Download
| Alert*
oval:org.secpod.oval:def:67120
libproxy: automatic proxy configuration management library libproxy could be made to crash if it received a specially crafted PAC file. oval:org.secpod.oval:def:67884 Two vulnerabilities were discovered in libproxy-dev, an automatic proxy configuration management library, which could result in denial of service, or possibly, execution of arbitrary code. oval:org.secpod.oval:def:118729 libproxy offers the following features: * extremely small core footprint * no external dependencies within libproxy core * only 3 functions in the stable external API * dynamic adjustment to changing network topology * a standard way of dealing with proxy settings across all scenarios * a sublime ... oval:org.secpod.oval:def:118744 libproxy offers the following features: * extremely small core footprint * no external dependencies within libproxy core * only 3 functions in the stable external API * dynamic adjustment to changing network topology * a standard way of dealing with proxy settings across all scenarios * a sublime ... oval:org.secpod.oval:def:1802012 url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a remote HTTP server to trigger uncontrolled recursion via a response composed of an infinite stream that lacks a newline character. This leads to stack exhaustion. oval:org.secpod.oval:def:2106278 Oracle Solaris 11 - ( CVE-2020-25219 ) oval:org.secpod.oval:def:705629 libproxy: automatic proxy configuration management library libproxy could be made to crash if it received a specially crafted PAC file. oval:org.secpod.oval:def:89000287 This update for libproxy fixes the following issues: - CVE-2020-25219: Rewrote url::recvline to be nonrecursive . - CVE-2020-26154: Fixed a buffer overflow when PAC is enabled . oval:org.secpod.oval:def:89000220 This update for libproxy fixes the following issues: - CVE-2020-25219: Rewrote url::recvline to be nonrecursive . - CVE-2020-26154: Fixed a buffer overflow when PAC is enabled . oval:org.secpod.oval:def:605326 Two vulnerabilities were discovered in libproxy, an automatic proxy configuration management library, which could result in denial of service, or possibly, execution of arbitrary code. |