[Forgot Password]
Login  Register Subscribe

25354

 
 

132811

 
 

146533

 
 

909

 
 

117189

 
 

156

 
 
Paid content will be excluded from the download.

Filter
Matches : 526 Download | Alert*

Atlassian Confluence Server and Data Center before version 7.5.1 allowed remote attackers with system administration permissions to bypass velocity template injection mitigations via an injection vulnerability in custom user macros.

The host is installed with Atlassian Confluence Server before 7.5.1 and is prone to an injection vulnerability. A flaw is present in the application which fails to properly handle the usage of custom user macros. Successful exploitation allows remote attackers with system administration permissions to bypass velocity template injection mitigations.

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs . Security Fix: * nghttp2: overly large SETTINGS frames can lead to DoS * nodejs-minimist: prototype pollution allows adding or modifying properties of Object.prototype using a construct ...

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs . Security Fix: * nghttp2: overly large SETTINGS frames can lead to DoS * nodejs-minimist: prototype pollution allows adding or modifying properties of Object.prototype using a construct ...

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.10.0 ESR. Security Fix: * Mozilla: Memory corruption due to missing sign-extension for ValueTags on ARM64 * Mozilla: Information disclosure due to manipulated URL object * Mozilla: Use-after-free in nsGlobalWindowInner * Mozilla: Use-After-Fr ...

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.10.0 ESR. Security Fix: * Mozilla: Memory corruption due to missing sign-extension for ValueTags on ARM64 * Mozilla: Information disclosure due to manipulated URL object * Mozilla: Use-after-free in nsGlobalWindowInner * Mozilla: Use-After-Fr ...

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.10.0 ESR. Security Fix: * Mozilla: Information disclosure due to manipulated URL object * Mozilla: Use-after-free in nsGlobalWindowInner * Mozilla: Use-After-Free when trying to connect to a STUN server * Mozilla: Add-On updates did not respe ...

libnghttp2 is a library implementing the Hypertext Transfer Protocol version 2 protocol in C. Security Fix: * nghttp2: overly large SETTINGS frames can lead to DoS For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.

The Container Network Interface project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated resources when the container is deleted. Security Fix: * containernetworking/plugins: IPv6 router advertiseme ...

The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. The following packages have been upgraded to a later upstream version: dpdk . Security Fix: * dpdk: librte_vhost Interger overflow in vhost_user_set_log_base * dpdk: librte_vhost Integer truncation in vhost_user_check_and_alloc_queue_pair For more detai ...


Pages:      Start    3    4    5    6    7    8    9    10    11    12    13    14    15    16    ..   52

© SecPod Technologies