CURL-CVE-2017-8818 SSL out of buffer access

libcurl contains an out boundary access flaw in SSL related code. When allocating memory for a connection the internal struct called connectdata, a certain amount of memory is allocated at the end of the struct to be used for SSL related structs. Those structs are used by the particular SSL libra...

Internet Bug Bounty: CVE-2016-2177 Undefined pointer arithmetic in SSL code

1.0.2 version here: https://github.com/openssl/openssl/commit/a004e72b95835136d3f1ea90517f706c24c03da7 1.0.1 version here: https://github.com/openssl/openssl/commit/6f35f6deb5ca7daebe289f86477e061ce3ee5f46 These will get listed in the next security advisory and rolled up in the next release...

Lokin - Der Zug-Chat - Customized SSL, WebView SSL handling enabled, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Lokin - Der Zug-Chat published at the 'play' market has multiple vulnerabilities...

scondoo Cashback Deals Coupons - Customized SSL, Exported ContentProvider, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application scondoo Cashback Deals Coupons published at the 'play' market has multiple vulnerabilities...

Mozilla Firefox / Thunderbird / Seamonkey / NSS multiple security vulnerabilities

Multiple memory corruptions, buffer overflows, crossite scripting, TLS/SSL vulnerabilities, code execution...

FileZilla Server < 0.9.31 Denial of Service

According to its banner, the version of FileZilla Server installed on the remote host is older than version 0.9.31. An unspecified vulnerability in the SSL code for such versions can be exploited by a remote attacker to trigger a denial of service condition. C Tenable Network Security, Inc...