Lucene search
+L

204 matches found

Amazon
Amazon
added 2021/06/23 12:0 a.m.30 views

Low: bzip2

Issue Overview: BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. CVE-2019-12900 Affected Packages: bzip2 Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Cor...

9.8CVSS8.1AI score0.0812EPSS
Exploits0
Debian CVE
Debian CVE
added 2020/12/30 12:0 a.m.26 views

CVE-2020-26247

Nokogiri is a Rubygem providing HTML, XML, SAX, and Reader parsers with XPath and CSS selector support. In Nokogiri before version 1.11.0.rc4 there is an XXE vulnerability. XML Schemas parsed by Nokogiri::XML::Schema are trusted by default, allowing external resources to be accessed over the...

4.3CVSS5.8AI score0.01109EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/08/18 12:0 a.m.4 views

BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.

...

9.8CVSS7.5AI score0.0812EPSS
Exploits0
OSV
OSV
added 2020/06/03 2:15 p.m.3 views

UBUNTU-CVE-2020-13756

Sabberworm PHP CSS Parser before 8.3.1 calls eval on uncontrolled data, possibly leading to remote code execution if the function allSelectors or getSelectorsBySpecificity is called with input from an attacker...

9.8CVSS6.4AI score0.55084EPSS
Exploits4References4
OSV
OSV
added 2020/03/16 4:15 p.m.15 views

CVE-2020-10242

An issue was discovered in Joomla! before 3.9.16. Inadequate handling of CSS selectors in the Protostar and Beez3 JavaScript allows XSS attacks...

6.1CVSS5.9AI score
Exploits0References1
Prion
Prion
added 2020/03/16 4:15 p.m.26 views

Cross site scripting

An issue was discovered in Joomla! before 3.9.16. Inadequate handling of CSS selectors in the Protostar and Beez3 JavaScript allows XSS attacks...

4.3CVSS5.9AI score0.01146EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/03/16 3:48 p.m.24 views

CVE-2020-10242

An issue was discovered in Joomla! before 3.9.16. Inadequate handling of CSS selectors in the Protostar and Beez3 JavaScript allows XSS attacks...

6.6AI score0.01146EPSS
Exploits0References1
Mageia
Mageia
added 2019/11/30 1:6 p.m.46 views

Updated bzip2 packages fix security vulnerability

The updated packages fix a security vulnerability: BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. CVE-2019-12900...

9.8CVSS3.5AI score0.0812EPSS
Exploits0References7
Oracle linux
Oracle linux
added 2019/11/14 12:0 a.m.33 views

lldpad security and bug fix update

1.0.1-13.git036e314 - After gating yml updates 1.0.1-12.git036e314 - Add support for DSCP selectors in APP TLVs 1704660 1.0.1-11.git036e314 - Fix memleak on TLV reception 1727326 1.0.1-10.git036e314 - Fix the OID display 1614933...

4.3CVSS0.8AI score0.01038EPSS
Exploits0
CNVD
CNVD
added 2019/11/07 12:0 a.m.5 views

LibSass null pointer dereference vulnerability (CNVD-2019-40158)

LibSass is a C/C++ implementation of the Sass compiler. A null pointer dereference vulnerability exists in Sass :: Parser :: parseCompoundSelector in parserselectors.cpp in LibSass versions prior to 3.6.3. An attacker could use this vulnerability to allow dereferencing of a NULL pointer in Sass :...

6.5CVSS6.7AI score0.0125EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2019/11/06 3:7 p.m.38 views

CVE-2019-18799

LibSass before 3.6.3 allows a NULL pointer dereference in Sass::Parser::parseCompoundSelector in parserselectors.cpp...

6.5CVSS7.5AI score0.0125EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2019/09/17 12:0 a.m.38 views

EulerOS 2.0 SP2 : bzip2 (EulerOS-SA-2019-1837)

According to the version of the bzip2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.CVE-2019-12900 Note that Tenable Netwo...

9.8CVSS7AI score0.0812EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/09/17 12:0 a.m.29 views

EulerOS Virtualization for ARM 64 3.0.2.0 : bzip2 (EulerOS-SA-2019-1920)

According to the version of the bzip2 packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.CVE-2019-129...

9.8CVSS6.9AI score0.0812EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2019/06/27 7:51 a.m.41 views

CVE-2019-12900

A data integrity error was found in the Linux Kernel's bzip2 functionality when decompressing. This issue occurs when a user decompresses a particular kind of .bz2 files. A local user could get unexpected results or corrupted data as result of decompressing these files...

3.3CVSS6.7AI score0.0812EPSS
Exploits0References3
NVD
NVD
added 2019/06/19 11:15 p.m.30 views

CVE-2019-12900

BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...

9.8CVSS9.6AI score0.0812EPSS
Exploits0References23
OSV
OSV
added 2019/06/19 11:15 p.m.2 views

DEBIAN-CVE-2019-12900

BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...

9.8CVSS7.2AI score0.0812EPSS
Exploits0References1
OSV
OSV
added 2019/06/19 11:15 p.m.3 views

ALPINE-CVE-2019-12900

BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...

9.8CVSS8.8AI score0.0812EPSS
Exploits0References1
Prion
Prion
added 2019/06/19 11:15 p.m.49 views

Out-of-bounds

BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...

7.5CVSS9.3AI score0.0812EPSS
Exploits0References23Affected Software6
OSV
OSV
added 2019/06/19 10:7 p.m.31 views

PSF-2019-4 Windows: vulnerable bzip2 1.0.6

BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...

9.8CVSS7.5AI score0.15831EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2019/06/19 10:7 p.m.51 views

CVE-2019-12900

BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...

9.8CVSS7.5AI score0.0812EPSS
Exploits0
Rows per page
Query Builder