34 matches found
EUVD-2012-2648
Malware in sbrugna...
EUVD-2024-47841
Malicious code in bioql PyPI...
CVE-2024-6826
The CVE-2024-6826 issue affects GitLab CE/EE, with all versions from 11.2 up to but not including 17.3.6, 17.4 up to but not including 17.4.3, and 17.5 up to but not including 17.5.1 vulnerable to a denial of service when importing a maliciously crafted XML manifest file. The root cause is a vuln...
CVE-2024-6826 Allocation of Resources Without Limits or Throttling in GitLab
An issue has been discovered in GitLab CE/EE affecting all versions from 11.2 before 17.3.6, 17.4 before 17.4.3, and 17.5 before 17.5.1. A denial of service could occur via importing a malicious crafted XML manifest file...
CVE-2024-6826 Allocation of Resources Without Limits or Throttling in GitLab
An issue has been discovered in GitLab CE/EE affecting all versions from 11.2 before 17.3.6, 17.4 before 17.4.3, and 17.5 before 17.5.1. A denial of service could occur via importing a malicious crafted XML manifest file...
GitLab Enterprise Edition(EE)和GitLab Community Edition(CE) 安全漏洞
GitLab Enterprise Edition EE and GitLab Community Edition CE are both products of GitLab, Inc. GitLab Enterprise Edition is a content management system. GitLab Enterprise Edition is a content management system. A security vulnerability exists in GitLab Enterprise Edition EE and GitLab Community...
FreeBSD : Gitlab -- vulnerabilities (78e6c113-91c1-11ef-a904-2cf05da270f3)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 78e6c113-91c1-11ef-a904-2cf05da270f3 advisory. Gitlab reports: HTML injection in Global Search may lead to XSS DoS via XML manifest file impo...
GitLab 11.2 < 17.3.6 / 17.4 < 17.4.3 / 17.5 < 17.5.1 (CVE-2024-6826)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions from 11.2 before 17.3.6, 17.4 before 17.4.3, and 17.5 before 17.5.1. A denial of service could occur via importing a malicious craft...
SUSE CVE-2012-2665
Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text .odt file with 1 a child tag within...
OpenOffice Multiple Buffer Overflow Vulnerabilities - Dec12 (Windows)
This host is installed with OpenOffice and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbopenofficemultbofvulndec12win.nasl 6018 2017-04-24 09:02:24Z teissa $ OpenOffice Multiple Buffer Overflow Vulnerabilities - Dec12 Windows Authors: Rachana Shetty Copyright: Copyright...
LibreOffice XML Manifest Handling Buffer Overflow Vulnerabilities (Windows)
This host is installed with LibreOffice and is prone to buffer overflow vulnerabilities. OpenVAS Vulnerability Test $Id: gblibreofficexmlmanifestbofvulnwin.nasl 5963 2017-04-18 09:02:14Z teissa $ LibreOffice XML Manifest Handling Buffer Overflow Vulnerabilities Windows Authors: Rachana Shetty...
LibreOffice XML Manifest Handling Buffer Overflow Vulnerabilities - Windows
LibreOffice is prone to buffer overflow vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OpenOffice Multiple Buffer Overflow Vulnerabilities (Dec 2012) - Windows
OpenOffice is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
LibreOffice XML Manifest Handling Buffer Overflow Vulnerabilities - Mac OS X
LibreOffice is prone to buffer overflow vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
LibreOffice: Multiple vulnerabilities
Background LibreOffice is a full office productivity suite. Description Multiple vulnerabilities have been found in LibreOffice: The Microsoft Word Document parser contains an out-of-bounds read error CVE-2011-2713. The Raptor RDF parser contains an XML External Entity expansion error...
Mandriva Linux Security Advisory : libreoffice (MDVSA-2012:123)
A Security issue was identified and fixed in libreoffice : Multiple heap-based buffer overflow flaws were found in the XML manifest encryption tag parsing code of LibreOffice. An attacker could create a specially crafted file in the Open Document Format for Office Applications ODF format which wh...
[BSA 076] Security update for libreoffice
Rene Engelhard uploaded new packages for libreoffice which fixed the following security problems: CVE-2012-1149 multiple heap-based buffer overflows in OpenOffice.orgs XML manifest encryption tag parsing code For the squeeze-backports distribution the problems have been fixed in version...
[BSA 076] Security update for libreoffice
Rene Engelhard uploaded new packages for libreoffice which fixed the following security problems: CVE-2012-1149 multiple heap-based buffer overflows in OpenOffice.orgs XML manifest encryption tag parsing code For the squeeze-backports distribution the problems have been fixed in version...
CVE-2012-2665
Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text .odt file with 1 a child tag within...
DEBIAN-CVE-2012-2665
Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text .odt file with 1 a child tag within...