Huawei EulerOS: Security Advisory for giflib (EulerOS-SA-2024-1267)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP8 : giflib (EulerOS-SA-2024-1267)

According to the versions of the giflib package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c. CVE-2023-39742 Note that Tenable Network Security has...

CVE-2023-48161

Buffer Overflow vulnerability in GifLib Project GifLib v.5.2.1 allows a local attacker to obtain sensitive information via the DumpSCreen2RGB function in gif2rgb.c...

Fedora 39 : giflib (2023-6ce92a5bdc)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-6ce92a5bdc advisory. Add patch for CVE-2023.39742. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not test...

CVE-2023-43982

Bon Presta boninstagramcarousel between v5.2.1 to v7.0.0 was discovered to contain a Server-Side Request Forgery SSRF via the url parameter at instaparser.php. This vulnerability allows attackers to use the vulnerable website as proxy to attack other websites or exfiltrate data via a HTTP call...

Server side request forgery (ssrf)

Bon Presta boninstagramcarousel between v5.2.1 to v7.0.0 was discovered to contain a Server-Side Request Forgery SSRF via the url parameter at instaparser.php. This vulnerability allows attackers to use the vulnerable website as proxy to attack other websites or exfiltrate data via a HTTP call...

CVE-2023-43982

CVE-2023-43982 affects Bon Presta boninstagramcarousel versions 5.2.1–7.0.0. A server-side request forgery (SSRF) vulnerability exists in the url parameter of insta_parser.php, allowing an attacker to use the vulnerable site as a proxy to reach other targets or exfiltrate data via HTTP requests. ...

Updated giflib packages fix security vulnerability

The updated packages fix a security vulnerability: giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c. CVE-2023-39742...

CVE-2023-39742

giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c...

CVE-2023-39742

giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c...

Design/Logic Flaw

giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c...

CVE-2023-39742

giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c...

CVE-2023-39742

CVE-2023-39742 affects giflib v5.2.1, with a segmentation fault in getarg.c identified as the root cause. Several connected advisories confirm the issue across distributions (Amazon Linux, Fedora, Alpine, Mariner), noting patched/updated packages are available (e.g., giflib and related utilities/...

CVE-2023-39742

giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c...

CVE-2023-39742

giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c...

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c...

CVE-2023-39742

giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c...

CVE-2023-39742

giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c...

Apache Oozie 竞争条件问题漏洞

Apache Oozie is an Apache Apache open source application. Provides a workflow scheduler system for managing Apache Hadoop job functions. Apache Oozie in version 5.2.1 before the existence of a security vulnerability , the vulnerability stems from the network system or product in the operation of...