CVE-2024-39132

A NULL Pointer Dereference vulnerability in DumpTS v0.1.0-nightly allows attackers to cause a denial of service via the function VerifyCommandLine at /src/DumpTS.cpp...

CVE-2023-33958 Default `maxSignatureAttempts` in `notation verify` enables an endless data attack in notation

notation is a CLI tool to sign and verify OCI artifacts and container images. An attacker who has compromised a registry and added a high number of signatures to an artifact can cause denial of service of services on the machine, if a user runs notation verify command on the same machine. The...

CVE-2020-13847

CVE-2020-13847 affects Sylabs Singularity 3.0–3.5 where the signing/verification code does not sign metadata in the SIF global header or data-object descriptors, allowing signed containers to potentially behave unexpectedly if modified. Public advisories (openSUSE/SUSE) note a fix in Singularity ...

PT-1999-1021 · Seattle +1 · Slmail +1

Name of the Vulnerable Software and Affected Versions: IP-Switch IMail affected versions not specified Seattle Labs Slmail version 2.6 Description: The issue is related to a buffer overflow caused by a long VRFY command, which can lead to a denial of service and potentially allow for remote acces...