204 matches found
Low: bzip2
Issue Overview: BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. CVE-2019-12900 Affected Packages: bzip2 Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Cor...
CVE-2020-26247
Nokogiri is a Rubygem providing HTML, XML, SAX, and Reader parsers with XPath and CSS selector support. In Nokogiri before version 1.11.0.rc4 there is an XXE vulnerability. XML Schemas parsed by Nokogiri::XML::Schema are trusted by default, allowing external resources to be accessed over the...
BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.
...
UBUNTU-CVE-2020-13756
Sabberworm PHP CSS Parser before 8.3.1 calls eval on uncontrolled data, possibly leading to remote code execution if the function allSelectors or getSelectorsBySpecificity is called with input from an attacker...
CVE-2020-10242
An issue was discovered in Joomla! before 3.9.16. Inadequate handling of CSS selectors in the Protostar and Beez3 JavaScript allows XSS attacks...
Cross site scripting
An issue was discovered in Joomla! before 3.9.16. Inadequate handling of CSS selectors in the Protostar and Beez3 JavaScript allows XSS attacks...
CVE-2020-10242
An issue was discovered in Joomla! before 3.9.16. Inadequate handling of CSS selectors in the Protostar and Beez3 JavaScript allows XSS attacks...
Updated bzip2 packages fix security vulnerability
The updated packages fix a security vulnerability: BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. CVE-2019-12900...
lldpad security and bug fix update
1.0.1-13.git036e314 - After gating yml updates 1.0.1-12.git036e314 - Add support for DSCP selectors in APP TLVs 1704660 1.0.1-11.git036e314 - Fix memleak on TLV reception 1727326 1.0.1-10.git036e314 - Fix the OID display 1614933...
LibSass null pointer dereference vulnerability (CNVD-2019-40158)
LibSass is a C/C++ implementation of the Sass compiler. A null pointer dereference vulnerability exists in Sass :: Parser :: parseCompoundSelector in parserselectors.cpp in LibSass versions prior to 3.6.3. An attacker could use this vulnerability to allow dereferencing of a NULL pointer in Sass :...
CVE-2019-18799
LibSass before 3.6.3 allows a NULL pointer dereference in Sass::Parser::parseCompoundSelector in parserselectors.cpp...
EulerOS 2.0 SP2 : bzip2 (EulerOS-SA-2019-1837)
According to the version of the bzip2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.CVE-2019-12900 Note that Tenable Netwo...
EulerOS Virtualization for ARM 64 3.0.2.0 : bzip2 (EulerOS-SA-2019-1920)
According to the version of the bzip2 packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.CVE-2019-129...
CVE-2019-12900
A data integrity error was found in the Linux Kernel's bzip2 functionality when decompressing. This issue occurs when a user decompresses a particular kind of .bz2 files. A local user could get unexpected results or corrupted data as result of decompressing these files...
CVE-2019-12900
BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...
DEBIAN-CVE-2019-12900
BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...
ALPINE-CVE-2019-12900
BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...
Out-of-bounds
BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...
PSF-2019-4 Windows: vulnerable bzip2 1.0.6
BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...
CVE-2019-12900
BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...