github.com/sirupsen/logrus: github.com/sirupsen/logrus: Denial-of-Service due to large single-line payload

A denial-of-service vulnerability in github.com/sirupsen/logrus occurs when Entry.Writer processes a single-line payload larger than 64KB with no newline characters. Due to a limitation in Go’s internal bufio.Scanner, the read operation fails with a “token too long” error, causing the underlying...

Denial Of Service (DoS)

github.com/sirupsen/logrus is vulnerable to Denial of Service DoS. The vulnerability is due to limitations in the internal bufio.Scanner when Entry.Writer processes a single-line payload larger than 64KB without newline characters, which causes a "token too long" error and closes the writer pipe,...

Grafana 10.1.x < 10.1.7 Incorrect Authorization

According to its self-reported version, the Grafana install hosted on the remote host is 9.5.x earlier than 9.5.16, or 10.0.x earlier than 10.0.11, or 10.1.x earlier than 10.1.7, or 10.2.x earlier than 10.2.4, or 10.3.x earlier than 10.3.3. It is, therefore, affected by a incorrect authorization...