Lucene search
K

11 matches found

RedHat Linux
RedHat Linux
added 2020/07/07 10:30 a.m.6 views

ruby: Tainted flags are not propagated in Array#pack and String#unpack with some directives

An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. It does not taint strings that result from unpacking tainted strings with some formats...

8.1CVSS7.3AI score0.07968EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/06/30 12:12 p.m.3 views

ruby: Tainted flags are not propagated in Array#pack and String#unpack with some directives

An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. It does not taint strings that result from unpacking tainted strings with some formats...

8.1CVSS7.3AI score0.07968EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/08/06 12:40 p.m.8 views

ruby: Tainted flags are not propagated in Array#pack and String#unpack with some directives

An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. It does not taint strings that result from unpacking tainted strings with some formats...

8.1CVSS7.3AI score0.07968EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2018/11/29 10:10 a.m.5 views

ruby: Tainted flags are not propagated in Array#pack and String#unpack with some directives

An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. It does not taint strings that result from unpacking tainted strings with some formats...

8.1CVSS7.3AI score0.07968EPSS
Exploits0References5
OSV
OSV
added 2016/01/20 5:53 p.m.5 views

MGASA-2016-0027 Updated perl and perl-PathTools packages fix security vulnerability

It was reported that File::Spec::canonpath routine returns untainted strings even if passed tainted input. This defect undermines the guarantee of taint propagation, which is sometimes used to ensure that unvalidated user input does not reach sensitive code CVE-2015-8607...

7.5CVSS7.1AI score0.03124EPSS
Exploits0References4
Mageia
Mageia
added 2016/01/20 5:53 p.m.33 views

Updated perl and perl-PathTools packages fix security vulnerability

It was reported that File::Spec::canonpath routine returns untainted strings even if passed tainted input. This defect undermines the guarantee of taint propagation, which is sometimes used to ensure that unvalidated user input does not reach sensitive code CVE-2015-8607...

7.5CVSS7.4AI score0.03124EPSS
Exploits0References3
Debian
Debian
added 2016/01/11 3:47 p.m.41 views

[SECURITY] [DSA 3441-1] perl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3441-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 11, 2016 https://www.debian.org/security/faq -...

7.5CVSS1.7AI score0.03124EPSS
Exploits0
Debian
Debian
added 2016/01/11 3:47 p.m.29 views

[SECURITY] [DSA 3441-1] perl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3441-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 11, 2016 https://www.debian.org/security/faq -...

7.5CVSS7.1AI score0.03124EPSS
Exploits0
OpenVAS
OpenVAS
added 2016/01/11 12:0 a.m.27 views

Debian Security Advisory DSA 3441-1 (perl - security update)

David Golden of MongoDB discovered that File::Spec::canonpath in Perl returned untainted strings even if passed tainted input. This defect undermines taint propagation, which is sometimes used to ensure that unvalidated user input does not reach sensitive code. The oldstable distribution wheezy i...

7.5CVSS0.3AI score0.03124EPSS
Exploits0References1
OSV
OSV
added 2016/01/11 12:0 a.m.24 views

DSA-3441-1 perl - security update

Bulletin has no description...

7.5CVSS7.1AI score0.03124EPSS
Exploits0
FreeBSD
FreeBSD
added 2016/01/11 12:0 a.m.30 views

p5-PathTools -- File::Spec::canonpath loses taint

Ricardo Signes reports: Beginning in PathTools 3.47 and/or perl 5.20.0, the File::Spec::canonpath routine returned untained strings even if passed tainted input. This defect undermines the guarantee of taint propagation, which is sometimes used to ensure that unvalidated user input does not reach...

7.5CVSS7.2AI score0.03124EPSS
Exploits0References1
Rows per page
Query Builder