service attack...