EUVD-2023-57545

Malicious code in bioql PyPI...

Debian dla-3144 : connman - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3144 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3144-1 [email protected]...

Intel Connman Information Disclosure Vulnerability (CNVD-2022-09128)

Connman is a connection manager. a security vulnerability exists in Connman's DNS proxy, which stems from the fact that the TCP server reply implementation has an infinite loop. No details of the vulnerability are currently available...

CVE-2022-23096

An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply implementation lacks a check for the presence of sufficient Header Data, leading to an out-of-bounds read...

CVE-2022-23098

An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply implementation has an infinite loop if no data is received...

DEBIAN-CVE-2020-17446

asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code on a database client via a crafted server response, because of access to an uninitialized pointer in the array data decoder...

CVE-2019-14842

Structured reply is a feature of the newstyle NBD protocol allowing the server to send a reply in chunks. A bounds check which was supposed to test for chunk offsets smaller than the beginning of the request did not work because of signed/unsigned confusion. If one of these chunks contains a...

DEBIAN-CVE-2014-0211

Multiple integer overflows in the 1 fsgetreply, 2 fsallocglyphs, and 3 fsreadextentinfo functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs reply, which triggers a buffer overflow...

devscripts uscan code execition

Code execution on server reply parsing...

Apache mod_proxy_http information leak

Under some conditions, server reply may be sent to wrong client...

Microsoft Windows Mail / Outlook Express integer overflow

Integer overflow on POP3 or IMAP server reply parsing...

Apache mod_proxy integer overflow

Integer overflow leading to heap overflow on server reply chunked encoding parsing...

Microsoft RDP client multiple security vulnerabilities

Memory corruption in ActiveX control, memory corruption on server reply processing...

ntp client buffer overflow

Buffer overflow on NTP server reply parsing...

Microsoft Outlook Express / Windows Mail NNTP buffer overflow

Heap memory overflow on NNTP server reply parsing...

Apache mod_mem_cache information leak

Under some conditions data from previsously sent server reply headers may be leaked...

FTP Voyager buffer overflow

Stack buffer overflow stack overrun on server reply parsing...

ksirc client DoS

NULL pointer dereference on malformed server reply...

BulletProof FTP client buffer overflow

Buffer overflow on server reply parsing...

Moderate: Red Hat Security Advisory: squid security update

An updated squid package that fixes a security vulnerability as well as several issues is now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, a...