[Forgot Password]
Login  Register Subscribe

25354

 
 

132804

 
 

134312

 
 

909

 
 

108836

 
 

152

 
 
Paid content will be excluded from the download.

Filter
Matches : 270 Download | Alert*

An issue exists in node-cli 0.1.0 through 0.11.3 due to predictable temporary file names in lock_file and log_file, which allows an attacker to overwrite files.

An issue exists in libgwenhywfar through 4.12.0 due to the usage of outdated bundled CA certificates.

An issue exists in uscan in devscripts before 2.13.19, which could let a remote malicious user execute arbitrary code via a crafted tarball.

Zanata 3.0.0 through 3.1.2 has RCE due to EL interpolation in logging

ReviewBoard: has an access-control problem in REST API

Review Board: URL processing gives unauthorized users access to review lists

shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees

Mozilla Firefox 71 : If an image had not loaded correctly (such as when it is not actually an image), it could be dragged and dropped cross-domain, resulting in a cross-origin information leak.

Mozilla Firefox 71 : Mozilla developers and community members Philipp, Diego Calleja, Mikhail Gavrilov, Jason Kratzer, Christian Holler, Markus Stange, Tyson Smith reported memory safety bugs present in Firefox 70. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

Mozilla Firefox 71 and Mozilla Firefox ESR 68.3: Mozilla developers Christoph Diehl, Nathan Froyd, Jason Kratzer, Christian Holler, Karl Tomlinson, Tyson Smith reported memory safety bugs present in Firefox 70 and Firefox ESR 68.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.


Pages:      Start    3    4    5    6    7    8    9    10    11    12    13    14    15    16    ..   26

© SecPod Technologies