907635 matches found
CVE-2022-0944 Template injection in connection test endpoint leads to RCE in sqlpad/sqlpad
Template injection in connection test endpoint leads to RCE in GitHub repository sqlpad/sqlpad prior to 6.10.1...
GHSA-73Q4-J324-2QCC Incorrect authorization in Drupal core
The Quick Edit module does not properly check entity access in some circumstances. This could result in users with the "access in-place editing" permission viewing some content they are are not authorized to access. Sites are only affected if the QuickEdit module which comes with the Standard...
PYSEC-2022-24
Flask-AppBuilder is an application development framework, built on top of the Flask web framework. In affected versions there exists a user enumeration vulnerability. This vulnerability allows for a non authenticated user to enumerate existing accounts by timing the response time from the server...
CVE-2022-23990
Expat aka libexpat before 2.4.4 has an integer overflow in the doProlog function...
DSA-5060-1 webkit2gtk - security update
Bulletin has no description...
DSA-5057-1 openjdk-11 - security update
Bulletin has no description...
DLA-2852-1 apache-log4j2 - security update
Bulletin has no description...
RLSA-2021:5160 Important: go-toolset:rhel8 security and bug fix update
Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes: golang: net/http: limit growth of header canonicalization cache CVE-2021-44716 golang: syscall: don't close fd 0 on ForkExec error CVE-2021-44717 For more details about the...
DSA-5020-1 apache-log4j2 - security update
Bulletin has no description...
GHSA-25F5-GC4H-HC22 Improper Privilege Management in devise_masquerade
The devisemasquerade gem before 1.3 allows certain attacks when a password's salt is unknown. An application that uses this gem to let administrators masquerade/impersonate users loses one layer of security protection compared to a situation where Devise without this extension is used. If the...
ALSA-2021:3891 Important: java-11-openjdk security update
The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixes: OpenJDK: Loop in HttpsServer triggered during TLS session close JSSE, 8254967 CVE-2021-35565 OpenJDK: Incorrect principal selection when using Kerberos...
ALSA-2021:3816 Important: httpd:2.4 security update
The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modproxy: SSRF via a crafted request uri-path containing "unix:" CVE-2021-40438 httpd: modsession: Heap overflow via a crafted SessionHeader value CVE-2021-26691 For more...
DSA-4976-1 wpewebkit - security update
Bulletin has no description...
UVI-2021-1001491 mISDN: fix possible use-after-free in HFC_cleanup()
mISDN: fix possible use-after-free in HFCcleanup This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.276 by commit...
GHSA-88CW-3M6X-49F7 Out-of-bounds Write in ChakraCore
Chakra Scripting Engine Memory Corruption Vulnerability This CVE ID is unique from CVE-2020-17048...
DSA-4945-1 webkit2gtk - security update
Bulletin has no description...
UVI-2021-1001082 x86/fpu: Prevent state corruption in __fpu__restore_sig()
x86/fpu: Prevent state corruption in fpurestoresig This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.13 by commit...
DLA-2690-1 linux-4.19 - security update
Bulletin has no description...
GHSA-4C7M-WXVM-R7GC Improper parsing of octal bytes in netmask
Improper input validation of octal strings in netmask npm package v1.0.6 and below allows unauthenticated remote attackers to perform indeterminate SSRF, RFI, and LFI attacks on many of the dependent packages. A remote unauthenticated attacker can bypass packages relying on netmask to filter IPs...
DSA-4886-1 chromium - security update
Bulletin has no description...
DSA-4881-1 curl - security update
Bulletin has no description...
DSA-4867-1 grub2 - security update
Bulletin has no description...
DSA-4865-1 docker.io - security update
Bulletin has no description...
DLA-2539-1 firefox-esr - security update
Bulletin has no description...
ASB-A-145728687
In loadAnimation of WindowContainer.java, there is a possible way to keep displaying a malicious app while a target app is brought to the foreground. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...
DSA-4807-1 openssl - security update
Bulletin has no description...
DSA-4796-1 thunderbird - security update
Bulletin has no description...
RLSA-2020:4451 Moderate: GNOME security, bug fix, and enhancement update
GNOME is the default desktop environment of Rocky Linux. The following packages have been upgraded to a later upstream version: gnome-remote-desktop 0.1.8, pipewire 0.3.6, vte291 0.52.4, webkit2gtk3 2.28.4, xdg-desktop-portal 1.6.0, xdg-desktop-portal-gtk 1.6.0. BZ1775345, BZ1779691, BZ1817143,...
PYSEC-2020-142
A mis-handling of invalid unicode characters in the Java implementation of Tink versions prior to 1.5 allows an attacker to change the ID part of a ciphertext, which result in the creation of a second ciphertext that can decrypt to the same plaintext. This can be a problem with encrypting...
ASB-A-140417248
In onCreate of ConfirmConnectActivity.java, there is a possible leak of Bluetooth information due to a permissions bypass. This could lead to local escalation of privilege of a pairing Bluetooth MAC address with no additional execution privileges needed. User interaction is needed for exploitatio...
CVE-2020-1913
An Integer signedness error in the JavaScript Interpreter in Facebook Hermes prior to commit 2c7af7ec481ceffd0d14ce2d7c045e475fd71dc6 allows attackers to cause a denial of service attack or a potential RCE via crafted JavaScript. Note that this is only exploitable if the application using Hermes...
GHSA-HXCC-F52P-WC94 Insecure serialization leading to RCE in serialize-javascript
serialize-javascript prior to 3.1.0 allows remote attackers to inject arbitrary code via the function "deleteFunctions" within "index.js". An object such as "foo": /1"/, "bar": "a"@R--0@" was serialized as "foo": /1"/, "bar": "a/1"/, which allows an attacker to escape the bar key. This requires...
DSA-4712-1 imagemagick - security update
Bulletin has no description...
DLA-2241-1 linux - security update
Bulletin has no description...
DSA-4693-1 drupal7 - security update
Bulletin has no description...
DSA-4691-1 pdns-recursor - security update
Bulletin has no description...
DSA-4676-1 salt - security update
Bulletin has no description...
ALSA-2020:1624 Moderate: php:7.2 security, bug fix, and enhancement update
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 7.2.24. BZ1726981 Security Fixes: php: Invalid memory access in function xmlrpcdecode CVE-2019-9020 php: File rename across filesystems...
CVE-2020-7226
CiphertextHeader.java in Cryptacular 1.2.3, as used in Apereo CAS and other products, allows attackers to trigger excessive memory allocation during a decode operation, because the nonce array length associated with "new byte" may depend on untrusted input within the header of encoded data...
DSA-4606-1 chromium - security update
Bulletin has no description...
DLA-2008-1 nss - security update
Bulletin has no description...
DLA-1990-1 linux-4.9 - security update
Bulletin has no description...
DLA-1919-1 linux-4.9 - security update
Bulletin has no description...
CVE-2019-15107
An issue was discovered in Webmin =1.920. The parameter old in passwordchange.cgi contains a command injection vulnerability...
DLA-1886-1 openjdk-7 - security update
Bulletin has no description...
DLA-1857-1 nss - security update
Bulletin has no description...
DLA-1789-2 intel-microcode - security update
Bulletin has no description...
CVE-2019-9670
mailboxd component in Synacor Zimbra Collaboration Suite 8.7.x before 8.7.11p10 has an XML External Entity injection XXE vulnerability, as demonstrated by Autodiscover/Autodiscover.xml...
DSA-4431-1 libssh2 - security update
Bulletin has no description...
DLA-1743-1 thunderbird - security update
Bulletin has no description...