25 matches found
putty -- multiple security vulnerabilities
Simon Tatham reports: These features are new in PuTTY 0.84: Security issue: fixed a remotely triggerable double-free in RSA key exchange. We don't know of any way it is exploitable to execute code. Minor security issue: fixed a remotely triggerable crash in NIST ECDSA signature verification. An...
Malicious code in @malware-test-caboc-testy-taker-sigil/test-mlw3-caboc-testy-taker-sigil (npm)
The package @malware-test-caboc-testy-taker-sigil/test-mlw3-caboc-testy-taker-sigil was found to contain malicious code...
MAL-2025-36218 Malicious code in test-mlw2-sigil-naval (npm)
The package test-mlw2-sigil-naval was found to contain malicious code...
Malicious code in test-mlw2-sigil-naval (npm)
The package test-mlw2-sigil-naval was found to contain malicious code...
Malicious code in @malware-test-votes-patin-occur-sigil/test-mlw3-votes-patin-occur-sigil (npm)
The package @malware-test-votes-patin-occur-sigil/test-mlw3-votes-patin-occur-sigil was found to contain malicious code...
MAL-2025-35664 Malicious code in test-mlw2-leets-sigil (npm)
The package test-mlw2-leets-sigil was found to contain malicious code...
Malicious code in test-mlw2-leets-sigil (npm)
The package test-mlw2-leets-sigil was found to contain malicious code...
SUSE CVE-2019-14452
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ dot dot slash in a ZIP archive entry that is mishandled during extraction...
Mageia: Security Advisory (MGASA-2019-0249)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2019-0249 Updated sigil packages fix security vulnerability
Updated sigil package fixes security vulnerability: Mike Salvatore discovered that Sigil mishandled certain malformed EPUB files. An attacker could use this vulnerability to write arbitrary files to the filesystem CVE-2019-14452...
Updated sigil packages fix security vulnerability
Updated sigil package fixes security vulnerability: Mike Salvatore discovered that Sigil mishandled certain malformed EPUB files. An attacker could use this vulnerability to write arbitrary files to the filesystem CVE-2019-14452...
Ubuntu 16.04 LTS / 18.04 LTS : Sigil vulnerability (USN-4085-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4085-1 advisory. Mike Salvatore discovered that Sigil mishandled certain malformed EPUB files. An attacker could use this vulnerability to write arbitrary files to the...
Ubuntu: Security Advisory (USN-4085-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-4085-1: Sigil vulnerability
Mike Salvatore discovered that Sigil mishandled certain malformed EPUB files. An attacker could use this vulnerability to write arbitrary files to the filesystem...
USN-4085-1 Sigil vulnerability
Mike Salvatore discovered that Sigil mishandled certain malformed EPUB files. An attacker could use this vulnerability to write arbitrary files to the filesystem...
CVE-2019-14452
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ dot dot slash in a ZIP archive entry that is mishandled during extraction...
DEBIAN-CVE-2019-14452
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ dot dot slash in a ZIP archive entry that is mishandled during extraction...
CVE-2019-14452
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ dot dot slash in a ZIP archive entry that is mishandled during extraction...
Directory traversal
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ dot dot slash in a ZIP archive entry that is mishandled during extraction...
CVE-2019-14452
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ dot dot slash in a ZIP archive entry that is mishandled during extraction...