228 matches found
OPENSUSE-SU-2024:13811-1 python310-validators-0.24.0-1.2 on GA media
These are all security issues fixed in the python310-validators-0.24.0-1.2 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:11278-1 python36-validators-0.18.1-2.4 on GA media
These are all security issues fixed in the python36-validators-0.18.1-2.4 package on the GA media of openSUSE Tumbleweed...
Analog Launches Testnet, Allocates 2% Token Supply for Participants
By Uzair Amir Analog’s Testnet is open for developers, community and validators, participants can complete quests and climb the ATP leaderboard… This is a post from HackRead.com Read the original post: Analog Launches Testnet, Allocates 2% Token Supply for Participants...
python-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator
A regular expression denial of service vulnerability has been found in Django. Email and URL validators are vulnerable to this flaw when processing a very large number of domain name labels of emails and URLs...
[SECURITY] Fedora 40 Update: relaxng-datatype-java-2011.1-4.fc40
Interface between RELAX NG validators and datatype libraries...
ASA-2024-004: Default configuration param for Evidence may limit window of validity
ASA-2024-004: Default configuration param for Evidence may limit window of validity Component: CometBFT Criticality: Low Affected versions: All Affected users: Validators, Chain Builders + Maintainers Summary A default configuration in CometBFT has been found to be small for common use cases, and...
GHSA-555P-M4V6-CQXV ASA-2024-004: Default configuration param for Evidence may limit window of validity
ASA-2024-004: Default configuration param for Evidence may limit window of validity Component: CometBFT Criticality: Low Affected versions: All Affected users: Validators, Chain Builders + Maintainers Summary A default configuration in CometBFT has been found to be small for common use cases, and...
MAL-2024-101 Malicious code in wdpr-validators (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3603a1435c7217578ea596fa8e598c1a1a0bf6c955b1c4248b9c9978c9a1c6d4 The OpenSSF Package Analysis project identified 'wdpr-validators' @ 16.0.2 npm as malicious. It is considered malicious because: - The package...
Malicious code in wdpr-validators (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3603a1435c7217578ea596fa8e598c1a1a0bf6c955b1c4248b9c9978c9a1c6d4 The OpenSSF Package Analysis project identified 'wdpr-validators' @ 16.0.2 npm as malicious. It is considered malicious because: - The package...
python-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator
A regular expression denial of service vulnerability has been found in Django. Email and URL validators are vulnerable to this flaw when processing a very large number of domain name labels of emails and URLs...
GHSA-72QW-P7HH-M3FF TorBot vulnerable to Inefficient Regular Expression Complexity in validate_link
Summary The torbot.modules.validators.validatelink function uses the python-validators URL validation regex. This particular regular expression has an exponential complexity which allows an attacker to cause an application crash using a well-crafted argument.. Details...
TorBot vulnerable to Inefficient Regular Expression Complexity in validate_link
Summary The torbot.modules.validators.validatelink function uses the python-validators URL validation regex. This particular regular expression has an exponential complexity which allows an attacker to cause an application crash using a well-crafted argument.. Details...
CVE-2023-45813 Inefficient Regular Expression Complexity in TorBot
Torbot is an open source tor network intelligence tool. In affected versions the torbot.modules.validators.validatelink function uses the python-validators URL validation regex. This particular regular expression has an exponential complexity which allows an attacker to cause an application crash...
CVE-2023-45813 Inefficient Regular Expression Complexity in TorBot
Torbot is an open source tor network intelligence tool. In affected versions the torbot.modules.validators.validatelink function uses the python-validators URL validation regex. This particular regular expression has an exponential complexity which allows an attacker to cause an application crash...
CVE-2023-45813 Inefficient Regular Expression Complexity in TorBot
Torbot is an open source tor network intelligence tool. In affected versions the torbot.modules.validators.validatelink function uses the python-validators URL validation regex. This particular regular expression has an exponential complexity which allows an attacker to cause an application crash...
PT-2023-29703 · Torbot +1 · Torbot +1
Name of the Vulnerable Software and Affected Versions: Torbot versions prior to 4.0.0 Description: The issue concerns the torbot.modules.validators.validate link function, which uses the python-validators URL validation regex. This regular expression has exponential complexity, allowing an attack...
GHSA-HQ58-P9MV-338C CometBFT's default for `BlockParams.MaxBytes` consensus parameter may increase block times and affect consensus participation
Amulet Security Advisory for CometBFT: ASA-2023-002 Component: CometBFT Criticality: Low Affected versions: All Affected users: Validators, Chain Builders + Maintainers Summary A default configuration in CometBFT has been found to be large for common use cases, and may affect block times and...
Malicious code in paypal-validators (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ebc6b081257d4c572b2609876f97c2068316a5023ba3ed2acc567fbca9e0f2eb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-8106 Malicious code in paypal-validators (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ebc6b081257d4c572b2609876f97c2068316a5023ba3ed2acc567fbca9e0f2eb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
GHSA-23PX-MW2P-46QM Cosmos-SDK Cosmovisor component may be vulnerable to denial of service
Component: Cosmovisor Criticality: Medium Affected Versions: Cosmovisor v1.0.0 distributed with Cosmos-SDK 0.46 Affected Users: Validators and Node operators utilizing unsupported versions of Cosmovisor Impact: DOS, potential RCE on node depending on configuration An issue has been identified on...