EUVD-2023-43728

Malicious code in bioql PyPI...

CVE-2023-3036

An unchecked read in NTP server in github.com/cloudflare/cfnts prior to commit 783490b https://github.com/cloudflare/cfnts/commit/783490b913f05e508a492cd7b02e3c4ec2297b71 enabled a remote attacker to trigger a panic by sending an NTSAuthenticator packet with extension length longer than the packe...

Code injection

An unchecked read in NTP server in github.com/cloudflare/cfnts prior to commit 783490b https://github.com/cloudflare/cfnts/commit/783490b913f05e508a492cd7b02e3c4ec2297b71 enabled a remote attacker to trigger a panic by sending an NTSAuthenticator packet with extension length longer than the packe...

CVE-2023-3036 Out of Bounds Slice index in cfnts leads to remote panic

An unchecked read in NTP server in github.com/cloudflare/cfnts prior to commit 783490b https://github.com/cloudflare/cfnts/commit/783490b913f05e508a492cd7b02e3c4ec2297b71 enabled a remote attacker to trigger a panic by sending an NTSAuthenticator packet with extension length longer than the packe...

cfnts 缓冲区错误漏洞

Cloudflare cfnts is Cloudflare's implementation of the NTS protocol written in Rust. A security vulnerability exists in versions prior to cfnts 783490b, which stems from an unchecked read in the NTP server that allows a remote attacker to trigger a panic by sending an NTSAuthenticator packet with...

PT-2023-22652 · Cloudflare · Cfnts

Name of the Vulnerable Software and Affected Versions: github.com/cloudflare/cfnts versions prior to commit 783490b Description: The issue is related to an unchecked read in the NTP server, which allows a remote attacker to trigger a panic by sending an NTSAuthenticator packet with an extension...

CentOS 8 : freerdp and vinagre (CESA-2020:4647)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4647 advisory. - freerdp: Out of bound read in cliprdrserverreceivecapabilities CVE-2020-11018 - freerdp: Out of bound read in updaterecv could result in a crash...

Scientific Linux Security Update : freerdp on SL7.x x86_64 (20201001)

Security Fixes : - freerdp: Out of bound read in cliprdrserverreceivecapabilities CVE-2020-11018 - freerdp: Out of bound read/write in usb redirection channel CVE-2020-11039 - freerdp: out-of-bounds read in updatereadiconinfo function CVE-2020-11042 - freerdp: out-of-bounds read in...

CentOS 7 : freerdp (RHSA-2020:4031)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4031 advisory. - In FreeRDP less than or equal to 2.0.0, a possible resource exhaustion vulnerability can be performed. Malicious clients could trigger out of bound...

RHEL 7 : freerdp (RHSA-2020:4031)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4031 advisory. FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to R...

swfmill length field missing check denial of service vulnerability

Swfmill is an easy to use, intelligent and reliable xml2swf and swf2xml processor. The File::load function in the SWFFile.cpp file in swfmill-0.3.3 and earlier versions fails to correctly check the read length value. This resulted in dynamic memory being exceeded and the operating system crashing...