CVE-2025-59031

Dovecot has provided a script to use for attachment to text conversion. This script unsafely handles zip-style attachments. Attacker can use specially crafted OOXML documents to cause unintended files on the system to be indexed and subsequently ending up in FTS indexes. Do not use the provided...

EUVD-2018-16930

Malware in sbrugna...

CVE-2024-45626

CVE-2024-45626 affects Apache James server JMAP: the HTML-to-text conversion path can cause unbounded memory growth, leading to denial of service. Affected versions are those below 3.8.2 and 3.7.6. The recommended remediations are upgrades to 3.7.6, 3.8.2, or newer. The issue is caused by unbound...

PT-2025-54918

Name of the Vulnerable Software and Affected Versions Dovecot versions prior to 2.4.3 Description Dovecot includes a script for converting attachments to text that improperly handles zip-style attachments. An attacker could leverage specially crafted OOXML documents to cause unintended files on t...

OSV-2024-1218 UNKNOWN READ in Poco::UTF16Encoding::queryConvert

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=372765426 Crash type: UNKNOWN READ Crash state: Poco::UTF16Encoding::queryConvert Poco::TextConverter::convert Poco::Net::NTLMCredentials::parseChallengeMessage...

Fedora: Security Advisory for rust-uu_pr (FEDORA-2024-40ee18b2e7)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openssl: Possible DoS translating ASN.1 object identifiers

A flaw was found in OpenSSL resulting in a possible denial of service while translating ASN.1 object identifiers. Applications that use OBJobj2txt directly, or use any of the OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS with no message size limit may experience long delays when...

[SECURITY] Fedora 39 Update: libcaca-0.99-0.69.beta20.fc39

libcaca is the Colour AsCii Art library. It provides high level functions for color text drawing, simple primitives for line, polygon and ellipse drawing, as well as powerful image to text conversion routines...

[SECURITY] Fedora 38 Update: libcaca-0.99-0.69.beta20.fc38

libcaca is the Colour AsCii Art library. It provides high level functions for color text drawing, simple primitives for line, polygon and ellipse drawing, as well as powerful image to text conversion routines...

UBUNTU-CVE-2023-2650

Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them may be very slow. Impact summary: Applications that use OBJobj2txt directly, or use any of the OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS with no message size limit may experience...

USN-5546-1 openjdk-8, openjdk-lts, openjdk-17, openjdk-18 vulnerabilities

Neil Madden discovered that OpenJDK did not properly verify ECDSA signatures. A remote attacker could possibly use this issue to insert, edit or obtain sensitive information. This issue only affected OpenJDK 17 and OpenJDK 18. CVE-2022-21449 It was discovered that OpenJDK incorrectly limited memo...

Fedora: Security Advisory for golang-gopkg-neurosnap-sentences-1 (FEDORA-2022-37aef44d1e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 36 Update: golang-gopkg-neurosnap-sentences-1-1.0.6-15.fc36

This command line utility will convert a blob of text into a list of sentence s...

[SECURITY] Fedora 35 Update: golang-gopkg-neurosnap-sentences-1-1.0.6-14.fc35

This command line utility will convert a blob of text into a list of sentence s...

[SECURITY] Fedora 32 Update: php-horde-Horde-Text-Filter-2.3.7-1.fc32

Common methods for fitering and converting text...

CVE-2018-5144

An integer overflow can occur during conversion of text to some Unicode character sets due to an unchecked length parameter. This vulnerability affects Firefox ESR 52.7 and Thunderbird 52.7...

Arbitrary Code Execution

Firefox is vulnerable to arbitrary code execution attacks. This occurs during conversion of text to some Unicode character sets due to an unchecked length parameter. An attacker could use this flaw to execute arbitrary code on the target user's system...

Denial Of Service (DoS)

firefox is vulnerable to heap-based buffer overflow. The vulnerability is in the nsCaseTransformTextRunFactory::TransformString function. Remote attackers can affect the availability via Unicode characters that are mishandled during text conversion...

CVE-2018-5144

An integer overflow can occur during conversion of text to some Unicode character sets due to an unchecked length parameter. This vulnerability affects Firefox ESR 52.7 and Thunderbird 52.7...

CVE-2018-5144

An integer overflow can occur during conversion of text to some Unicode character sets due to an unchecked length parameter. This vulnerability affects Firefox ESR 52.7 and Thunderbird 52.7...