EUVD-2014-3521

Malware in sbrugna...

EUVD-2014-3505

Malware in sbrugna...

Malicious code in @zalastax/nolb-_serf (npm)

The package @zalastax/nolb-serf was found to contain malicious code...

MAL-2025-10410 Malicious code in @zalastax/nolb-_serf (npm)

The package @zalastax/nolb-serf was found to contain malicious code...

Malicious code in Blоckcоre.Networks.SERF (NuGet)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in Blоckсоre.Netwоrks.SERF (NuGet)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-4371 Malicious code in Blоckсоre.Netwоrks.SERF (NuGet)

--- -= Per source details. Do not edit below this line.=-...

SUSE CVE-2014-3504

The 1 serfsslcertissuer, 2 serfsslcertsubject, and 3 serfsslcertcertificate functions in Serf 0.2.0 through 1.3.x before 1.3.7 does not properly handle a NUL byte in a domain name in the subject's Common Name CN field of an X.509 certificate, which allows man-in-the-middle attackers to spoof...

SUSE CVE-2014-3522

The Serf RA layer in Apache Subversion 1.4.0 through 1.7.x before 1.7.18 and 1.8.x before 1.8.10 does not properly handle wildcards in the Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof servers via a crafted certificate...

Fedora: Security Advisory for golang-github-hashicorp-serf (FEDORA-2022-ea8f4e232d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for golang-github-hashicorp-serf (FEDORA-2022-3969b64d4b)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 35 Update: golang-github-hashicorp-serf-0.9.5-5.fc35

Serf is a decentralized solution for service discovery and orchestration that is lightweight, highly available, and fault tolerant. Serf runs on Linux, Mac OS X, and Windows. An efficient and lightweight gossip protocol is used to communicate with other nodes. Serf can detect node failur es and...

Fedora: Security Advisory for golang-github-hashicorp-serf (FEDORA-2022-fae3ecee19)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Mageia: Security Advisory (MGASA-2014-0353)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Man-In-The-Middle

serf is vulnerable to man-in-the-middle MitM attacks. The vulnerability existed because of an improper handling of a NUL byte in a domain name in the subject's Common Name CN, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate...

serf-csq.org Cross Site Scripting vulnerability OBB-1456318

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

GLSA-201610-05 : Subversion, Serf: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201610-05 Subversion, Serf: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Subversion and Serf. Please review the CVE identifiers referenced below for details Impact : A remote attacker could possibly...

Subversion, Serf: Multiple Vulnerabilities

Background Subversion is a version control system intended to eventually replace CVS. Like CVS, it has an optional client-server architecture where the server can be an Apache server running modsvn, or an ssh program as in CVS’s :ext: method. In addition to supporting the features found in CVS,...

Mandriva Linux Security Advisory : serf (MDVSA-2015:127)

Updated serf packages fix security vulnerability : Ben Reser discovered that serf did not correctly handle SSL certificates with NUL bytes in the CommonName or SubjectAltNames fields. A remote attacker could exploit this to perform a man in the middle attack to view sensitive information or alter...

Amazon Linux AMI : subversion (ALAS-2014-413)

The Serf RA layer in Apache Subversion 1.4.0 through 1.7.x before 1.7.18 and 1.8.x before 1.8.10 does not properly handle wildcards in the Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof servers via a crafted certificate. C Tenabl...